last executing test programs:

1.789634527s ago: executing program 1 (id=1010):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x5}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="380000001a0001000000000000000000020000000002"], 0x38}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

1.71121847s ago: executing program 1 (id=1011):
syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f00000002c0)='./bus\x00', 0x1800840, &(0x7f00000000c0)=ANY=[@ANYBLOB='utf8=1,shortname=winnt,shortname=win95,iocharset=cp860,iocharset=cp855,nonumtail=0,iocharset=cp950,uni_xlate=1,iocharset=macgaelic,codepage=950,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c757466383d302d39352c00000000ffffffffd4dbc008dc1875a7ec17cce6ffffff112110"], 0x1, 0x362, &(0x7f0000000900)="$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")
syz_open_dev$MSR(0x0, 0x0, 0x0)
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
ioctl$VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000040)={0x201, 0xa, 0x2})
ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f0000001340)=@userptr={0x6, 0xa, 0x4, 0x2000, 0x6, {0x0, 0x2710}, {0x4, 0xc, 0xd2, 0x9, 0x77, 0x0, "0080ca4f"}, 0xff, 0x2, {&(0x7f00000002c0)}, 0x4})

1.660351554s ago: executing program 1 (id=1012):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
io_uring_setup(0x7a6e, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
syz_open_dev$vim2m(&(0x7f0000002c80), 0x3, 0x2)
r3 = syz_open_dev$dri(&(0x7f0000000080), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f0000000200)={0x8000, 0x2, 0x4})
r4 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[<r5=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_CURSOR(r3, 0xc01c64a3, &(0x7f0000000040)={0x3, r5, 0x10000000, 0x80000001, 0xb, 0x1fd, 0x1})
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/disk', 0x80040, 0x8)
write$UHID_CREATE2(r6, &(0x7f0000000300)={0xb, {'syz0\x00', 'syz0\x00', 'syz0\x00', 0xfff, 0x7, 0x0, 0x7fff, 0x509, 0xfffffffc, "053c6e0f3c58683c5e7bf9da7cd58c154c78c59a622325d6a8a890e3d21edc6f2efc474322475578ce7a74a3c9fd868b9c758e050be7c0774643def297741f91f9f7a33a2e936fdb81283b1eb574f6750c1faab1aee11dd00d27ed8000a45ea5042faa6b443154daf51b976707e51d45e3e59e18eef982e6f3687d6e8dfa26e5746b0b1f7ba8f6f0122b093fc2fd7d078dfaa9982e40f01fde325ba4fcae4aba479809a34304c7f84abbafd1f1743d12b726829c52f9d5d5d16afe1f3caad6ee853d1f0324f453c8ccddd310f4be7dd5bbedd6085deff3d197d6bdeb548045db9276a65e083a2ddfde1d1468f179452fc8c1e835e544c5e1bfd9a8e3dbac363246557e01d16bb335917441fbf1f93b150773c2ca55897b5afd5f88b4c661f74275315833da2dd2389749b1ff2cb09843b528e6fd153d1c7b841a419591005647959b34261bbc590f36c78bd50f69549a82dca4bc9af1b6fa22076c5d4837e0dc1129c7e2b567477db0def55735309e5951f7f026016dad0face9a26d367db6343f40acdb3374a6abb0c3985342bccdf4378afaffb9ccdd037435bf88fdf9215a77d12eb415f69710909d21fcd7c2bbc0ae21fc3044c6e13aae7a4e1fb202f580a04ffbac3b4ee43db4e3a982840e55a64b639cb4ab70c71dd838ede47049a250f5f2568c34e76b5cdee9c12225d66d6831924d379272e56249d4557f7a34f9f1a9e543dc159542ad2a35333550bebba62e4b5f171b963103d5cc3de064ac401ed3d3298c66b736c2015e69d4d87e51ec8796d642be21c0468470e149477c9611eb59f5798c9977a02a5448dbb2feb8a6678006bb43dbf85a1a73197b0194585ad7f1ece114032d15751ce1e933d54c2d54d6c42a05da3df02640c1c77611a0cc56993a126e57e67b89218c6b6bbd0952a9ce45b8c2f3ebecef8fb62fc8624dc6ebdac4289229a85e2caf5475fcf36e2d792182dd9532c7a5377d1e22a13667c0ef598d406198a1d75546e25504d047d9663e68e9a5bd35d8a63152367dabf3ca115682175da260d949e177b0e1ed50304b9e8a85cd2407498e398ebed16f91b4013a35913c5a6a2f1df9a547f3b746b1172b8295d5ea6a141829556fe026ad40e34e4e830c6e5ffde0a9dc329ee281fc0caadb877b5988ce98bf49be551d5ae4632df4df7deb009f6498d9d3c38cac5ed3d48edbbe527a3779d3372488e831fefbe682d827f7118acf5b6e0b753ca960cd99bc426a905d2a74fed0a84a2a17c15ead0a9e57d712d53ad73fee780f5455f53c9650508ad26a96cab71e6cc1059feedef561741c0222b47a65c6991cfdd0a390975f194823ca65990d9cacddcf805741033744dcb077832dd553533f8fb9b7df808fad0fa84dc0f7b319d3ba058719131a9b5d4b68e69c3f8494f34a9f2b540b553ce43aa5d40e096974a90247c8027952a07b653497e7b03665808c2f3fd5fd6b79581d9418aa6c185849e938e70012d8bde4ba281ff8c2abda7e36ccf8a47f02faf4d38c3736ce8e4c7c413377ee63370f6fe6b666b759e26f94c2868c76b1658751634d4a73ba185407bc7d554416b0a4700000a46dac0887e3438e604a5afd9e6f58fae7570d3bd3b7b55b7d34f72622f9a1525f89ded3a8279b179f5735f0c8c0181e97461b21876b0e2040aeebb523e9c72afcbfdfa6691d24676d20f59a383c6d771d95cef5675bf276d4c28f71ac63465e99e747824071f90a24571b6b091282cdd6b745f44b64f30ce552f2f2eee6938b326e4d631ed7dd0daf555ecbdd8f48385875536e4cf741118a061934e8668d99d284627e6667172fc0e98557e7d2430a6b1505d3d79ce84d1f99633ecd11f9f5e95e8dc11c2891c39e2569fb7d7a1992cf504af928857200de4f2797609d55add618ad7e6f39cc727e1579e80434763045a04518b3df267687c7ab43a1e1bc926b4318020c0b4e6e9481c6ac868fdb1518cec21ce8ae908471ae99de090dce56db90333fdab638b26727107fa17c816feb1ed39d29c581807bcc4c146db4c1b7833020eee513176df4143dc6737664ffa4cff6032e514e236253a2cdc2304df8477804d96aa30452446e7ed2db3cc071d298b7efcc6b89ba69d261bac3e1255707aef7336c5bb9490122e9434279b8fe21fd266bcfe0dc7dfb8e4ac03ff9926bedd2db190869f411b41b9d784e318957ff6b91ff2a4437988601edbd9bc483ba8e98eb5826172ca105fe19f3ecddba47b6e112a695d72e18dcb2400459c9e3ff2f0ed4dfec73249d55eaa4647c9b422abbe082222872819575f868196469690e17f5d6ab99400e654c8533249bbf75d53dd75b704bf544356fa759839140b7fa0ddb799c9b1e7b8928f1b194d2dd9a058caa1f80bb1ce9afa0ca5e20ee8833e82745014232eb4b0df62c31d366d0010b2a3e4874f6a2916db10ac5e1377476096c51d87ee672dfaf6dbd51413c1b2a344f54b4d79020fe82873c94a1cc7c8f20fbb16b6017688329129ec22a7adb00bc9e23d07e9f7b7bfaf8ecd80d2d0aa4b5be00a38f89f3474a9df02883fcac71af00bbc84274fae0c9d4448c49db948f233f46edd271234f5cefa26df6cf1d915a72d48d37bd1a2312f4f7f007d98068ecb60444307d72e5de6e3b7d1d94a2023b75827d21d62d84afa36e1f8cca093415ae1e5fe98a3fa2427efa4f50eca774d4231cc9ae48818d2dffb0c4003695b45f33ca997899ddb8e35bd8a2d7feaad3864a58d4a2220e1f5ad84f881131288a711e3a288fba888f68c51ab2635465b878886d5db4215862d3d4a16fd2b522636d4e43405480441026ef77b74b70128a8fd72e6ec02d76f6505d079b5b4e0a7105c583938f8dc8d366a997bb361e4dec7a3fce4e942698e8fef55fb32fde3b9283ecbe11b592b7e96f0e35b34c8391094885b403d2e0d817aa9d3fbeebb34aa5b827049533e6794d2437521767869c0662bbf636b93efbdeb82e515c31d7f47598096908fa9276632534dd3b3381927f8ae9dc6f13115af0e16cb9fbbd17270def0e519c858bca3f39ca41e66dbd53613480401e8a2dc2d729446cb7eb156f61026d0e75efc67522922c18a3b0def1dc6b4046702e50c8f695959bdcfba0e2aa02951f37c01646ab74457db405ad74524651a05d51013b1d05612e3317ccbd73d06e5f19f6f430beae5907c60b912af8a044aab48c4ac4797fcd49fb488b280c986a51cb09dfa9001f410e9b6e38e80ffeafe5034eab7778733008b7aabe513513bf4011818072a6de2a27331900e046bdc13433085823249a7ad317eac1fa9b76995d33ea44bf878568ee80fa06de7ff40cdcdc2554e5fbd461cbf4e3e416bc011327574d22c124f157f17bd60cd7b014bbd9e7a7760d715b110deb693d25483d8b8d6bf90759a48dd2953df86a88d70dabd793117f6b93137e578ac2024d77a07b6e1390ae7d1ec7cbb1628608a7cad4d6fb45320ae987178a1c207d3046dd936f8476eea135a665d013b9719da21e208512410dee9af64fe264097e0ee2890165b18ae790a47d9cffb07f1fbe409297ed370e6178815ebd5f1d08fda046892c6bdd234e6903a7d4577020faf35eaf57f03ef4ed17ff03d86eca20cd96c3592d38d874bdd63bdf3e8de36b0c1077c9be811df432d9e2457b809afae83c634d95000289b34c684a1412321f88fd4b8972a4071e60603b10e48c034acf0577e44577a06b69ee274ba56b1c021231d090fccf62bb7de60abf1a510a205a119f5b9cd3cd8f795e5f7d7f91c5596efb476dcef18f604cd11e0341cd9080f1430f41ff12400a7a8acc8fcb6695be115e08af3297b128518b8d354d1828e23a7a7e3fd33ddff6d8a96d0ebcf5c54fa110afd1c76fdf9888489116131eccd0d099aa922d712198ccd82ed4c091c9d1c7d26f160a41833bb7aa68cdc108b79c948f204300a66226d4d69b138ad603cde6ee7db1c972dc0c731660983d70346cc0dd9d60447727ff0a34c373485523cfce41e809abce952976f9f440406cc1fa38c98347371d9a14e86397919f8346a58c133404913fb48ed477c5e7185d0e7baab009e3f4c37010fe0a605a52f3287282b81576942a7aee16e0679b7bae23c7c06367e4503ce0e33cef8ce8ea428523203a585c1dd106d5e89d83f9f853a9af1a6996bd062c2579a50b58a46c304d8b86cfc3034edbee655f5f86a1f1975a78a3271b0ac259eeff4a13b07e8d3e94feef122a93fbad25866ce51ac920c9e02f8dc659ec5c55dbd89fe1ed1fe8a85cc53a5970b83d04053217386c4152171c8bd314491091795513e934c93099736b3da53b59f41afbec9530be5eb29da7f681fd2dcc10204ee9caaea8bdc5695029a60a63fcbee557b834eda52a1356ad5fa1deb0cbe96e5c587dba1a779040f1ece1b9795c1b356e2bfb8c6ac255f1bc8c4445d39d606f6f6202f8d71f9a3f887d086e086061d332b85d28fd0d39c91d14f508451243ae6c9f38c552c0a5295f192fd7382d25656e3113bd1f350769843c6d608488ed5c1f5bb92250e8970c2a7231ad66f209620e4a86dae01c3d306f7a1d90feb3087aee46575486aa2c0c0d996da974b817d925156be554d2cad0975fee108e6ec766c93d9fe5cc639a5be6234f2ad43427deecb627a9bee52eec79294d08499a6fca7d0f7fbde4c837a8e8d62de9dcc37ca743a1a79f766a1649c156a5b8237b2c32f9f2c43f9ecc1aa763f79892adff948000e6711340bfd0e43620fa3fb5f5292f07ef850d1b79eba41f7e27734dc6d52bf297102723e83998f78d8070dabc5cc1989500d2277e4d2bf48a7232c28567d34b7cd619586f5d0b73f53ee60c69a4d8fb31c292ec71568eecece237f14fbd1144961532b9930012ea5a51f95b806543ff821a7755b0d48bb029c98195881a2d11ad2f31e83800f51aa51de2b64ae6cdd21f49903a3a6f3058e2fdd5a5744733f5dd5d38bb2126da30d55ad111590953ba08525b723dbd0c55bb802969ea8b986c9f253c68c65bee04963eb8c0913b5403655b330162515f3904b01ccc4ce84ab9e36ede4485b9ce03607a5504e686d69642ebba4ff5f755ddc045b8e3b777da57805faa5a68ede48792855feb995cea5bd88652005fa87940fb5b53af6d332e353907be795dcc03c0aa523cbd5e584f80068145f05481ac033432bccaced758ae2ec6be30d91cf5227587a0ffd3a5b5bc162a7ed61dd9ad341affa2e2ca4ffc912f1f67bcffc703ee8dca9202dbbe1a6ac25130a949d3f2fecb13ca5576b5d46ffb0f8439aaa19017f46f9c1ef6f7899013a506518277897223132642181d19853047479e74038c454eea43e7e823b4d22ea2aff8614a85f460ac92fe36be7884cec571907aa64149c31b04b25747abf426c1752500d285613543a4abcaf4499e8a3f3b503e93c1da5794aed0d4c7d7901138f5897192c768710aee0d1bc0abec0128408d1ac58fb4ccd1d426aa1d4017f6652b0df5c3d407d7bd5993137748a0828144372f4b21a28e04a4ee1e38b13db4f7ec86b106b4daee942fff39069bf028a5f8b0079d4202a9ed5638f700d14a726d658b4b817fedba0734a09353a69b2d296a3ea6010fce2e59b5980cfa57ec173d3be1a8a4e78215001859d806b0b27be97518e2e2ca807f3ced87b1384d696fce370286d6961a8a27322185c94306662cfe76ae8deb7eb1092090e7f1184b47c233b8f402ef792785dc92a5fa674be8605c43f97335df46590813637abefb9f451b226405566b1344b18ccc8458592358a9ae25f5ed"}}, 0x1117)
close_range(r3, 0xffffffffffffffff, 0x0)

736.93913ms ago: executing program 1 (id=1016):
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB="1808000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000002000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='fdinfo/3\x00')
read$FUSE(r1, &(0x7f0000001680)={0x2020}, 0x2020)

659.978034ms ago: executing program 1 (id=1018):
modify_ldt$write(0x1, &(0x7f0000000080)={0x800}, 0x10)
modify_ldt$read(0x0, &(0x7f0000000140)=""/4096, 0x1000)

579.427129ms ago: executing program 1 (id=1020):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000280)={0xa, 0x2, 0x13, @empty, 0x6}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0x12, &(0x7f0000000080)=0xffff, 0x4)
sendto$inet6(r0, &(0x7f0000000300)="802ad336", 0x4, 0x20000004, &(0x7f00000002c0)={0xa, 0x2}, 0x1c)

578.722766ms ago: executing program 0 (id=1021):
syz_mount_image$udf(&(0x7f0000000f00), &(0x7f00000000c0)='./file0\x00', 0x400, &(0x7f00000005c0)={[{@gid_ignore}, {@iocharset={'iocharset', 0x3d, 'cp1255'}}, {@utf8}, {@uid}, {@longad}, {@iocharset={'iocharset', 0x3d, 'cp852'}}, {@volume={'volume', 0x3d, 0xf3}}, {@dmode={'dmode', 0x3d, 0x4}}, {@iocharset={'iocharset', 0x3d, 'cp863'}}, {@uid}, {@undelete}, {@gid_forget}, {@uid}]}, 0x1, 0xc80, &(0x7f0000001bc0)="$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")
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x802053, 0x0, 0xfc, 0x0, &(0x7f00000000c0))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000001280)=""/4089, 0xff9)

471.926704ms ago: executing program 2 (id=1023):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000710423000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)

400.233983ms ago: executing program 0 (id=1024):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e1f, @remote}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x275a, 0x0)
writev(r1, &(0x7f0000000400)=[{&(0x7f00000002c0)="a609a89c9edd34187123b5adceb38c8557f4e107445a53c0815c9636d00f896d1e8cd8de77a79f1e3e2c53ddf1bb9f8ac5cb5257ff4e8b960026bc4244c4b09179a97dffdf02563e23546d3e78f944e7e2fee2a0e354223318badb21d8c086669c5f7772f4a6d90d0997babdf79f7d557e055b3e6f2e4f41ec06a39a57b9ccc00b", 0x81}], 0x1)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r1, 0x0)
setsockopt$sock_linger(r0, 0x1, 0x3d, &(0x7f0000000080), 0x8)
sendmmsg$sock(r0, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

348.224429ms ago: executing program 2 (id=1025):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$SOUND_PCM_READ_RATE(r0, 0x80045002, 0x0)
mmap$dsp(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2000005, 0x11, r0, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000040)=0x8000)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000140)=0x8)

347.721947ms ago: executing program 0 (id=1026):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'dummy0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=@newqdisc={0x64, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x34, 0x2, {{0x100, 0x7, 0x6361, 0x5, 0xfffffffd, 0x6}, [@TCA_NETEM_JITTER64={0xc, 0xb, 0x9}, @TCA_NETEM_LATENCY64={0xc, 0xa, 0x3}]}}}]}, 0x64}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)

269.937628ms ago: executing program 2 (id=1027):
r0 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_ENUM_FRAMESIZES(r0, 0xc02c564a, &(0x7f0000000040)={0x7, 0x59455247})

269.621257ms ago: executing program 0 (id=1028):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_int(r0, 0x29, 0x4b, 0x0, 0xad)
setsockopt$sock_int(r0, 0x1, 0x1, &(0x7f0000000140), 0x4)

190.271542ms ago: executing program 2 (id=1029):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_sco_SCO_CONNINFO(r0, 0x11, 0x2, 0x0, &(0x7f0000000080))

137.035057ms ago: executing program 0 (id=1030):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="05000000e4ef1f00810000007f00000001"], 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='fdinfo/3\x00')
read$FUSE(r0, &(0x7f00000036c0)={0x2020}, 0x2020)

136.830647ms ago: executing program 2 (id=1031):
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000500)='./file2\x00', 0x0, &(0x7f00000002c0)=ANY=[], 0x81, 0x4ac, &(0x7f00000011c0)="$eJzs20tsG1UXwPFzPLbruPk+3Adpi6piCSRCS9skLmmrIKE8iEBqG0gaEBUPhdgJJk4cxSkkVUu7BHYsumTJlgUrxBZVYolYoCDUXemGjVeUHeiO52XXSewm8TT1/1e1dx7H7r33zMy914kFAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACIDL022NOrYdcCAAC00qWJ8Z4M4z8AAG3lMut/AACAdqJiyR+icnKurBft/YrEhfzC1ZXJkdH6L+tQUYmIZcebv4nevsyZl/vPnnPLjV+/3Y7I2MTlwfRwcX5xKVcq5bLpyYX8dDGba/gdtvr6WsftDkjPz13NzsyU0n2nMlWnV1L39+ztSg30vz8cd2MnR0ZHJwIx0dgj/+8PWW+GHxdLXhSVT374Ti+JSES23hebXDs7rcNuxHG7EZMjo3ZDCvmphWVzUiNOVKS6T+JuH7UgF1sSETH10vj2rNliYsmPojJ0uqxjImK5/XDC/mC4ofqEIWqWriLSLbsgZ4+xPWLJh6Jy53RK3nT61c5/XOR62JXDjos6939Ry/qW/Tww95N5bF54O/3GwkwxEKsR545qZnyocw+GPj600mP+bEqIJWP2HV/W8bArg5brEEvmRSX+9af2vELseelTA2ePPXs+OMM4tMn7mNhTzs3VyJgcc6YOGjF/HqHa2BYJteRPUXnwe8Le73Zyw08E2oRaUhCVf26UVWvWpVZgfe/Z7WvDna1/R2K4uLi6lJ/9eLnu+WRi8KPS8tLUdP3TlbWrFTyy2Tq2VqS5JVlSKyu+Lz4re69z1gD/q+z5tfn2un8tdNeUruD108h2w8+ZJuZRpk6qltwTlZkPDlfGGUk23TftwOR/VFRK5V/UzbST/2hlL5D/V/z+S2h16bFz+//K51ruXOLIlYPrHd+J/Js6mfy/KypDfx92PtOo5N+qiTVxXaLy3u2jTlwkbuKibnMq7ziTL+R6TOy/orL/ZzdW7NikE3vAj+01sSVR+fJOdexeJ/agH9tnYtdE5e5v9WOf9mMzJnbV5Otu2o1NmthjTmyXH3tquljIbtatJv99ovLOzdfVbfO6+Q/c/7dqSs9DOd94e7vynwocu+Xk9YqT/+gm+f9KVFb/Ouq22+5797LaZ//r59/Mlb+/XR3rTkb3+7G9jTYrbCb/+0Tl/qtrXpudtjm7foaC+X8mWl16/RpS/vcFjqWcesWb7It2VFq9NjdVKOSW2GCDDTa8jbCfTGgFM/6Pm1G931J3HuOM/52VPX/G9OBzf/wfqCk9IY3/+wPHBpxZSywqklieX4wdEkmUVq+dzM9PzeZmcwuZM/09fefP9GTOxeLu5M7farjvngQm/ydE5cZPv3rrmOr5X/35f7Km9ISU/wPBNlXNaxruirZk8t8pKv331rz15kbzf3f93/1cdendfyHl/2DgWMqpV2eTfQEAAAAAAAAAAAAAAAAAu0lSLXleVFbGX1L3O0SN/P5ftqb0hPT7X12BY9nt/16D+9WoqlONVh0AAAAAAAAAAKCVImLJN6LygpT1pjnQKXIxWOKJ9l8AAAD//16uQhc=")
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f0000000140)='2', 0x1, 0x8080c61)

59.893393ms ago: executing program 0 (id=1032):
socket$inet_smc(0x2b, 0x1, 0x0)
socket$inet(0x2, 0x1, 0x100)
sendmsg$SOCK_DIAG_BY_FAMILY(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x1)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000340)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000680)=ANY=[@ANYBLOB="98030000", @ANYRES16=r1, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r3, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c090000560333"], 0x398}, 0x1, 0x0, 0x0, 0x8010}, 0x0)

0s ago: executing program 2 (id=1033):
r0 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000000180)=@newtaction={0x13, 0x32, 0x53b, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)

kernel console output (not intermixed with test programs):

SID 50:50:50:50:50:50
[   69.126545][ T5857] batman_adv: batadv0: Interface activated: batadv_slave_1
[   69.155876][ T5869] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   69.209201][ T5869] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   69.214822][ T5869] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   69.220377][ T5869] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   69.220435][ T3551] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.242433][ T3551] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.261570][ T5848] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   69.356470][   T40] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.366145][   T40] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.405568][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.427062][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.504392][   T40] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.516635][   T40] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.577090][ T5923] netlink: 'syz.2.3': attribute type 8 has an invalid length.
[   69.593764][ T5920] [U] :
[   69.595274][ T5920] [U] 
[   69.596124][ T5920] [U] 
[   69.597099][ T5920] [U] 
[   69.597980][ T5920] [U] 
[   69.598826][ T5920] [U] 
[   69.599695][ T5920] [U] 
[   69.600557][ T5920] [U] 
[   69.617968][ T5920] [U] 
[   69.618891][ T5920] [U] 
[   69.619817][ T5920] [U] 
[   69.620703][ T5920] [U] 
[   69.621578][ T5920] [U] 
[   69.622490][ T5920] [U] 
[   69.623389][ T5920] [U] 
[   69.624373][ T5920] [U] 
[   69.661379][ T5920] [U] 
[   69.662325][ T5920] [U] 
[   69.663207][ T5920] [U] 
[   69.664184][ T5920] [U] 
[   69.665314][ T5920] [U] 
[   69.666444][ T5920] [U] 
[   69.667568][ T5920] [U] 
[   69.668692][ T5920] [U] 
[   69.683537][ T5920] [U] 
[   69.684683][ T5920] [U] 
[   69.685729][ T5920] [U] 
[   69.686618][ T5920] [U] 
[   69.687773][ T5920] [U] 
[   69.688898][ T5920] [U] 
[   69.690059][ T5920] [U] 
[   69.691025][ T5920] [U] 
[   69.694189][ T5920] [U] 
[   69.695381][ T5920] [U] 
[   69.696529][ T5920] [U] 
[   69.697675][ T5920] [U] 
[   69.698854][ T5920] [U] 
[   69.700014][ T5920] [U] 
[   69.701086][ T5920] [U] 
[   69.702175][ T5920] [U] 
[   69.708606][ T5920] [U] 
[   69.709821][ T5920] [U] 
[   69.710901][ T5920] [U] 
[   69.712021][ T5920] [U] 
[   69.713210][ T5920] [U] 
[   69.714409][ T5920] [U] 
[   69.715496][ T5920] [U] 
[   69.716553][ T5920] [U] 
[   69.719127][ T5920] [U] 
[   69.720321][ T5920] [U] 
[   69.721440][ T5920] [U] 
[   69.722506][ T5920] [U] 
[   69.723580][ T5920] [U] 
[   69.724653][ T5920] [U] 
[   69.725736][ T5920] [U] 
[   69.726838][ T5920] [U] 
[   69.739951][ T5920] [U] 
[   69.740816][ T5920] [U] 
[   69.741643][ T5920] [U] 
[   69.742478][ T5920] [U] 
[   69.743534][ T5920] [U] 
[   69.744482][ T5920] [U] 
[   69.745343][ T5920] [U] 
[   69.746199][ T5920] [U] 
[   69.747674][ T5920] [U] 
[   69.748575][ T5920] [U] 
[   69.748812][ T5930] fanotify: failed to encode fid (type=0, len=0, err=-2)
[   69.749487][ T5920] [U] 
[   69.749526][ T5920] [U] 
[   69.749553][ T5920] [U] 
[   69.749577][ T5920] [U] 
[   69.749590][ T5920] [U] 
[   69.749602][ T5920] [U] 
[   69.751190][ T5920] [U] 
[   69.758829][ T5920] [U] 
[   69.759797][ T5920] [U] 
[   69.760589][ T5920] [U] 
[   69.761613][ T5920] [U] 
[   69.762509][ T5920] [U] 
[   69.763319][ T5920] [U] 
[   69.764159][ T5920] [U] 
[   69.777694][ T5920] [U] 
[   69.778884][ T5920] [U] 
[   69.779887][ T5920] [U] 
[   69.780776][ T5920] [U] 
[   69.781680][ T5920] [U] 
[   69.782753][ T5920] [U] 
[   69.783890][ T5920] [U] 
[   69.784725][ T5920] [U] 
[   69.798403][ T5920] [U] 
[   69.799313][ T5920] [U] 
[   69.800146][ T5920] [U] 
[   69.800970][ T5920] [U] 
[   69.801802][ T5920] [U] 
[   69.802623][ T5920] [U] 
[   69.803446][ T5920] [U] 
[   69.804318][ T5920] [U] 
[   69.814791][ T5920] [U] 
[   69.815767][ T5920] [U] 
[   69.816652][ T5920] [U] 
[   69.817640][ T5920] [U] 
[   69.818779][ T5920] [U] 
[   69.819947][ T5920] [U] 
[   69.820865][ T5920] [U] 
[   69.821846][ T5920] [U] 
[   69.825642][ T5920] [U] 
[   69.826646][ T5920] [U] 
[   69.827602][ T5920] [U] 
[   69.828672][ T5920] [U] 
[   69.829556][ T5920] [U] 
[   69.830439][ T5920] [U] 
[   69.831743][ T5920] [U] 
[   69.832863][ T5920] [U] 
[   69.839043][ T5920] [U] 
[   69.840286][ T5920] [U] 
[   69.841374][ T5920] [U] 
[   69.842509][ T5920] [U] 
[   69.843626][ T5920] [U] 
[   69.844769][ T5920] [U] 
[   69.845799][ T5920] [U] 
[   69.846887][ T5920] [U] 
[   69.850920][ T5920] [U] 
[   69.852105][ T5920] [U] 
[   69.853218][ T5920] [U] 
[   69.854324][ T5920] [U] 
[   69.855416][ T5920] [U] 
[   69.856492][ T5920] [U] 
[   69.857611][ T5920] [U] 
[   69.878579][ T5919] [U] 
[   69.934644][ T5934] loop0: detected capacity change from 0 to 256
[   69.952188][ T5934] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   70.073357][ T5910] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   70.210614][ T5239] Bluetooth: hci0: command tx timeout
[   70.239918][ T5910] usb 3-1: Using ep0 maxpacket: 8
[   70.258218][ T5910] usb 3-1: config 6 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[   70.262671][ T5910] usb 3-1: config 6 interface 0 altsetting 0 has an endpoint descriptor with address 0xEC, changing to 0x8C
[   70.267219][ T5910] usb 3-1: config 6 interface 0 altsetting 0 endpoint 0x8C has invalid wMaxPacketSize 0
[   70.290382][ T5239] Bluetooth: hci1: command tx timeout
[   70.371039][ T5239] Bluetooth: hci2: command tx timeout
[   70.426423][ T5910] usb 3-1: New USB device found, idVendor=0af0, idProduct=7271, bcdDevice=88.91
[   70.435375][ T5910] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   70.439134][ T5910] usb 3-1: Product: syz
[   70.446830][ T5910] usb 3-1: Manufacturer: syz
[   70.449241][ T5910] usb 3-1: SerialNumber: syz
[   70.466642][ T5910] hso 3-1:6.0: Can't find BULK IN endpoint
[   70.673643][ T5911] usb 3-1: USB disconnect, device number 2
[   70.998615][ T5940] loop0: detected capacity change from 0 to 1024
[   71.032378][ T5940] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.046863][   T33] audit: type=1800 audit(1757519818.088:2): pid=5940 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.12" name="file1" dev="loop0" ino=15 res=0 errno=0
[   71.079138][ T5853] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.188502][ T5949] Bluetooth: MGMT ver 1.23
[   71.284916][ T5955] loop2: detected capacity change from 0 to 256
[   71.362175][ T5958] netlink: 12 bytes leftover after parsing attributes in process `syz.2.19'.
[   71.413710][ T1362] ieee802154 phy0 wpan0: encryption failed: -22
[   71.416537][ T1362] ieee802154 phy1 wpan1: encryption failed: -22
[   71.512362][ T5964] loop2: detected capacity change from 0 to 256
[   71.521286][ T5964] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xb5f96684, utbl_chksum : 0xe619d30d)
[   71.712739][ T5972] syz.2.26 uses obsolete (PF_INET,SOCK_PACKET)
[   72.289653][ T5239] Bluetooth: hci0: command tx timeout
[   72.371226][ T5239] Bluetooth: hci1: command tx timeout
[   72.449864][ T5239] Bluetooth: hci2: command tx timeout
[   72.715445][ T5988] loop2: detected capacity change from 0 to 512
[   72.775153][ T5988] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.794374][ T5988] ext4 filesystem being mounted at /17/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.873762][ T5857] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.219597][ T5910] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   73.570710][ T5910] usb 3-1: Using ep0 maxpacket: 16
[   73.575075][ T5910] usb 3-1: config 1 interface 0 altsetting 206 endpoint 0x81 has invalid maxpacket 1080, setting to 1024
[   73.578460][ T5910] usb 3-1: config 1 interface 0 has no altsetting 0
[   73.584471][ T5910] usb 3-1: New USB device found, idVendor=046d, idProduct=c53a, bcdDevice= 0.40
[   73.587361][ T5910] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   73.598737][ T5910] usb 3-1: Product: syz
[   73.602078][ T5910] usb 3-1: Manufacturer: syz
[   73.603766][ T5910] usb 3-1: SerialNumber: syz
[   73.608637][ T5994] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   73.778102][ T6014] loop0: detected capacity change from 0 to 1024
[   73.876727][ T6016] process 'syz.1.43' launched './file0' with NULL argv: empty string added
[   73.881890][ T5910] usbhid 3-1:1.0: can't add hid device: -71
[   73.891111][ T5910] usbhid 3-1:1.0: probe with driver usbhid failed with error -71
[   73.911299][ T5910] usb 3-1: USB disconnect, device number 3
[   74.131947][ T6031] netlink: 'syz.0.48': attribute type 10 has an invalid length.
[   74.134951][ T6031] netlink: 40 bytes leftover after parsing attributes in process `syz.0.48'.
[   74.154005][ T6033] loop1: detected capacity change from 0 to 512
[   74.162587][ T6033] =======================================================
[   74.162587][ T6033] WARNING: The mand mount option has been deprecated and
[   74.162587][ T6033]          and is ignored by this kernel. Remove the mand
[   74.162587][ T6033]          option from the mount to silence this warning.
[   74.162587][ T6033] =======================================================
[   74.191876][ T6031] team0: Port device geneve0 added
[   74.221781][ T6033] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   74.255411][ T6033] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.259207][ T6033] ext4 filesystem being mounted at /6/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.275386][ T6033] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[   74.284320][ T6033] Quota error (device loop1): write_blk: dquota write failed
[   74.287401][ T6033] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota
[   74.292429][ T6033] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.49: Failed to acquire dquot type 0
[   74.346750][ T5848] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.480249][ T6043] loop0: detected capacity change from 0 to 32768
[   74.486979][ T5239] Bluetooth: hci0: command tx timeout
[   74.488840][ T5239] Bluetooth: hci1: command tx timeout
[   74.539042][   T54] Bluetooth: hci2: command tx timeout
[   75.413967][ T5910] IPVS: starting estimator thread 0...
[   75.561019][ T6063] IPVS: using max 63 ests per chain, 151200 per kthread
[   75.593478][ T6070] netlink: 4 bytes leftover after parsing attributes in process `syz.1.57'.
[   75.656278][ T6070] geneve2: entered promiscuous mode
[   75.658376][ T6070] geneve2: entered allmulticast mode
[   75.663635][ T5869] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 41745 - 0
[   75.667242][ T5869] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 41745 - 0
[   75.683559][ T5869] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 41745 - 0
[   75.689130][ T5869] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 41745 - 0
[   75.969560][ T5912] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   76.023009][ T6089] sp0: Synchronizing with TNC
[   76.130341][ T5912] usb 2-1: Using ep0 maxpacket: 8
[   76.136062][ T5912] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   76.143979][ T5912] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xE has invalid wMaxPacketSize 0
[   76.162836][ T5912] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   76.179735][ T5912] usb 2-1: New USB device found, idVendor=077d, idProduct=627a, bcdDevice= 0.01
[   76.183321][ T5912] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   76.186279][ T5912] usb 2-1: Product: syz
[   76.187845][ T5912] usb 2-1: Manufacturer: syz
[   76.200179][ T5912] usb 2-1: SerialNumber: syz
[   76.205503][ T5912] usb 2-1: config 0 descriptor??
[   76.228680][ T5912] radioshark 2-1:0.0: Invalid radioSHARK device
[   76.235754][ T5912] radioshark 2-1:0.0: probe with driver radioshark failed with error -22
[   76.239222][ T5912] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[   76.386237][ T6102] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   76.427564][ T5912] usb 2-1: USB disconnect, device number 2
[   77.335058][ T6126] loop0: detected capacity change from 0 to 32768
[   77.346646][ T6126] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.72 (6126)
[   77.373803][ T6126] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   77.378381][ T6126] BTRFS info (device loop0): using crc32c (crc32c-lib) checksum algorithm
[   77.382677][ T6126] BTRFS warning (device loop0): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[   77.457033][ T6126] BTRFS info (device loop0): rebuilding free space tree
[   77.484852][ T6126] BTRFS info (device loop0): disabling free space tree
[   77.487793][ T6126] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[   77.492739][ T6126] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[   77.512431][ T6126] BTRFS info (device loop0): setting nodatasum
[   77.515147][ T6126] BTRFS info (device loop0): setting nodatacow
[   77.517684][ T6126] BTRFS info (device loop0): enabling ssd optimizations
[   77.522991][ T6126] BTRFS info (device loop0): turning off barriers
[   77.525574][ T6126] BTRFS info (device loop0): turning on flush-on-commit
[   77.528342][ T6126] BTRFS info (device loop0): enabling disk space caching
[   77.531768][ T6126] BTRFS info (device loop0): force clearing of disk cache
[   77.534656][ T6126] BTRFS info (device loop0): enabling auto defrag
[   77.537044][ T6126] BTRFS info (device loop0): doing ref verification
[   77.543680][ T6126] BTRFS info (device loop0): max_inline set to 4096
[   77.571866][ T5912] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   77.732377][ T5912] usb 2-1: config 7 descriptor has 1 excess byte, ignoring
[   77.735272][ T5912] usb 2-1: config 7 has 1 interface, different from the descriptor's value: 2
[   77.736905][ T5853] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   77.746946][ T5912] usb 2-1: New USB device found, idVendor=19d2, idProduct=1275, bcdDevice= 7.84
[   77.751220][ T5912] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   77.754269][ T5912] usb 2-1: Product: syz
[   77.755861][ T5912] usb 2-1: Manufacturer: syz
[   77.757712][ T5912] usb 2-1: SerialNumber: syz
[   77.783076][ T5912] rndis_host 2-1:7.0: skipping garbage
[   77.793918][ T5912] usb 2-1: bad CDC descriptors
[   77.798795][ T5912] option 2-1:7.0: GSM modem (1-port) converter detected
[   77.992610][ T2303] usb 2-1: USB disconnect, device number 3
[   77.998109][ T2303] option 2-1:7.0: device disconnected
[   78.035441][ T6163] loop0: detected capacity change from 0 to 1024
[   78.065957][ T6163] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.102099][ T5853] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.377563][ T6182] loop2: detected capacity change from 0 to 64
[   78.455269][ T6184] netlink: 12 bytes leftover after parsing attributes in process `syz.2.87'.
[   78.524615][ T6188] netlink: 8 bytes leftover after parsing attributes in process `syz.2.89'.
[   78.528122][ T6188] netlink: 12 bytes leftover after parsing attributes in process `syz.2.89'.
[   78.663964][ T6196] netlink: 28 bytes leftover after parsing attributes in process `syz.1.93'.
[   78.669894][ T6195] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   79.393300][ T6215] nfs: Unknown parameter 'ntext'
[   79.764625][ T6231] loop0: detected capacity change from 0 to 512
[   79.773418][ T6231] EXT4-fs: Ignoring removed i_version option
[   79.775716][ T6231] EXT4-fs: Ignoring removed mblk_io_submit option
[   79.800357][ T6231] EXT4-fs (loop0): Test dummy encryption mode enabled
[   79.816464][ T6231] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c018, mo2=0103]
[   79.826701][ T6231] EXT4-fs error (device loop0): ext4_orphan_get:1392: comm syz.0.108: inode #13: comm syz.0.108: iget: illegal inode #
[   79.845574][ T6231] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.108: couldn't read orphan inode 13 (err -117)
[   79.861807][ T6231] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.878434][ T6231] EXT4-fs (loop0): shut down requested (1)
[   79.916012][ T5853] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.027964][ T6247] loop0: detected capacity change from 0 to 512
[   80.044636][ T6248] loop1: detected capacity change from 0 to 16
[   80.054131][ T6247] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   80.075611][ T6248] erofs (device loop1): mounted with root inode @ nid 36.
[   80.107257][ T6247] EXT4-fs (loop0): 1 orphan inode deleted
[   80.114062][ T6247] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.121510][ T6247] ext4 filesystem being mounted at /syzcgroup/cpu/syz0/cgroup.procs supports timestamps until 2038-01-19 (0x7fffffff)
[   80.134428][   T40] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   80.138348][   T40] EXT4-fs error (device loop0): ext4_release_dquot:6973: comm kworker/u10:2: Failed to release dquot type 1
[   80.150050][   T40] EXT4-fs (loop0): Remounting filesystem read-only
[   80.154911][ T6247] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.211844][ T6254] netlink: 'syz.2.119': attribute type 1 has an invalid length.
[   80.334419][ T6264] IPVS: Error joining to the multicast group
[   80.342073][ T6260] veth0_to_bond: entered allmulticast mode
[   80.424632][ T6268] loop1: detected capacity change from 0 to 128
[   80.430895][ T6267] loop0: detected capacity change from 0 to 8
[   80.440548][ T6268] affs: Bad value for 'root'
[   80.820556][ T6290] loop1: detected capacity change from 0 to 64
[   80.965328][ T6299] IPVS: sync thread started: state = MASTER, mcast_ifn = hsr0, syncid = 4, id = 0
[   80.970446][ T5912] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[   80.991881][ T5298] udevd[5298]: worker [5851] terminated by signal 33 (Unknown signal 33)
[   80.995144][ T5298] udevd[5298]: worker [5851] failed while handling '/devices/virtual/block/loop1'
[   81.115962][ T6309] loop1: detected capacity change from 0 to 256
[   81.119991][ T5912] usb 3-1: Using ep0 maxpacket: 16
[   81.125582][ T5912] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   81.131236][ T5912] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[   81.137275][ T6309] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[   81.141851][ T5912] usb 3-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[   81.146359][ T5912] usb 3-1: config 0 interface 0 has no altsetting 0
[   81.148980][ T5912] usb 3-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[   81.154960][ T5912] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   81.158821][ T5912] usb 3-1: config 0 descriptor??
[   81.167424][ T6309] exFAT-fs (loop1): error, data size is invalid(10)
[   81.401268][ T6307] loop0: detected capacity change from 0 to 32768
[   81.406443][ T6307] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.145 (6307)
[   81.427524][ T6307] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   81.433162][ T6307] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[   81.473509][ T6307] BTRFS info (device loop0): enabling ssd optimizations
[   81.476374][ T6307] BTRFS info (device loop0): enabling free space tree
[   81.548295][ T5853] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   81.592249][ T5912] hid (null): unknown global tag 0xc
[   81.600726][ T5912] hid (null): bogus close delimiter
[   81.603118][ T5912] hid (null): invalid report_size 12466
[   81.605506][ T5912] hid (null): invalid report_count 51528
[   81.621855][ T5912] hid (null): unknown global tag 0xe
[   81.724469][ T6334] netlink: 8 bytes leftover after parsing attributes in process `syz.0.150'.
[   81.777064][ T5912] usb 3-1: USB disconnect, device number 4
[   81.872158][ T6341] loop0: detected capacity change from 0 to 1024
[   81.887386][ T6341] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.912015][ T5853] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.169195][ T6347] capability: warning: `syz.0.154' uses 32-bit capabilities (legacy support in use)
[   82.917391][ T6363] loop2: detected capacity change from 0 to 8192
[   83.103319][ T6378] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   83.216191][ T6386] vcan0: tx drop: invalid sa for name 0x0000000000000100
[   83.767160][ T6396] warning: `syz.1.175' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   84.122058][ T6406] loop2: detected capacity change from 0 to 256
[   84.125177][ T6406] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   84.139725][ T6406] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[   84.148685][ T6406] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[   84.157046][ T6400] loop1: detected capacity change from 0 to 32768
[   84.181433][   T33] audit: type=1800 audit(1757519831.218:3): pid=6406 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.180" name="file1" dev="loop2" ino=1048594 res=0 errno=0
[   84.231906][ T6400] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   84.312708][ T6400] XFS (loop1): Ending clean mount
[   84.338475][ T6400] XFS (loop1): Quotacheck needed: Please wait.
[   84.404114][ T6400] XFS (loop1): Quotacheck: Done.
[   84.477510][ T6400] XFS (loop1): User initiated shutdown received.
[   84.481618][ T6400] XFS (loop1): Metadata I/O Error (0x4) detected at xfs_fs_goingdown+0x105/0x150 (fs/xfs/xfs_fsops.c:466).  Shutting down filesystem.
[   84.499661][ T6400] XFS (loop1): Please unmount the filesystem and rectify the problem(s)
[   84.557931][ T5848] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   84.626963][ T6426] loop0: detected capacity change from 0 to 8192
[   84.807674][ T6429] loop0: detected capacity change from 0 to 1024
[   84.817470][ T6429] EXT4-fs: quotafile must be on filesystem root
[   84.861391][ T6429] netlink: 8 bytes leftover after parsing attributes in process `syz.0.188'.
[   84.933540][ T6434] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.189'.
[   85.219470][   T96] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   85.369665][   T96] usb 1-1: Using ep0 maxpacket: 16
[   85.375378][   T96] usb 1-1: config 1 has an invalid descriptor of length 97, skipping remainder of the config
[   85.379797][   T96] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[   85.385923][   T96] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   85.390726][   T96] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   85.394106][   T96] usb 1-1: Product: syz
[   85.395786][   T96] usb 1-1: Manufacturer: syz
[   85.397680][   T96] usb 1-1: SerialNumber: syz
[   85.577575][ T6448] netlink: 4 bytes leftover after parsing attributes in process `syz.2.195'.
[   85.618211][   T96] usb 1-1: 0:2 : does not exist
[   85.632848][   T96] usb 1-1: 5:0: failed to get current value for ch 0 (-22)
[   85.667177][   T96] usb 1-1: USB disconnect, device number 2
[   85.854474][ T6020] udevd[6020]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   85.869121][ T6456] o2cb: This node has not been configured.
[   85.875024][ T6456] o2cb: Cluster check failed. Fix errors before retrying.
[   85.877646][ T6456] (syz.2.196,6456,0):user_dlm_register:674 ERROR: status = -22
[   85.894620][ T6456] (syz.2.196,6456,0):dlmfs_mkdir:438 ERROR: Error -22 could not register domain "bus"
[   86.443045][ T6460] netlink: 8 bytes leftover after parsing attributes in process `syz.0.198'.
[   86.777360][   T10] cfg80211: failed to load regulatory.db
[   87.005025][ T6466] loop2: detected capacity change from 0 to 1024
[   87.018388][ T6468] loop0: detected capacity change from 0 to 64
[   87.030297][ T6466] EXT4-fs: Ignoring removed orlov option
[   87.032184][ T6466] EXT4-fs: Ignoring removed nomblk_io_submit option
[   87.073910][ T6466] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.151219][ T5857] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.201905][ T6479] loop2: detected capacity change from 0 to 256
[   87.714176][ T6489] loop1: detected capacity change from 0 to 32768
[   87.730447][ T6489] bcachefs (/dev/loop1): error validating superblock: Invalid superblock section replicas_v0: invalid device 1 in entry user: 1/113 [0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 1 1 1 1 1 1 1 1 2 2 4 5 5 5 5 5 6 8 10 108]
[   87.730447][ T6489] replicas_v0 (size 24):
[   87.730447][ T6489] btree: 1 [0] journal: 1 [0] user: 113 [4 0 0 0 0 0 0 0 108 1 0 0 6 0 0 0 0 0 0 0 0 0 0 0 10 0 0 0 0 0 0 0 1 0 1 0 5 0 0 0 8 0 0 0 0 0 0 0 1 0 2 0 5 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 5 0 0 0 0 0 0 0 0 0 0 0 1 0 0 1 5 0 0 0 0 0 0 0 0 0 0 0 1 0 0 2 5 0 0 0 0 0 0 0 0 0 0 0 1]
[   87.730447][ T6489] 
[   87.758437][ T6489] bcachefs: bch2_fs_get_tree() error: invalid_replicas_entry
[   87.929989][ T6505] loop1: detected capacity change from 0 to 4096
[   88.117732][ T6507] loop0: detected capacity change from 0 to 32768
[   88.198556][ T6507] JBD2: Ignoring recovery information on journal
[   88.256604][ T6507] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   88.395453][ T5853] ocfs2: Unmounting device (7,0) on (node local)
[   88.429869][   T24] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[   88.620501][   T24] usb 2-1: New USB device found, idVendor=0000, idProduct=0000, bcdDevice= 0.00
[   88.626385][   T24] usb 2-1: New USB device strings: Mfr=0, Product=5, SerialNumber=0
[   88.634535][   T24] usb 2-1: Product: syz
[   88.637753][ T6523] netlink: 28 bytes leftover after parsing attributes in process `syz.0.224'.
[   88.647374][   T24] usb 2-1: config 0 descriptor??
[   88.649674][ T6523] netlink: 28 bytes leftover after parsing attributes in process `syz.0.224'.
[   88.658615][   T24] gspca_main: spca501-2.14.0 probing 0000:0000
[   88.761910][ T6529] cgroup: Unexpected value for 'cpuset_v2_mode'
[   89.187722][   T24] gspca_spca501: reg write: error -71
[   89.190653][   T24] spca501 2-1:0.0: Reg write failed for 0x02,0xa048,0x00
[   89.234564][   T24] spca501 2-1:0.0: probe with driver spca501 failed with error -22
[   89.284804][   T24] usb 2-1: USB disconnect, device number 4
[   89.501729][ T6539] loop0: detected capacity change from 0 to 32768
[   89.517830][ T6539] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   89.555378][ T6539] XFS (loop0): Ending clean mount
[   89.667813][ T5853] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   89.817306][ T6551] loop2: detected capacity change from 0 to 4096
[   89.878284][ T6551] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.958670][ T5857] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.078111][ T6566] loop2: detected capacity change from 0 to 512
[   90.087753][ T6566] EXT4-fs (loop2): Test dummy encryption mode enabled
[   90.105891][ T6566] EXT4-fs (loop2): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   90.148643][ T5857] EXT4-fs (loop2): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[   90.256538][   T24] libceph: connect (1)[c::]:6789 error -101
[   90.259718][   T24] libceph: mon0 (1)[c::]:6789 connect error
[   90.265649][   T24] libceph: connect (1)[c::]:6789 error -101
[   90.268172][   T24] libceph: mon0 (1)[c::]:6789 connect error
[   90.425926][ T6565] loop0: detected capacity change from 0 to 40427
[   90.521624][ T6565] F2FS-fs (loop0): build fault injection rate: 14
[   90.524382][ T6565] F2FS-fs (loop0): build fault injection type: 0x3bfe8c
[   90.532326][   T24] libceph: connect (1)[c::]:6789 error -101
[   90.535412][   T24] libceph: mon0 (1)[c::]:6789 connect error
[   90.545920][ T6565] F2FS-fs (loop0): invalid crc value
[   90.559460][    C1] F2FS-fs (loop0): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[   90.578881][    C1] F2FS-fs (loop0): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[   90.647300][ T6565] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   90.651346][ T6565] F2FS-fs (loop0): inject page alloc in f2fs_grab_cache_folio of __get_meta_folio+0x157/0x4f0
[   90.663379][ T6565] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   90.692523][ T6565] F2FS-fs (loop0): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x1d9/0xa40
[   90.704656][ T6565] F2FS-fs (loop0): inject inconsistent footer in sanity_check_node_footer of f2fs_write_inline_data+0x9b/0x790
[   90.710748][ T6565] F2FS-fs (loop0): inconsistent node block, node_type:1, nid:10, node_footer[nid:10,ino:10,ofs:0,cpver:0,blkaddr:0]
[   90.741340][ T5853] syz-executor: attempt to access beyond end of device
[   90.741340][ T5853] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   90.752053][ T5853] CPU: 0 UID: 0 PID: 5853 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[   90.752073][ T5853] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   90.752107][ T5853] Call Trace:
[   90.752112][ T5853]  <TASK>
[   90.752116][ T5853]  dump_stack_lvl+0x189/0x250
[   90.752132][ T5853]  ? __pfx_dump_stack_lvl+0x10/0x10
[   90.752142][ T5853]  ? __pfx_queue_work_on+0x10/0x10
[   90.752150][ T5853]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   90.752165][ T5853]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   90.752189][ T5853]  f2fs_handle_critical_error+0x37c/0x540
[   90.752213][ T5853]  f2fs_write_end_io+0x886/0xb60
[   90.752231][ T5853]  __submit_merged_bio+0x27a/0x6a0
[   90.752245][ T5853]  __submit_merged_write_cond+0x255/0x530
[   90.752259][ T5853]  f2fs_write_data_pages+0x261d/0x3000
[   90.752289][ T5853]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   90.752335][ T5853]  ? check_path+0x21/0x40
[   90.752344][ T5853]  ? check_noncircular+0xe0/0x160
[   90.752373][ T5853]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   90.752381][ T5853]  do_writepages+0x32e/0x550
[   90.752397][ T5853]  ? do_raw_spin_unlock+0x4d/0x240
[   90.752408][ T5853]  filemap_fdatawrite+0x199/0x240
[   90.752419][ T5853]  ? __pfx_filemap_fdatawrite+0x10/0x10
[   90.752449][ T5853]  ? do_raw_spin_unlock+0x4d/0x240
[   90.752460][ T5853]  f2fs_sync_dirty_inodes+0x31f/0x830
[   90.752474][ T5853]  f2fs_write_checkpoint+0x95a/0x1df0
[   90.752493][ T5853]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[   90.752521][ T5853]  ? kill_f2fs_super+0x298/0x6c0
[   90.752531][ T5853]  kill_f2fs_super+0x2c3/0x6c0
[   90.752542][ T5853]  ? __pfx_kill_f2fs_super+0x10/0x10
[   90.752548][ T5853]  ? radix_tree_delete_item+0x2b6/0x400
[   90.752563][ T5853]  ? shrinker_free+0x2ce/0x3e0
[   90.752573][ T5853]  deactivate_locked_super+0xbc/0x130
[   90.752589][ T5853]  cleanup_mnt+0x425/0x4c0
[   90.752599][ T5853]  ? lockdep_hardirqs_on+0x9c/0x150
[   90.752608][ T5853]  task_work_run+0x1d4/0x260
[   90.752620][ T5853]  ? __pfx_task_work_run+0x10/0x10
[   90.752628][ T5853]  ? __x64_sys_umount+0x122/0x160
[   90.752641][ T5853]  ? exit_to_user_mode_loop+0x40/0x110
[   90.752653][ T5853]  exit_to_user_mode_loop+0xec/0x110
[   90.752664][ T5853]  do_syscall_64+0x2bd/0x3b0
[   90.752672][ T5853]  ? lockdep_hardirqs_on+0x9c/0x150
[   90.752679][ T5853]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.752686][ T5853]  ? exc_page_fault+0x9f/0xf0
[   90.752695][ T5853]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.752702][ T5853] RIP: 0033:0x7f32cc78fed7
[   90.752711][ T5853] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   90.752718][ T5853] RSP: 002b:00007ffc93405c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   90.752727][ T5853] RAX: 0000000000000000 RBX: 00007f32cc811c05 RCX: 00007f32cc78fed7
[   90.752732][ T5853] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc93405d20
[   90.752737][ T5853] RBP: 00007ffc93405d20 R08: 0000000000000000 R09: 0000000000000000
[   90.752741][ T5853] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc93406db0
[   90.752746][ T5853] R13: 00007f32cc811c05 R14: 00000000000161e2 R15: 00007ffc93406df0
[   90.752759][ T5853]  </TASK>
[   90.752762][ T5853] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[   91.056869][   T24] libceph: connect (1)[c::]:6789 error -101
[   91.064293][   T24] libceph: mon0 (1)[c::]:6789 connect error
[   91.087742][ T6587] ALSA: seq fatal error: cannot create timer (-22)
[   91.151851][ T6574] ceph: No mds server is up or the cluster is laggy
[   91.459462][   T10] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   91.543819][ T6600] loop1: detected capacity change from 0 to 32768
[   91.615243][   T10] usb 1-1: New USB device found, idVendor=2c42, idProduct=1709, bcdDevice=ca.b7
[   91.618850][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   91.631537][   T10] usb 1-1: Product: syz
[   91.633301][   T10] usb 1-1: Manufacturer: syz
[   91.635286][   T10] usb 1-1: SerialNumber: syz
[   91.661272][   T10] usb 1-1: config 0 descriptor??
[   91.725143][ T6600] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,metadata_target=invalid label 246,noinodes_use_key_cache,journal_flush_delay=3,journal_reclaim_delay=1000,nocow
[   91.725166][ T6600]   allowing incompatible features above 0.0: (unknown version)
[   91.725175][ T6600]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   91.758401][ T6600] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0
[   91.766402][ T6600] bcachefs (loop1): initializing new filesystem
[   91.800594][ T6600] bcachefs (loop1): going read-write
[   91.825272][ T6600] bcachefs (loop1): marking superblocks
[   91.859186][ T6628] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.260'.
[   91.881551][ T6600] bcachefs (loop1): initializing freespace
[   91.920362][ T6600] bcachefs (loop1): done initializing freespace
[   91.926584][ T6632] netlink: 4 bytes leftover after parsing attributes in process `syz.2.261'.
[   91.933198][ T6600] bcachefs (loop1): reading snapshots table
[   91.939147][ T6600] bcachefs (loop1): reading snapshots done
[   91.961325][ T6600] bcachefs (loop1): done starting filesystem
[   92.028982][ T6600] syz.1.251 (6600) used greatest stack depth: 16120 bytes left
[   92.065866][ T5848] bcachefs (loop1): shutting down
[   92.068398][ T5848] bcachefs (loop1): going read-only
[   92.077548][ T5848] bcachefs (loop1): finished waiting for writes to stop
[   92.085167][ T5848] bcachefs (loop1): flushing journal and stopping allocators, journal seq 7
[   92.133178][ T5848] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 9
[   92.141115][ T5848] bcachefs (loop1): clean shutdown complete, journal seq 10
[   92.146217][ T5848] bcachefs (loop1): marking filesystem clean
[   92.187820][ T5848] bcachefs (loop1): shutdown complete
[   92.275702][   T10] usb 1-1: f81604_read: reg: 105 failed: -EREMOTEIO
[   92.278276][   T10] f81604 1-1:0.0: Setting termination of CH#1 failed: -EREMOTEIO
[   92.283070][   T10] f81604 1-1:0.0: probe with driver f81604 failed with error -121
[   93.095840][ T6643] loop2: detected capacity change from 0 to 128
[   94.082346][ T6666] loop2: detected capacity change from 0 to 4096
[   94.212593][ T6666] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[   94.217816][ T6666] ntfs3(loop2): Failed to load $Extend (-22).
[   94.221135][ T6666] ntfs3(loop2): Failed to initialize $Extend.
[   94.382592][ T6668] program syz.1.270 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   94.693723][   T96] usb 1-1: USB disconnect, device number 3
[   94.833028][ T6682] program syz.2.281 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   96.951290][ T6727] loop2: detected capacity change from 0 to 40427
[   96.952250][ T6730] loop1: detected capacity change from 0 to 1024
[   96.959947][ T6727] F2FS-fs (loop2): invalid crc value
[   96.962515][ T6730] EXT4-fs: Ignoring removed orlov option
[   96.988310][ T6730] EXT4-fs: Ignoring removed nomblk_io_submit option
[   97.025760][ T6727] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[   97.031348][ T6727] F2FS-fs (loop2): Start checkpoint disabled!
[   97.039796][ T6730] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.042686][ T6727] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[   97.233967][ T5848] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.552585][ T3551] kworker/u9:4: attempt to access beyond end of device
[   97.552585][ T3551] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   97.561499][ T3551] CPU: 0 UID: 0 PID: 3551 Comm: kworker/u9:4 Not tainted syzkaller #0 PREEMPT(full) 
[   97.561514][ T3551] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   97.561519][ T3551] Workqueue: writeback wb_workfn (flush-7:2)
[   97.561535][ T3551] Call Trace:
[   97.561539][ T3551]  <TASK>
[   97.561544][ T3551]  dump_stack_lvl+0x189/0x250
[   97.561557][ T3551]  ? __pfx_dump_stack_lvl+0x10/0x10
[   97.561566][ T3551]  ? __pfx_queue_work_on+0x10/0x10
[   97.561574][ T3551]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   97.561587][ T3551]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   97.561603][ T3551]  f2fs_handle_critical_error+0x37c/0x540
[   97.561619][ T3551]  f2fs_write_end_io+0x886/0xb60
[   97.561635][ T3551]  __submit_merged_bio+0x27a/0x6a0
[   97.561649][ T3551]  __submit_merged_write_cond+0x255/0x530
[   97.561663][ T3551]  f2fs_write_data_pages+0x261d/0x3000
[   97.561686][ T3551]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   97.561699][ T3551]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[   97.561722][ T3551]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[   97.561744][ T3551]  ? trace_f2fs_writepages+0x7f/0x200
[   97.561755][ T3551]  ? f2fs_write_node_pages+0x478/0x6e0
[   97.561768][ T3551]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[   97.561784][ T3551]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   97.561792][ T3551]  do_writepages+0x32e/0x550
[   97.561806][ T3551]  ? reacquire_held_locks+0x127/0x1d0
[   97.561814][ T3551]  ? writeback_sb_inodes+0x384/0x1010
[   97.561829][ T3551]  __writeback_single_inode+0x145/0xff0
[   97.561839][ T3551]  ? do_raw_spin_unlock+0x4d/0x240
[   97.561855][ T3551]  writeback_sb_inodes+0x6c7/0x1010
[   97.561877][ T3551]  ? __pfx_writeback_sb_inodes+0x10/0x10
[   97.561904][ T3551]  ? rcu_is_watching+0x15/0xb0
[   97.561917][ T3551]  wb_writeback+0x43b/0xaf0
[   97.561930][ T3551]  ? queue_io+0x371/0x590
[   97.561941][ T3551]  ? __pfx_wb_writeback+0x10/0x10
[   97.561954][ T3551]  ? _raw_spin_unlock_irq+0x23/0x50
[   97.561967][ T3551]  wb_workfn+0x409/0xef0
[   97.561982][ T3551]  ? __pfx_wb_workfn+0x10/0x10
[   97.561992][ T3551]  ? __lock_acquire+0xab9/0xd20
[   97.562008][ T3551]  ? process_scheduled_works+0x9ef/0x17b0
[   97.562018][ T3551]  ? _raw_spin_unlock_irq+0x23/0x50
[   97.562029][ T3551]  ? process_scheduled_works+0x9ef/0x17b0
[   97.562035][ T3551]  ? process_scheduled_works+0x9ef/0x17b0
[   97.562043][ T3551]  process_scheduled_works+0xae1/0x17b0
[   97.562064][ T3551]  ? __pfx_process_scheduled_works+0x10/0x10
[   97.562079][ T3551]  worker_thread+0x8a0/0xda0
[   97.562098][ T3551]  kthread+0x711/0x8a0
[   97.562109][ T3551]  ? __pfx_worker_thread+0x10/0x10
[   97.562117][ T3551]  ? __pfx_kthread+0x10/0x10
[   97.562126][ T3551]  ? _raw_spin_unlock_irq+0x23/0x50
[   97.562137][ T3551]  ? lockdep_hardirqs_on+0x9c/0x150
[   97.562144][ T3551]  ? __pfx_kthread+0x10/0x10
[   97.562154][ T3551]  ret_from_fork+0x3fc/0x770
[   97.562164][ T3551]  ? __pfx_ret_from_fork+0x10/0x10
[   97.562174][ T3551]  ? __switch_to_asm+0x39/0x70
[   97.562183][ T3551]  ? __switch_to_asm+0x33/0x70
[   97.562191][ T3551]  ? __pfx_kthread+0x10/0x10
[   97.562200][ T3551]  ret_from_fork_asm+0x1a/0x30
[   97.562217][ T3551]  </TASK>
[   97.562268][ T3551] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[   97.919206][ T6745] xt_policy: neither incoming nor outgoing policy selected
[   98.231039][ T6752] loop2: detected capacity change from 0 to 40427
[   98.234378][ T6752] F2FS-fs: heap/no_heap options were deprecated
[   98.237181][ T6752] F2FS-fs (loop2): Invalid segment/section count (24 != 24 * 3)
[   98.240120][ T6752] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[   98.245144][ T6752] F2FS-fs (loop2): invalid crc value
[   98.291955][ T6752] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   98.318460][ T6752] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[   98.326570][ T6752] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   98.406290][ T6761] loop1: detected capacity change from 0 to 64
[   98.598983][ T6765] netlink: 8 bytes leftover after parsing attributes in process `syz.1.312'.
[   98.605899][ T6765] netlink: 12 bytes leftover after parsing attributes in process `syz.1.312'.
[   98.644157][   T96] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   98.801728][   T96] usb 1-1: config 220 has an invalid interface number: 76 but max is 2
[   98.805144][   T96] usb 1-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[   98.808632][   T96] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[   98.817759][ T6777] loop1: detected capacity change from 0 to 8
[   98.819260][   T96] usb 1-1: config 220 has no interface number 2
[   98.822742][   T96] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[   98.830222][ T6777] SQUASHFS error: zlib decompression failed, data probably corrupt
[   98.833011][ T6777] SQUASHFS error: Failed to read block 0x9b: -5
[   98.834879][ T6777] SQUASHFS error: Unable to read metadata cache entry [99]
[   98.837130][ T6777] SQUASHFS error: Unable to read inode 0x127
[   98.845933][   T96] usb 1-1: config 220 interface 0 has no altsetting 0
[   98.848683][   T96] usb 1-1: config 220 interface 76 has no altsetting 0
[   98.858299][   T96] usb 1-1: config 220 interface 1 has no altsetting 0
[   98.890176][   T96] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[   98.893752][   T96] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   98.897009][   T96] usb 1-1: Product: syz
[   98.898723][   T96] usb 1-1: Manufacturer: syz
[   98.914163][   T96] usb 1-1: SerialNumber: syz
[   98.949173][ T6773] loop2: detected capacity change from 0 to 32768
[   98.969676][ T6773] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.315 (6773)
[   98.998394][ T6773] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   99.004390][ T6773] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm
[   99.058574][ T6773] BTRFS info (device loop2): enabling ssd optimizations
[   99.064226][ T6773] BTRFS info (device loop2): enabling free space tree
[   99.110091][ T5857] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   99.176548][   T96] usb 1-1: Found UVC 7.01 device syz (8086:0b07)
[   99.179300][   T96] usb 1-1: No valid video chain found.
[   99.194327][   T96] usb 1-1: selecting invalid altsetting 0
[   99.213969][   T96] usb 1-1: selecting invalid altsetting 0
[   99.216166][   T96] usbtest 1-1:220.1: probe with driver usbtest failed with error -22
[   99.248560][   T96] usb 1-1: USB disconnect, device number 4
[   99.305973][ T6781] loop1: detected capacity change from 0 to 32768
[   99.454919][ T6781] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[   99.454934][ T6781]   allowing incompatible features above 0.0: (unknown version)
[   99.454939][ T6781]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   99.471179][ T6781] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0
[   99.473934][ T6781] bcachefs (loop1): initializing new filesystem
[   99.489890][ T6781] bcachefs (loop1): going read-write
[   99.501095][ T6781] bcachefs (loop1): marking superblocks
[   99.503793][ T6813] netlink: 'syz.2.322': attribute type 11 has an invalid length.
[   99.513340][ T6781] bcachefs (loop1): initializing freespace
[   99.518125][ T6781] bcachefs (loop1): done initializing freespace
[   99.527095][ T6781] bcachefs (loop1): reading snapshots table
[   99.529185][ T6781] bcachefs (loop1): reading snapshots done
[   99.551832][ T6781] bcachefs (loop1): done starting filesystem
[   99.728085][ T5848] bcachefs (loop1): shutting down
[   99.736280][ T5848] bcachefs (loop1): going read-only
[   99.738468][ T5848] bcachefs (loop1): finished waiting for writes to stop
[   99.762594][ T5848] bcachefs (loop1): flushing journal and stopping allocators, journal seq 3
[   99.808432][ T5848] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 4
[   99.842456][ T5848] bcachefs (loop1): clean shutdown complete, journal seq 5
[   99.845962][ T5848] bcachefs (loop1): marking filesystem clean
[   99.892809][ T5848] bcachefs (loop1): shutdown complete
[  100.272447][   T47] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  100.399573][  T794] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  100.432459][   T47] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  100.435623][   T47] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  100.442470][   T47] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  100.445850][   T47] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  100.448696][   T47] usb 1-1: Product: syz
[  100.450859][   T47] usb 1-1: Manufacturer: syz
[  100.452468][   T47] usb 1-1: SerialNumber: syz
[  100.549558][  T794] usb 3-1: Using ep0 maxpacket: 8
[  100.554251][  T794] usb 3-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  100.557381][  T794] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  100.562479][  T794] usb 3-1: Product: syz
[  100.564111][  T794] usb 3-1: Manufacturer: syz
[  100.565939][  T794] usb 3-1: SerialNumber: syz
[  100.570313][  T794] usb 3-1: config 0 descriptor??
[  100.575435][  T794] gspca_main: se401-2.14.0 probing 047d:5003
[  100.990004][  T794] gspca_se401: Bayer format not supported!
[  101.055571][ T6844] netlink: 12 bytes leftover after parsing attributes in process `syz.1.337'.
[  101.198615][  T794] usb 3-1: USB disconnect, device number 5
[  101.217959][ T6850] loop1: detected capacity change from 0 to 512
[  101.234956][ T6850] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  101.242867][ T6850] EXT4-fs (loop1): 1 truncate cleaned up
[  101.246833][ T6850] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.258879][ T6850] fscrypt (loop1, inode 18): Unsupported encryption flags (0x26)
[  101.288265][ T5848] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.472549][   T47] cdc_ncm 1-1:1.0: bind() failure
[  101.477428][   T47] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[  101.480105][   T47] cdc_ncm 1-1:1.1: bind() failure
[  101.680237][   T96] usb 1-1: USB disconnect, device number 5
[  102.058151][ T6860] loop2: detected capacity change from 0 to 40427
[  102.070536][ T6860] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  102.073658][ T6860] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  102.080504][ T6860] F2FS-fs (loop2): invalid crc value
[  102.153578][ T6860] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  102.158754][ T6860] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  102.161778][ T6860] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  102.310520][ T6871] netlink: 8 bytes leftover after parsing attributes in process `syz.0.347'.
[  102.334959][ T6871] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[  102.495737][ T6882] loop0: detected capacity change from 0 to 512
[  102.509708][ T6882] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  102.531117][ T6882] EXT4-fs (loop0): 1 truncate cleaned up
[  102.533696][ T6882] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.644401][ T5853] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.409667][   T54] Bluetooth: hci2: command tx timeout
[  103.579260][ T6895] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  103.579579][ T6892] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  103.582078][ T6895] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  103.585610][ T6892] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  103.598153][ T6895] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  103.608459][ T6895] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  103.611301][ T6895] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  103.612175][ T6892] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  103.615610][ T6892] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  103.621451][ T6895] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  103.626197][ T6892] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  103.628377][ T6892] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  103.879547][   T96] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  103.968605][ T6923] loop2: detected capacity change from 0 to 1024
[  103.974343][ T6923] EXT4-fs: Ignoring removed nomblk_io_submit option
[  104.015987][ T6923] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.030248][   T96] usb 2-1: Using ep0 maxpacket: 16
[  104.034954][   T96] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  104.038145][   T96] usb 2-1: config 0 has no interface number 0
[  104.046872][   T96] usb 2-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[  104.051058][   T96] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  104.055023][   T96] usb 2-1: Product: syz
[  104.056618][   T96] usb 2-1: Manufacturer: syz
[  104.058415][   T96] usb 2-1: SerialNumber: syz
[  104.058798][ T5857] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.073684][   T96] usb 2-1: config 0 descriptor??
[  104.082804][   T96] gspca_main: spca1528-2.14.0 probing 04fc:1528
[  104.124396][ T5912] IPVS: starting estimator thread 0...
[  104.211747][ T6929] IPVS: using max 63 ests per chain, 151200 per kthread
[  104.218028][ T6931] loop0: detected capacity change from 0 to 2048
[  104.258195][ T6931] UDF-fs: error (device loop0): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  104.265160][ T6931] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[  104.268068][ T6931] UDF-fs: Scanning with blocksize 512 failed
[  104.274511][ T6931] UDF-fs: error (device loop0): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  104.279143][ T6931] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[  104.286920][ T6931] UDF-fs: Scanning with blocksize 1024 failed
[  104.292695][ T6931] UDF-fs: error (device loop0): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  104.298928][ T6931] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512
[  104.303992][ T6931] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[  104.306915][ T6931] UDF-fs: Scanning with blocksize 2048 failed
[  104.311762][ T6931] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  104.315709][ T6931] UDF-fs: error (device loop0): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  104.321168][ T6931] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512
[  104.324653][ T6931] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[  104.327531][ T6931] UDF-fs: Scanning with blocksize 4096 failed
[  104.330365][ T6931] UDF-fs: warning (device loop0): udf_fill_super: No partition found (1)
[  104.430460][ T6935] netlink: 8 bytes leftover after parsing attributes in process `syz.0.372'.
[  104.440126][ T6935] netlink: 'syz.0.372': attribute type 2 has an invalid length.
[  104.591607][ T6939] loop0: detected capacity change from 0 to 2048
[  104.615718][ T6933] loop2: detected capacity change from 0 to 32768
[  104.625015][ T6933] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.371 (6933)
[  104.656188][ T6933] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  104.661829][ T6933] BTRFS info (device loop2): using crc32c (crc32c-lib) checksum algorithm
[  104.665281][ T6933] BTRFS warning (device loop2): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  104.803710][ T6933] BTRFS info (device loop2): rebuilding free space tree
[  104.835451][ T6933] BTRFS info (device loop2): disabling free space tree
[  104.840461][ T6933] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  104.856362][ T6933] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  104.871513][ T6933] BTRFS info (device loop2): enabling ssd optimizations
[  104.874248][ T6933] BTRFS info (device loop2): turning off barriers
[  104.888619][ T6933] BTRFS info (device loop2): turning on flush-on-commit
[  104.898811][ T6933] BTRFS info (device loop2): enabling disk space caching
[  104.903878][ T6933] BTRFS info (device loop2): force clearing of disk cache
[  104.906633][ T6933] BTRFS info (device loop2): doing ref verification
[  104.913341][ T6933] BTRFS info (device loop2): use lzo compression, level 0
[  104.975502][   T33] audit: type=1800 audit(1757519852.018:4): pid=6933 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.371" name="bus" dev="loop2" ino=263 res=0 errno=0
[  105.005489][ T6933] Invalid ELF header magic: != ELF
[  105.094949][ T5857] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  105.235312][ T6948] loop0: detected capacity change from 0 to 40427
[  105.259864][ T6948] F2FS-fs (loop0): build fault injection rate: 14
[  105.262143][ T6948] F2FS-fs (loop0): build fault injection type: 0x3bfe8c
[  105.310599][ T6948] F2FS-fs (loop0): invalid crc value
[  105.323623][    C1] F2FS-fs (loop0): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[  105.343036][    C0] F2FS-fs (loop0): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[  105.390230][ T6948] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  105.393540][ T6948] F2FS-fs (loop0): inject page alloc in f2fs_grab_cache_folio of __get_meta_folio+0x157/0x4f0
[  105.398501][ T6948] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  105.415184][ T6948] F2FS-fs (loop0): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x1d9/0xa40
[  105.422273][ T6948] F2FS-fs (loop0): inject dquot initialize in f2fs_dquot_initialize of f2fs_mknod+0x155/0x5d0
[  105.427148][ T6948] F2FS-fs (loop0): inject no more block in inc_valid_node_count of f2fs_new_node_folio+0x18b/0xa40
[  105.434566][ T6948] F2FS-fs (loop0): inject no more block in inc_valid_block_count of f2fs_reserve_new_blocks+0x11a/0xab0
[  105.436514][ T6963] netlink: 40 bytes leftover after parsing attributes in process `syz.2.376'.
[  105.446639][ T6963] bridge0: port 2(bridge_slave_1) entered blocking state
[  105.449832][ T6963] bridge0: port 2(bridge_slave_1) entered forwarding state
[  105.454614][ T5853] syz-executor: attempt to access beyond end of device
[  105.454614][ T5853] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  105.461001][ T5853] CPU: 0 UID: 0 PID: 5853 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  105.461013][ T5853] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  105.461019][ T5853] Call Trace:
[  105.461023][ T5853]  <TASK>
[  105.461027][ T5853]  dump_stack_lvl+0x189/0x250
[  105.461043][ T5853]  ? __pfx_dump_stack_lvl+0x10/0x10
[  105.461052][ T5853]  ? __pfx_queue_work_on+0x10/0x10
[  105.461061][ T5853]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  105.461073][ T5853]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  105.461090][ T5853]  f2fs_handle_critical_error+0x37c/0x540
[  105.461106][ T5853]  f2fs_write_end_io+0x886/0xb60
[  105.461123][ T5853]  __submit_merged_bio+0x27a/0x6a0
[  105.461138][ T5853]  __submit_merged_write_cond+0x255/0x530
[  105.461152][ T5853]  f2fs_write_data_pages+0x261d/0x3000
[  105.461177][ T5853]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  105.461193][ T5853]  ? is_bpf_text_address+0x26/0x2b0
[  105.461218][ T5853]  ? kernel_text_address+0xa5/0xe0
[  105.461229][ T5853]  ? __kernel_text_address+0xd/0x40
[  105.461239][ T5853]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  105.461258][ T5853]  ? __lock_acquire+0xab9/0xd20
[  105.461274][ T5853]  ? do_raw_spin_lock+0x121/0x290
[  105.461289][ T5853]  ? do_raw_spin_unlock+0x4d/0x240
[  105.461298][ T5853]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  105.461306][ T5853]  do_writepages+0x32e/0x550
[  105.461323][ T5853]  ? do_raw_spin_unlock+0x4d/0x240
[  105.461335][ T5853]  filemap_fdatawrite+0x199/0x240
[  105.461345][ T5853]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  105.461380][ T5853]  ? do_raw_spin_unlock+0x4d/0x240
[  105.461391][ T5853]  f2fs_sync_dirty_inodes+0x31f/0x830
[  105.461407][ T5853]  f2fs_write_checkpoint+0x95a/0x1df0
[  105.461427][ T5853]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  105.461459][ T5853]  ? kill_f2fs_super+0x298/0x6c0
[  105.461470][ T5853]  kill_f2fs_super+0x2c3/0x6c0
[  105.461482][ T5853]  ? __pfx_kill_f2fs_super+0x10/0x10
[  105.461488][ T5853]  ? radix_tree_delete_item+0x2b6/0x400
[  105.461504][ T5853]  ? shrinker_free+0x2ce/0x3e0
[  105.461514][ T5853]  deactivate_locked_super+0xbc/0x130
[  105.461526][ T5853]  cleanup_mnt+0x425/0x4c0
[  105.461535][ T5853]  ? lockdep_hardirqs_on+0x9c/0x150
[  105.461545][ T5853]  task_work_run+0x1d4/0x260
[  105.461556][ T5853]  ? __pfx_task_work_run+0x10/0x10
[  105.461565][ T5853]  ? __x64_sys_umount+0x122/0x160
[  105.461577][ T5853]  ? exit_to_user_mode_loop+0x40/0x110
[  105.461591][ T5853]  exit_to_user_mode_loop+0xec/0x110
[  105.461602][ T5853]  do_syscall_64+0x2bd/0x3b0
[  105.461610][ T5853]  ? lockdep_hardirqs_on+0x9c/0x150
[  105.461617][ T5853]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.461625][ T5853]  ? exc_page_fault+0x9f/0xf0
[  105.461633][ T5853]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.461640][ T5853] RIP: 0033:0x7f32cc78fed7
[  105.461650][ T5853] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  105.461656][ T5853] RSP: 002b:00007ffc93405c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  105.461665][ T5853] RAX: 0000000000000000 RBX: 00007f32cc811c05 RCX: 00007f32cc78fed7
[  105.461670][ T5853] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc93405d20
[  105.461675][ T5853] RBP: 00007ffc93405d20 R08: 0000000000000000 R09: 0000000000000000
[  105.461679][ T5853] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc93406db0
[  105.461684][ T5853] R13: 00007f32cc811c05 R14: 0000000000019b61 R15: 00007ffc93406df0
[  105.461698][ T5853]  </TASK>
[  105.461701][ T5853] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  105.556967][   T96] gspca_spca1528: reg_w err -71
[  105.589708][   T96] spca1528 2-1:0.1: probe with driver spca1528 failed with error -71
[  105.604096][   T96] usb 2-1: USB disconnect, device number 5
[  105.742235][ T6971] loop2: detected capacity change from 0 to 4096
[  105.758890][ T6971] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512).
[  105.792920][ T6971] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  105.797826][ T6971] ntfs3(loop2): ino=5, mi_enum_attr
[  105.810128][ T6971] ntfs3(loop2): ino=5, "/" mi_enum_attr
[  106.129548][   T96] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  106.279758][   T96] usb 3-1: Using ep0 maxpacket: 8
[  106.284085][   T96] usb 3-1: config 252 has an invalid interface number: 104 but max is 0
[  106.287272][   T96] usb 3-1: config 252 has no interface number 0
[  106.294121][   T96] usb 3-1: config 252 interface 104 has no altsetting 0
[  106.302660][   T96] usb 3-1: New USB device found, idVendor=0497, idProduct=c001, bcdDevice= b.c7
[  106.309750][   T96] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  106.316327][   T96] usb 3-1: Product: syz
[  106.322766][   T96] usb 3-1: Manufacturer: syz
[  106.324607][   T96] usb 3-1: SerialNumber: syz
[  106.342763][   T96] gspca_main: spca501-2.14.0 probing 0497:c001
[  106.556757][   T96] gspca_spca501: reg write: error -71
[  106.562838][   T96] spca501 3-1:252.104: Reg write failed for 0x02,0x07,0x05
[  106.565805][   T96] spca501 3-1:252.104: probe with driver spca501 failed with error -22
[  106.587638][   T96] usb 3-1: USB disconnect, device number 6
[  107.270701][ T7022] loop1: detected capacity change from 0 to 4096
[  107.283778][ T7022] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[  107.740424][ T5912] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  107.879668][  T794] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  107.909933][ T5912] usb 3-1: Using ep0 maxpacket: 32
[  107.915738][ T5912] usb 3-1: config 0 has an invalid interface number: 219 but max is 0
[  107.929313][ T5912] usb 3-1: config 0 has no interface number 0
[  107.933343][ T5912] usb 3-1: config 0 interface 219 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1023
[  107.946370][ T5912] usb 3-1: New USB device found, idVendor=108c, idProduct=0169, bcdDevice=75.b9
[  107.951552][ T5912] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  107.956084][ T5912] usb 3-1: Product: syz
[  108.077434][ T5912] usb 3-1: Manufacturer: syz
[  108.079497][ T5912] usb 3-1: SerialNumber: syz
[  108.087399][ T5912] usb 3-1: config 0 descriptor??
[  108.091887][ T7034] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  108.114781][  T794] usb 1-1: config 220 has an invalid interface number: 76 but max is 2
[  108.117855][  T794] usb 1-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  108.121880][  T794] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  108.126002][  T794] usb 1-1: config 220 has no interface number 2
[  108.128619][  T794] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  108.134404][  T794] usb 1-1: config 220 interface 0 has no altsetting 0
[  108.137165][  T794] usb 1-1: config 220 interface 76 has no altsetting 0
[  108.140427][  T794] usb 1-1: config 220 interface 1 has no altsetting 0
[  108.145474][  T794] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  108.148687][  T794] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  108.152377][  T794] usb 1-1: Product: syz
[  108.154208][  T794] usb 1-1: Manufacturer: syz
[  108.157737][  T794] usb 1-1: SerialNumber: syz
[  108.407583][ T5912] etas_es58x 3-1:0.219: Starting syz syz (Serial Number syz)
[  108.430562][  T794] usb 1-1: Found UVC 7.01 device syz (8086:0b07)
[  108.434359][ T5912] usb 3-1: USB disconnect, device number 7
[  108.436780][  T794] usb 1-1: No valid video chain found.
[  108.443197][  T794] usb 1-1: selecting invalid altsetting 0
[  108.468676][  T794] usb 1-1: selecting invalid altsetting 0
[  108.471134][  T794] usbtest 1-1:220.1: probe with driver usbtest failed with error -22
[  108.476247][  T794] usb 1-1: USB disconnect, device number 6
[  109.376920][ T7089] netlink: 8 bytes leftover after parsing attributes in process `syz.1.428'.
[  109.386060][ T7089] netlink: 8 bytes leftover after parsing attributes in process `syz.1.428'.
[  109.511531][ T7099] loop0: detected capacity change from 0 to 47
[  109.531139][ T7099] syz.0.431: attempt to access beyond end of device
[  109.531139][ T7099] loop0: rw=1, sector=48, nr_sectors = 2 limit=47
[  109.536620][ T7099] Buffer I/O error on dev loop0, logical block 24, lost async page write
[  109.557258][ T7099] syz.0.431: attempt to access beyond end of device
[  109.557258][ T7099] loop0: rw=1, sector=50, nr_sectors = 2 limit=47
[  109.564784][ T7099] Buffer I/O error on dev loop0, logical block 25, lost async page write
[  109.733749][ T7110] netlink: 232 bytes leftover after parsing attributes in process `syz.2.438'.
[  109.742745][ T7112] loop1: detected capacity change from 0 to 64
[  109.799578][ T7112] MINIX-fs: deleted inode referenced: 6
[  109.802739][ T7112] MINIX-fs: deleted inode referenced: 6
[  109.805164][ T7112] MINIX-fs: deleted inode referenced: 6
[  109.828036][ T7112] MINIX-fs: deleted inode referenced: 6
[  110.000576][ T7127] loop0: detected capacity change from 0 to 1024
[  110.024688][ T7130] loop1: detected capacity change from 0 to 1024
[  110.042258][ T7127] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  110.058020][ T7127] ext4 filesystem being mounted at /147/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.127833][ T7127] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 3: comm syz.0.445: lblock 3 mapped to illegal pblock 3 (length 3)
[  110.189203][ T7127] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  110.205056][ T7127] EXT4-fs (loop0): This should not happen!! Data will be lost
[  110.205056][ T7127] 
[  110.217575][ T7130] hfsplus: catalog searching failed
[  110.220496][ T7127] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.445: lblock 3 mapped to illegal pblock 3 (length 3)
[  110.241158][   T33] audit: type=1800 audit(1757519857.288:5): pid=7127 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.445" name="file1" dev="loop0" ino=15 res=0 errno=0
[  110.287217][ T1091] hfsplus: b-tree write err: -5, ino 3
[  110.297283][ T5848] hfsplus: node 4:3 still has 2 user(s)!
[  110.318792][   T40] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  110.331525][   T40] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 36 with error 28
[  110.337691][   T40] EXT4-fs (loop0): This should not happen!! Data will be lost
[  110.337691][   T40] 
[  110.342675][   T40] EXT4-fs (loop0): Total free blocks count 0
[  110.345110][   T40] EXT4-fs (loop0): Free/Dirty block details
[  110.347426][   T40] EXT4-fs (loop0): free_blocks=4293918720
[  110.351859][   T40] EXT4-fs (loop0): dirty_blocks=48
[  110.353883][   T40] EXT4-fs (loop0): Block reservation details
[  110.599278][ T7157] loop0: detected capacity change from 0 to 1024
[  110.623359][ T7159] openvswitch: netlink: Unknown key attributes 2
[  110.735959][ T7166] netlink: 104 bytes leftover after parsing attributes in process `syz.0.461'.
[  110.939070][ T7161] loop1: detected capacity change from 0 to 32768
[  110.952893][ T7161] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  110.973409][ T7161] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  111.035060][ T5848] ocfs2: Unmounting device (7,1) on (node local)
[  111.338572][ T7183] loop0: detected capacity change from 0 to 32768
[  111.353728][ T7183] jfs_strtoUCS: char2uni returned -22.
[  111.356183][ T7183] charset = cp936, char = 0xd4
[  111.419610][ T5912] usb 2-1: new full-speed USB device number 6 using dummy_hcd
[  111.593900][ T5912] usb 2-1: config 0 has an invalid interface number: 8 but max is 0
[  111.606574][ T5912] usb 2-1: config 0 has no interface number 0
[  111.613429][ T5912] usb 2-1: config 0 interface 8 altsetting 0 has an endpoint descriptor with address 0x9F, changing to 0x8F
[  111.621871][ T5912] usb 2-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  111.628397][ T5912] usb 2-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  111.635920][ T5912] usb 2-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  111.648392][ T7195] loop0: detected capacity change from 0 to 1024
[  111.651358][ T5912] usb 2-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  111.654512][ T5912] usb 2-1: Product: syz
[  111.656141][ T5912] usb 2-1: SerialNumber: syz
[  111.661201][ T5912] usb 2-1: config 0 descriptor??
[  111.668587][ T5912] cm109 2-1:0.8: invalid payload size 0, expected 4
[  111.677332][ T5912] input: CM109 USB driver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.8/input/input7
[  111.680453][ T7195] EXT4-fs: Ignoring removed nobh option
[  111.718209][ T7195] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.886477][    C0] cm109 2-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90
[  111.998037][ T7202] netlink: 'syz.2.477': attribute type 2 has an invalid length.
[  112.155062][    C1] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71
[  112.155952][  T794] usb 2-1: USB disconnect, device number 6
[  112.157814][    C1] cm109 2-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  112.182809][  T794] cm109 2-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  112.466037][ T7223] loop2: detected capacity change from 0 to 1024
[  112.484553][ T7223] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.496316][ T5853] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.536418][ T5857] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.667843][ T7235] netlink: 16178 bytes leftover after parsing attributes in process `syz.2.492'.
[  112.981258][ T7248] Bluetooth: MGMT ver 1.23
[  113.081373][ T7254] tap0: tun_chr_ioctl cmd 1074025677
[  113.083697][ T7254] tap0: linktype set to 804
[  113.122749][ T7256] netlink: 12 bytes leftover after parsing attributes in process `syz.2.500'.
[  113.321159][ T7265] loop1: detected capacity change from 0 to 1024
[  113.364891][ T7268] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  113.607104][ T7280] netlink: 24 bytes leftover after parsing attributes in process `syz.0.512'.
[  113.659225][ T7286] xt_time: unknown flags 0xf4
[  113.660917][   T96] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  113.815699][   T96] usb 3-1: Using ep0 maxpacket: 16
[  113.840793][   T96] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  113.844313][   T96] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  113.861108][   T96] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  113.864229][   T96] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  113.867306][   T96] usb 3-1: Product: syz
[  113.868881][   T96] usb 3-1: Manufacturer: syz
[  113.880577][   T96] usb 3-1: SerialNumber: syz
[  113.924743][ T7295] loop0: detected capacity change from 0 to 4096
[  113.929265][ T7295] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[  113.960598][ T7295] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  113.972829][ T7295] ntfs3(loop0): ino=19, mi_enum_attr
[  113.994565][ T7295] ntfs3(loop0): failed to convert "c46c" to default
[  114.004784][ T7295] ntfs3(loop0): ino=20, mi_enum_attr
[  114.114159][   T96] usb 3-1: 0:2 : does not exist
[  114.116290][   T96] usb 3-1: unit 9 not found!
[  114.124779][   T96] usb 3-1: 4:0: cannot get min/max values for control 1 (id 4)
[  114.136114][ T7298] loop1: detected capacity change from 0 to 32768
[  114.137955][   T96] usb 3-1: 4:0: cannot get min/max values for control 2 (id 4)
[  114.147047][ T7298] (syz.1.521,7298,0):ocfs2_verify_heartbeat:839 ERROR: Heartbeat has to be started to mount a read-write clustered device.
[  114.165218][   T96] usb 3-1: 4:0: cannot get min/max values for control 3 (id 4)
[  114.165792][ T7298] (syz.1.521,7298,0):ocfs2_fill_super:1177 ERROR: status = -22
[  114.213893][   T96] usb 3-1: USB disconnect, device number 8
[  114.336605][ T7303] netlink: 'syz.1.523': attribute type 1 has an invalid length.
[  114.411634][ T7303] gretap1: entered allmulticast mode
[  114.417430][ T7303] bond1: (slave gretap1): making interface the new active one
[  114.421103][ T7303] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  114.692875][ T7312] binder_alloc: 7311: pid 7311 spamming oneway? 1 buffers allocated for a total size of 4096
[  114.698255][ T7312] binder_alloc: 7311: pid 7311 spamming oneway? 2 buffers allocated for a total size of 5120
[  114.912421][ T7319] netlink: 248 bytes leftover after parsing attributes in process `syz.1.530'.
[  115.574555][ T7327] netlink: 44 bytes leftover after parsing attributes in process `syz.2.531'.
[  115.856289][ T7334] loop0: detected capacity change from 0 to 256
[  115.912858][ T7334] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  117.801736][   T10] usb 1-1: new full-speed USB device number 7 using dummy_hcd
[  117.961426][   T10] usb 1-1: config 0 has an invalid interface number: 128 but max is 0
[  117.966003][   T10] usb 1-1: config 0 has no interface number 0
[  117.978565][   T10] usb 1-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  117.982744][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  117.990875][   T10] usb 1-1: Product: syz
[  117.994989][   T10] usb 1-1: Manufacturer: syz
[  117.998226][   T10] usb 1-1: SerialNumber: syz
[  118.009897][   T10] usb 1-1: config 0 descriptor??
[  118.434086][   T10] usb 1-1: Firmware: major: 0, minor: 84, hardware type: UNKNOWN (103)
[  118.638515][   T10] usb 1-1: failed to fetch extended address, random address set
[  118.642238][   T10] usb 1-1: atusb_probe: initialization failed, error = -524
[  118.644850][   T10] atusb 1-1:0.128: probe with driver atusb failed with error -524
[  118.663705][   T10] usb 1-1: USB disconnect, device number 7
[  118.902043][ T7364] loop2: detected capacity change from 0 to 32768
[  118.925348][ T7364] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.548 (7364)
[  118.941424][   T33] audit: type=1326 audit(1757519865.978:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7373 comm="syz.1.553" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f320f98eba9 code=0x0
[  118.947916][ T7364] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  118.955131][ T7364] BTRFS info (device loop2): using crc32c (crc32c-lib) checksum algorithm
[  119.022693][ T7364] BTRFS info (device loop2): rebuilding free space tree
[  119.038708][ T7364] BTRFS info (device loop2): allowing degraded mounts
[  119.041625][ T7364] BTRFS info (device loop2): enabling ssd optimizations
[  119.044509][ T7364] BTRFS info (device loop2): enabling free space tree
[  119.049065][ T7364] BTRFS info (device loop2): force clearing of disk cache
[  119.052756][ T7364] BTRFS info (device loop2): use zstd compression, level 3
[  119.055847][ T7364] BTRFS info (device loop2): max_inline set to 0
[  119.170677][ T5857] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  119.342939][ T7395] loop0: detected capacity change from 0 to 256
[  119.356617][ T7395] exfat: Deprecated parameter 'utf8'
[  119.365470][ T7395] exfat: Deprecated parameter 'utf8'
[  119.383656][ T7395] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  119.573751][ T7405] loop2: detected capacity change from 0 to 512
[  119.581335][ T7405] EXT4-fs (loop2): orphan cleanup on readonly fs
[  119.588170][ T7405] EXT4-fs warning (device loop2): ext4_xattr_inode_get:556: inode #11: comm syz.2.560: EA inode hash validation failed
[  119.592710][ T7405] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  119.597402][ T7405] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #15: comm syz.2.560: corrupted inode contents
[  119.605896][ T7405] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #15: comm syz.2.560: mark_inode_dirty error
[  119.610134][ T7405] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #15: comm syz.2.560: corrupted inode contents
[  119.613847][ T7405] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2991: inode #15: comm syz.2.560: mark_inode_dirty error
[  119.617657][ T7405] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2994: inode #15: comm syz.2.560: mark inode dirty (error -117)
[  119.625895][ T7405] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117)
[  119.629060][ T7405] EXT4-fs (loop2): 1 orphan inode deleted
[  119.637448][ T7405] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  119.678502][ T5857] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.887774][ T7417] loop0: detected capacity change from 0 to 16
[  119.898359][ T7417] erofs (device loop0): mounted with root inode @ nid 36.
[  119.925624][ T6627] erofs (device loop0): failed to decompress -26 in[46, 0] out[9000]
[  119.930823][ T7417] erofs (device loop0): failed to decompress -26 in[46, 4050] out[8192]
[  119.935028][ T7417] erofs (device loop0): read error -117 @ 1 of nid 89
[  119.939917][   T33] audit: type=1800 audit(1757519866.978:7): pid=7417 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.564" name="file2" dev="loop0" ino=89 res=0 errno=0
[  120.030605][ T5910] usb 2-1: new full-speed USB device number 7 using dummy_hcd
[  120.036274][ T7419] loop0: detected capacity change from 0 to 512
[  120.107541][ T7419] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  120.113927][ T7419] ext4 filesystem being mounted at /188/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  120.154032][ T7419] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  120.183238][ T5853] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.195766][ T5910] usb 2-1: config 0 has an invalid interface number: 105 but max is 0
[  120.202240][ T5910] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  120.214614][ T5910] usb 2-1: config 0 has no interface number 0
[  120.232796][ T5910] usb 2-1: New USB device found, idVendor=046c, idProduct=14e8, bcdDevice= b.28
[  120.252823][ T5910] usb 2-1: New USB device strings: Mfr=5, Product=2, SerialNumber=3
[  120.265315][ T5910] usb 2-1: Product: syz
[  120.270945][ T5910] usb 2-1: Manufacturer: syz
[  120.278627][ T5910] usb 2-1: SerialNumber: syz
[  120.297137][ T5910] usb 2-1: config 0 descriptor??
[  120.317219][ T5910] usb 2-1: Found UVC 0.00 device syz (046c:14e8)
[  120.326413][ T5910] uvcvideo 2-1:0.105: Entity type for entity Output 1 was not initialized!
[  120.336494][ T5910] usb 2-1: Failed to create links for entity 1
[  120.346956][ T5910] usb 2-1: Failed to register entities (-22).
[  120.441424][ T7426] loop0: detected capacity change from 0 to 64
[  120.535477][ T5910] usb 2-1: USB disconnect, device number 7
[  120.817405][ T7428] loop0: detected capacity change from 0 to 16384
[  120.822258][ T7428] bcachefs (/dev/loop0): error validating superblock: Invalid option invalid compression opt 240
[  120.826498][ T7428] bcachefs: bch2_fs_get_tree() error: invalid_sb_opt_compression
[  120.984862][ T7430] loop2: detected capacity change from 0 to 32768
[  120.987970][ T7430] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.569 (7430)
[  121.001904][ T7430] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  121.006107][ T7430] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm
[  121.069733][ T7430] BTRFS info (device loop2): enabling ssd optimizations
[  121.072552][ T7430] BTRFS info (device loop2): enabling free space tree
[  121.169868][ T5857] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  121.533812][ T7468] loop2: detected capacity change from 0 to 4096
[  121.555884][ T7468] ntfs3(loop2): ino=3, ntfs_set_state failed, -22.
[  121.558535][ T7468] ntfs3(loop2): Failed to initialize $Secure::$SII (-22).
[  121.561918][ T7468] ntfs3(loop2): Failed to initialize $Secure (-22).
[  121.565461][ T7468] ntfs3(loop2): ino=3, ntfs3_write_inode failed, -22.
[  121.747519][ T7474] loop2: detected capacity change from 0 to 256
[  121.752826][ T7474] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  121.756989][ T7474] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  121.771179][ T7474] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  121.785641][   T33] audit: type=1800 audit(1757519868.828:8): pid=7474 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.581" name="file1" dev="loop2" ino=1048599 res=0 errno=0
[  121.855225][ T7476] loop2: detected capacity change from 0 to 512
[  121.868450][ T7476] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  121.914018][ T5857] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.297875][ T7495] netlink: 'syz.2.590': attribute type 1 has an invalid length.
[  122.306933][ T7495] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  122.567398][ T7507] loop2: detected capacity change from 0 to 2048
[  122.581889][ T7507] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found!
[  122.607683][ T7507] UDF-fs: unknown compression code (0)
[  122.661129][ T7516] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  122.680195][ T7516] CIFS mount error: No usable UNC path provided in device string!
[  122.680195][ T7516] 
[  122.684427][ T7516] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  122.979631][ T5910] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  123.041807][ T7535] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  123.132318][ T5910] usb 2-1: config 0 has an invalid interface number: 171 but max is 0
[  123.134936][ T5910] usb 2-1: config 0 has no interface number 0
[  123.136935][ T5910] usb 2-1: config 0 interface 171 has no altsetting 0
[  123.143199][ T5910] usb 2-1: New USB device found, idVendor=10d6, idProduct=2200, bcdDevice= 1.00
[  123.146424][ T5910] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  123.156546][ T5910] usb 2-1: Product: syz
[  123.157826][ T5910] usb 2-1: Manufacturer: syz
[  123.159654][ T5910] usb 2-1: SerialNumber: syz
[  123.162684][ T5910] usb 2-1: config 0 descriptor??
[  123.168572][ T5910] usb-storage 2-1:0.171: USB Mass Storage device detected
[  123.202986][ T7541] netlink: 8 bytes leftover after parsing attributes in process `syz.2.611'.
[  123.306986][ T5910] hid-generic 0000:0004:0034.0002: unknown main item tag 0x0
[  123.311249][ T5910] hid-generic 0000:0004:0034.0002: unknown main item tag 0x0
[  123.314173][ T5910] hid-generic 0000:0004:0034.0002: unknown main item tag 0x0
[  123.324314][ T5910] hid-generic 0000:0004:0034.0002: hidraw0: <UNKNOWN> HID v0.0e Device [syz0] on syz1
[  123.362375][   T33] audit: type=1326 audit(1757519870.408:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7546 comm="syz.2.614" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f47d598eba9 code=0x0
[  123.373733][ T5910] usb 2-1: USB disconnect, device number 8
[  123.829487][   T47] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  123.970388][ T7558] loop1: detected capacity change from 0 to 2048
[  123.985514][   T47] usb 1-1: Using ep0 maxpacket: 16
[  123.991538][ T7558] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  123.993362][   T47] usb 1-1: New USB device found, idVendor=1943, idProduct=2257, bcdDevice=91.ed
[  124.002071][   T47] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  124.005339][   T47] usb 1-1: Product: syz
[  124.006911][   T47] usb 1-1: Manufacturer: syz
[  124.008776][   T47] usb 1-1: SerialNumber: syz
[  124.015268][   T47] usb 1-1: config 0 descriptor??
[  124.024866][   T47] s2255 1-1:0.0: Could not find bulk-in endpoint
[  124.027532][   T47] Sensoray 2255 driver load failed: 0xfffffff4
[  124.034076][   T47] s2255 1-1:0.0: probe with driver s2255 failed with error -12
[  124.169318][ T7564] loop1: detected capacity change from 0 to 8
[  124.207962][ T7564] SQUASHFS error: Failed to read block 0x2d7: -5
[  124.217848][ T7564] SQUASHFS error: Unable to read metadata cache entry [2d5]
[  124.237060][   T10] usb 1-1: USB disconnect, device number 8
[  124.328578][ T7570] sock: sock_timestamping_bind_phc: sock not bind to device
[  124.378676][ T7572] loop2: detected capacity change from 0 to 512
[  124.385286][ T7568] loop1: detected capacity change from 0 to 4096
[  124.394607][ T7572] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  124.406971][ T7572] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ee018, mo2=0002]
[  124.417470][ T7572] System zones: 1-12
[  124.431009][ T7572] EXT4-fs (loop2): 1 truncate cleaned up
[  124.434669][ T7572] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  124.484099][ T7572] EXT4-fs warning (device loop2): ext4_group_extend:1862: can't shrink FS - resize aborted
[  124.528908][ T5857] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.360631][ T7595] veth0_to_bridge: entered promiscuous mode
[  125.381731][ T7594] veth0_to_bridge: left promiscuous mode
[  126.459879][   T96] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  126.628861][   T96] usb 1-1: New USB device found, idVendor=0545, idProduct=800d, bcdDevice= 3.0a
[  126.637480][   T96] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  126.657262][   T96] usb 1-1: config 0 descriptor??
[  126.664654][   T96] gspca_main: xirlink-cit-2.14.0 probing 0545:800d
[  126.687876][   T96] input: xirlink-cit as /devices/platform/dummy_hcd.0/usb1/1-1/input/input8
[  126.854602][ T7616] loop1: detected capacity change from 0 to 40427
[  126.880545][ T7616] F2FS-fs (loop1): Insane cp_payload (553648128 >= 504)
[  126.883268][ T7616] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  126.888180][   T96] usb 1-1: USB disconnect, device number 9
[  126.897077][ T7616] F2FS-fs (loop1): build fault injection rate: 1
[  126.907134][ T7616] F2FS-fs (loop1): build fault injection type: 0x1f6
[  126.917685][ T7616] F2FS-fs (loop1): inject kvmalloc in f2fs_kvmalloc of f2fs_fill_super+0x3deb/0x6ff0
[  126.926826][ T7616] F2FS-fs (loop1): Failed to get valid F2FS checkpoint
[  127.684480][ T7687] netlink: 'syz.0.652': attribute type 1 has an invalid length.
[  127.687378][ T7687] netlink: 184 bytes leftover after parsing attributes in process `syz.0.652'.
[  127.691195][ T7687] netlink: 'syz.0.652': attribute type 1 has an invalid length.
[  127.754538][ T7691] loop0: detected capacity change from 0 to 64
[  127.816205][ T7693] netlink: 63503 bytes leftover after parsing attributes in process `syz.0.655'.
[  127.850523][   T96] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  127.866576][ T7695] loop0: detected capacity change from 0 to 16
[  127.871636][ T7695] erofs (device loop0): mounted with root inode @ nid 36.
[  128.069530][   T96] usb 2-1: Using ep0 maxpacket: 32
[  128.091942][   T96] usb 2-1: config 0 has an invalid interface number: 133 but max is 0
[  128.095162][   T96] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  128.099209][   T96] usb 2-1: config 0 has no interface number 0
[  128.113959][   T96] usb 2-1: config 0 interface 133 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024
[  128.119340][   T96] usb 2-1: config 0 interface 133 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  128.126533][   T96] usb 2-1: config 0 interface 133 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  128.133857][   T33] audit: type=1326 audit(1757519875.178:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7703 comm="syz.2.660" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f47d598eba9 code=0x0
[  128.135464][   T96] usb 2-1: New USB device found, idVendor=0424, idProduct=012c, bcdDevice=71.1e
[  128.146563][   T96] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  128.149327][   T96] usb 2-1: Product: syz
[  128.155447][   T96] usb 2-1: Manufacturer: syz
[  128.158700][   T96] usb 2-1: SerialNumber: syz
[  128.171425][   T96] usb 2-1: config 0 descriptor??
[  128.179619][ T7683] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  128.670427][   T96] usb 2-1: probing VID:PID(0424:012C)   
[  128.674808][   T96] usb 2-1: vub300 testing BULK OUT EndPoint(0) 0B
[  128.677664][   T96] usb 2-1: Could not find two sets of bulk-in/out endpoint pairs
[  128.681270][   T96] vub300 2-1:0.133: probe with driver vub300 failed with error -22
[  128.687310][   T96] usb 2-1: USB disconnect, device number 9
[  129.511916][ T7731] af_packet: tpacket_rcv: packet too big, clamped from 417 to 4294967272. macoff=96
[  130.361726][ T7737] loop0: detected capacity change from 0 to 512
[  130.375318][ T7737] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  130.388677][ T7737] EXT4-fs (loop0): group descriptors corrupted!
[  130.404842][ T7733] loop2: detected capacity change from 0 to 32768
[  130.768188][ T7739] netlink: 8 bytes leftover after parsing attributes in process `syz.0.677'.
[  131.119657][   T24] usb 1-1: new full-speed USB device number 10 using dummy_hcd
[  131.291308][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  131.296552][   T24] usb 1-1: New USB device found, idVendor=057e, idProduct=200e, bcdDevice= 0.00
[  131.306152][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  131.318815][   T24] usb 1-1: config 0 descriptor??
[  131.802074][   T24] nintendo 0003:057E:200E.0003: unbalanced delimiter at end of report description
[  131.806761][   T24] nintendo 0003:057E:200E.0003: HID parse failed
[  131.834167][   T24] nintendo 0003:057E:200E.0003: probe - fail = -22
[  131.836978][   T24] nintendo 0003:057E:200E.0003: probe with driver nintendo failed with error -22
[  131.965385][   T96] usb 1-1: USB disconnect, device number 10
[  132.418873][ T7790] loop2: detected capacity change from 0 to 4096
[  132.584645][ T7797] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[  132.587641][ T7797] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  132.619212][ T7797] vhci_hcd vhci_hcd.0: Device attached
[  132.625324][ T7798] vhci_hcd: connection closed
[  132.637043][ T5678] vhci_hcd: stop threads
[  132.643095][ T5678] vhci_hcd: release socket
[  132.645305][ T5678] vhci_hcd: disconnect device
[  132.852701][ T1362] ieee802154 phy0 wpan0: encryption failed: -22
[  132.855484][ T1362] ieee802154 phy1 wpan1: encryption failed: -22
[  133.030129][   T10] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  133.176427][ T7824] loop2: detected capacity change from 0 to 8
[  133.179510][   T10] usb 1-1: Using ep0 maxpacket: 32
[  133.199753][ T7824] SQUASHFS error: Unable to read inode 0x127
[  133.206263][   T10] usb 1-1: config 0 interface 0 altsetting 7 endpoint 0x81 has invalid wMaxPacketSize 0
[  133.213283][   T10] usb 1-1: config 0 interface 0 altsetting 7 has 1 endpoint descriptor, different from the interface descriptor's value: 10
[  133.217564][   T10] usb 1-1: config 0 interface 0 has no altsetting 0
[  133.219886][   T10] usb 1-1: New USB device found, idVendor=20bc, idProduct=5500, bcdDevice= 0.00
[  133.223046][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  133.239155][   T10] usb 1-1: config 0 descriptor??
[  133.815832][   T10] betop 0003:20BC:5500.0004: unbalanced collection at end of report description
[  133.821484][   T10] betop 0003:20BC:5500.0004: parse failed
[  133.824059][   T10] betop 0003:20BC:5500.0004: probe with driver betop failed with error -22
[  134.070453][ T5911] usb 1-1: USB disconnect, device number 11
[  134.398197][ T7833] loop2: detected capacity change from 0 to 512
[  134.402689][ T7833] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  134.408453][ T7833] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 1, start 00000020)
[  134.415043][ T7833] FAT-fs (loop2): Filesystem has been set read-only
[  135.026073][ T7842] loop0: detected capacity change from 0 to 32768
[  135.043797][ T7842] (syz.0.718,7842,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  135.049307][ T7842] (syz.0.718,7842,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  135.066617][ T7842] JBD2: Ignoring recovery information on journal
[  135.118541][ T7842] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  135.156876][ T7842] (syz.0.718,7842,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC.
[  135.235632][ T5853] ocfs2: Unmounting device (7,0) on (node local)
[  136.070993][ T7864] loop2: detected capacity change from 0 to 32768
[  136.076521][ T7864] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.729 (7864)
[  136.105478][ T7864] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  136.110251][ T7864] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm
[  136.150384][ T7864] BTRFS info (device loop2): enabling ssd optimizations
[  136.153586][ T7864] BTRFS info (device loop2): enabling free space tree
[  136.196513][ T5857] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  137.054849][ T7906] loop0: detected capacity change from 0 to 8
[  137.061250][ T7906] unable to read id index table
[  137.286048][ T7910] loop0: detected capacity change from 0 to 32768
[  137.293522][ T7910] OCFS2: ERROR (device loop0): int ocfs2_get_clusters_nocache(struct inode *, struct buffer_head *, u32, unsigned int *, struct ocfs2_extent_rec *, unsigned int *): Inode 75 has an invalid extent (next_free_rec 32, count 19)
[  137.300656][ T7910] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  137.303629][ T7910] OCFS2: File system is now read-only.
[  137.305623][ T7910] (syz.0.740,7910,1):ocfs2_get_clusters:634 ERROR: status = -30
[  137.308593][ T7910] (syz.0.740,7910,1):ocfs2_extent_map_get_blocks:681 ERROR: status = -30
[  137.312347][ T7910] (syz.0.740,7910,1):ocfs2_bmap:469 ERROR: get_blocks() failed, block = 0
[  137.315245][ T7910] (syz.0.740,7910,1):ocfs2_bmap:470 ERROR: status = -30
[  137.318022][ T7910] jbd2_journal_init_inode: Cannot locate journal superblock
[  137.321299][ T7910] (syz.0.740,7910,1):ocfs2_journal_init:973 ERROR: Linux journal layer error
[  137.324921][ T7910] (syz.0.740,7910,1):ocfs2_check_volume:2347 ERROR: Could not initialize journal!
[  137.328222][ T7910] (syz.0.740,7910,1):ocfs2_check_volume:2432 ERROR: status = -22
[  137.331733][ T7910] (syz.0.740,7910,1):ocfs2_mount_volume:1764 ERROR: status = -22
[  137.337781][ T7910] (syz.0.740,7910,1):ocfs2_fill_super:1177 ERROR: status = -22
[  137.492940][ T7915] loop0: detected capacity change from 0 to 1024
[  137.497438][ T7915] EXT4-fs: Ignoring removed nomblk_io_submit option
[  137.519746][ T7915] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  137.563464][ T7915] EXT4-fs error (device loop0): __ext4_new_inode:1073: comm syz.0.742: reserved inode found cleared - inode=18
[  137.609625][ T5853] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.930873][ T7944] capability: warning: `syz.2.754' uses deprecated v2 capabilities in a way that may be insecure
[  137.940807][ T7944] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[  137.944976][ T7944] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  137.966528][ T7946] loop0: detected capacity change from 0 to 256
[  137.970210][ T7944] overlayfs: failed to get uuid (285/file1, err=-13); falling back to uuid=null.
[  137.987461][ T7946] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  137.992986][ T7946] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  138.006571][ T7946] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  138.211884][ T7956] loop0: detected capacity change from 0 to 8
[  138.226386][ T7956] SQUASHFS error: zlib decompression failed, data probably corrupt
[  138.231018][ T7956] SQUASHFS error: Failed to read block 0x9b: -5
[  138.234163][ T7956] SQUASHFS error: Unable to read metadata cache entry [99]
[  138.236953][ T7956] SQUASHFS error: Unable to read inode 0x127
[  138.369641][ T5911] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  138.519597][ T5911] usb 3-1: Using ep0 maxpacket: 32
[  138.527808][ T5911] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0
[  138.535056][ T5911] usb 3-1: config 0 interface 0 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 0
[  138.549302][ T5911] usb 3-1: config 0 interface 0 has no altsetting 0
[  138.555176][ T5911] usb 3-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  138.561323][ T5911] usb 3-1: New USB device strings: Mfr=229, Product=1, SerialNumber=3
[  138.575135][ T5911] usb 3-1: Product: syz
[  138.579552][ T5911] usb 3-1: Manufacturer: syz
[  138.581488][ T5911] usb 3-1: SerialNumber: syz
[  138.594527][ T5911] usb 3-1: config 0 descriptor??
[  138.684901][ T7965] loop0: detected capacity change from 0 to 32768
[  139.022991][ T5911] gs_usb 3-1:0.0: Configuring for 1 interfaces
[  139.048197][ T7971] loop1: detected capacity change from 0 to 32768
[  139.436981][ T5911] gs_usb 3-1:0.0: Disabling termination support for channel 0 (-EPIPE)
[  139.713117][ T5911] usb 3-1: USB disconnect, device number 9
[  140.574465][ T8003] loop2: detected capacity change from 0 to 1024
[  140.598972][ T8003] EXT4-fs: Ignoring removed nomblk_io_submit option
[  140.636727][ T8003] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  140.652206][ T8003] System zones: 0-1, 3-36
[  140.658109][ T8003] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.740799][ T5857] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.879218][ T8000] loop1: detected capacity change from 0 to 32768
[  140.904653][ T8000] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  140.970798][ T8000] XFS (loop1): Ending clean mount
[  140.983103][ T8000] XFS (loop1): Quotacheck needed: Please wait.
[  141.064607][ T8000] XFS (loop1): Quotacheck: Done.
[  141.079485][   T33] audit: type=1800 audit(1757519888.118:11): pid=8000 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.777" name="file1" dev="loop1" ino=6150 res=0 errno=0
[  141.107024][ T5848] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  141.204190][ T8011] loop2: detected capacity change from 0 to 32768
[  141.301502][ T8011] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  141.361966][ T8027] loop0: detected capacity change from 0 to 40427
[  141.366120][ T8027] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  141.369802][ T8027] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  141.374337][ T8027] F2FS-fs (loop0): invalid crc value
[  141.386078][ T5857] ocfs2: Unmounting device (7,2) on (node local)
[  141.412553][ T8027] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  141.417918][ T8027] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  141.420780][ T8027] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  141.487876][   T33] audit: type=1800 audit(1757519888.528:12): pid=8043 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.784" name="file1" dev="loop0" ino=10 res=0 errno=0
[  141.767833][ T8051] loop1: detected capacity change from 0 to 128
[  141.779230][ T8051] EXT4-fs (loop1): Test dummy encryption mode enabled
[  141.802963][ T8051] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  141.813404][ T8051] ext4 filesystem being mounted at /237/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  141.950880][ T8056] netlink: 40 bytes leftover after parsing attributes in process `syz.1.791'.
[  142.072266][ T5853] syz-executor: attempt to access beyond end of device
[  142.072266][ T5853] loop0: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  142.093212][ T5853] CPU: 0 UID: 0 PID: 5853 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  142.093234][ T5853] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  142.093243][ T5853] Call Trace:
[  142.093250][ T5853]  <TASK>
[  142.093257][ T5853]  dump_stack_lvl+0x189/0x250
[  142.093281][ T5853]  ? __pfx_dump_stack_lvl+0x10/0x10
[  142.093298][ T5853]  ? __pfx_queue_work_on+0x10/0x10
[  142.093311][ T5853]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  142.093332][ T5853]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  142.093362][ T5853]  f2fs_handle_critical_error+0x37c/0x540
[  142.093389][ T5853]  f2fs_write_end_io+0x886/0xb60
[  142.093420][ T5853]  __submit_merged_bio+0x27a/0x6a0
[  142.093437][ T5853]  ? up_write+0x1c4/0x420
[  142.093457][ T5853]  __submit_merged_write_cond+0x44c/0x530
[  142.093480][ T5853]  f2fs_sync_node_pages+0x1479/0x15e0
[  142.093510][ T5853]  ? __pfx_f2fs_sync_node_pages+0x10/0x10
[  142.093548][ T5853]  ? f2fs_write_checkpoint+0xe43/0x1df0
[  142.093595][ T5853]  ? up_write+0x1c4/0x420
[  142.093608][ T5853]  ? do_raw_spin_unlock+0x4d/0x240
[  142.093628][ T5853]  f2fs_write_checkpoint+0xe6f/0x1df0
[  142.093658][ T5853]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  142.093706][ T5853]  ? kill_f2fs_super+0x298/0x6c0
[  142.093726][ T5853]  kill_f2fs_super+0x2c3/0x6c0
[  142.093748][ T5853]  ? __pfx_kill_f2fs_super+0x10/0x10
[  142.093760][ T5853]  ? radix_tree_delete_item+0x2b6/0x400
[  142.093787][ T5853]  ? shrinker_free+0x2ce/0x3e0
[  142.093806][ T5853]  deactivate_locked_super+0xbc/0x130
[  142.093825][ T5853]  cleanup_mnt+0x425/0x4c0
[  142.093851][ T5853]  ? lockdep_hardirqs_on+0x9c/0x150
[  142.093868][ T5853]  task_work_run+0x1d4/0x260
[  142.093889][ T5853]  ? __pfx_task_work_run+0x10/0x10
[  142.093904][ T5853]  ? __x64_sys_umount+0x122/0x160
[  142.093928][ T5853]  ? exit_to_user_mode_loop+0x40/0x110
[  142.093952][ T5853]  exit_to_user_mode_loop+0xec/0x110
[  142.093971][ T5853]  do_syscall_64+0x2bd/0x3b0
[  142.093984][ T5853]  ? lockdep_hardirqs_on+0x9c/0x150
[  142.093997][ T5853]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.094010][ T5853]  ? exc_page_fault+0x9f/0xf0
[  142.094025][ T5853]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.094038][ T5853] RIP: 0033:0x7f32cc78fed7
[  142.094052][ T5853] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  142.094063][ T5853] RSP: 002b:00007ffc93405c68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  142.094077][ T5853] RAX: 0000000000000000 RBX: 00007f32cc811c05 RCX: 00007f32cc78fed7
[  142.094085][ T5853] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc93405d20
[  142.094093][ T5853] RBP: 00007ffc93405d20 R08: 0000000000000000 R09: 0000000000000000
[  142.094100][ T5853] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc93406db0
[  142.094108][ T5853] R13: 00007f32cc811c05 R14: 0000000000022a59 R15: 00007ffc93406df0
[  142.094134][ T5853]  </TASK>
[  142.094141][ T5853] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  142.558582][ T5848] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  142.769229][ T8066] netlink: 'syz.1.795': attribute type 1 has an invalid length.
[  142.778355][ T8066] netlink: 4 bytes leftover after parsing attributes in process `syz.1.795'.
[  143.083873][ T8072] loop1: detected capacity change from 0 to 32768
[  143.100503][ T8080] netlink: 8 bytes leftover after parsing attributes in process `syz.0.799'.
[  143.103769][ T8080] netlink: 8 bytes leftover after parsing attributes in process `syz.0.799'.
[  143.107810][ T8072] (syz.1.796,8072,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  143.115236][ T8072] (syz.1.796,8072,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  143.148784][ T8072] JBD2: Ignoring recovery information on journal
[  143.181541][ T8072] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  143.294322][ T5848] ocfs2: Unmounting device (7,1) on (node local)
[  143.449142][ T8098] IPVS: sed: SCTP 172.20.20.187:0 - no destination available
[  143.493684][ T8100] Zero length message leads to an empty skb
[  143.589737][   T24] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  145.306759][ T8113] loop2: detected capacity change from 0 to 262144
[  145.385574][ T8113] BTRFS: device fsid 7e32c2af-f87a-45a1-bcba-64dea7c56a53 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.814 (8113)
[  145.392045][   T24] usb 1-1: Using ep0 maxpacket: 8
[  145.581952][ T8113] BTRFS info (device loop2): first mount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  145.586227][ T8113] BTRFS info (device loop2): using xxhash64 (xxhash64-generic) checksum algorithm
[  145.596271][   T24] usb 1-1: New USB device found, idVendor=07ca, idProduct=b800, bcdDevice=31.1f
[  145.601039][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  145.604313][   T24] usb 1-1: Product: syz
[  145.606027][   T24] usb 1-1: Manufacturer: syz
[  145.607805][   T24] usb 1-1: SerialNumber: syz
[  145.612673][   T24] usb 1-1: config 0 descriptor??
[  145.632772][   T24]  (null): radio-mr800 - initialization failed
[  145.637471][   T24] radio-mr800 1-1:0.0: probe with driver radio-mr800 failed with error -22
[  145.643186][   T24] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  145.828426][ T8113] BTRFS info (device loop2): enabling ssd optimizations
[  145.831195][ T8113] BTRFS info (device loop2): enabling free space tree
[  145.837513][   T10] usb 1-1: USB disconnect, device number 12
[  145.910875][ T5857] BTRFS info (device loop2): last unmount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  145.980977][ T8154] loop1: detected capacity change from 0 to 1024
[  146.091040][ T8154] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  146.095790][ T8154] ext4 filesystem being mounted at /253/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  146.125324][ T8154] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  146.238056][ T5848] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  146.413543][ T8158] block nbd1: shutting down sockets
[  147.037413][ T8181] loop2: detected capacity change from 0 to 2048
[  147.076822][ T8181] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  147.084923][ T8181] ext4 filesystem being mounted at /304/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  147.160894][ T8192] RDS: rds_bind could not find a transport for fe88::1, load rds_tcp or rds_rdma?
[  147.459588][   T24] usb 1-1: new full-speed USB device number 13 using dummy_hcd
[  147.613910][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  147.617663][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  147.621542][   T24] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  147.625999][ T8198] binder: 8197:8198 ioctl 4018620d 0 returned -22
[  147.628531][   T24] usb 1-1: New USB device found, idVendor=056a, idProduct=005d, bcdDevice= 0.00
[  147.632702][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  147.637755][ T8198] binder: 8197:8198 ioctl c0306201 0 returned -14
[  147.645681][   T24] usb 1-1: config 0 descriptor??
[  147.882800][ T5857] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.192995][   T24] wacom 0003:056A:005D.0005: unbalanced delimiter at end of report description
[  148.250117][   T24] wacom 0003:056A:005D.0005: parse failed
[  148.275162][   T24] wacom 0003:056A:005D.0005: probe with driver wacom failed with error -22
[  148.315227][ T8202] input: syz1 as /devices/virtual/input/input9
[  148.366573][   T24] usb 1-1: USB disconnect, device number 13
[  150.718395][ T8268] loop1: detected capacity change from 0 to 4096
[  150.726063][ T8270] loop2: detected capacity change from 0 to 64
[  150.766127][ T8268] EXT4-fs (loop1): Test dummy encryption mode enabled
[  150.777457][ T8268] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  150.780943][ T8268] System zones: 0-5
[  150.788464][ T8268] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.989626][   T10] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  151.148154][ T8278] Trying to free block not in datazone
[  151.183117][   T10] usb 1-1: Using ep0 maxpacket: 32
[  151.258484][   T10] usb 1-1: config 0 has an invalid interface number: 54 but max is 0
[  151.333412][   T10] usb 1-1: config 0 has an invalid descriptor of length 48, skipping remainder of the config
[  151.341331][ T8279] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000.
[  151.344340][   T10] usb 1-1: config 0 has no interface number 0
[  151.350627][   T10] usb 1-1: too many endpoints for config 0 interface 54 altsetting 205: 134, using maximum allowed: 30
[  151.360825][   T10] usb 1-1: config 0 interface 54 altsetting 205 has 0 endpoint descriptors, different from the interface descriptor's value: 134
[  151.374721][   T10] usb 1-1: config 0 interface 54 has no altsetting 0
[  151.384092][   T10] usb 1-1: New USB device found, idVendor=05e1, idProduct=0408, bcdDevice=25.11
[  151.387327][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  151.394388][   T10] usb 1-1: Product: syz
[  151.397106][   T10] usb 1-1: Manufacturer: syz
[  151.403388][   T10] usb 1-1: SerialNumber: syz
[  151.413548][   T10] usb 1-1: config 0 descriptor??
[  151.526206][ T8275] fscrypt (loop1): Error allocating 'xts(aes)' transform: -4
[  151.775839][   T10] usb 1-1: USB disconnect, device number 14
[  152.286822][ T5848] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.349232][ T8295] loop0: detected capacity change from 0 to 1024
[  152.353541][ T8295] EXT4-fs: Ignoring removed bh option
[  152.408415][ T8295] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  152.502076][ T5853] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.960294][ T8305] loop0: detected capacity change from 0 to 32768
[  152.992071][ T8305] syz.0.862: attempt to access beyond end of device
[  152.992071][ T8305] loop0: rw=1, sector=4680032, nr_sectors = 8 limit=32768
[  153.001722][ T8305] metapage_write_end_io: I/O error
[  153.004813][ T8305] ERROR: (device loop0): release_metapage: metapage_write_one() failed
[  153.004813][ T8305] 
[  153.022731][ T8305] ERROR: (device loop0): remounting filesystem as read-only
[  153.027843][ T8311] loop2: detected capacity change from 0 to 32768
[  153.030830][ T8305] blkno = 8ed2c, nblocks = 1
[  153.032744][ T8305] ERROR: (device loop0): dbUpdatePMap: blocks are outside the map
[  153.032744][ T8305] 
[  153.042355][ T8305] ERROR: (device loop0): diRead: i_ino != di_number
[  153.042355][ T8305] 
[  153.064096][  T116] blkno = 8ed2c, nblocks = 4
[  153.067208][  T116] ERROR: (device loop0): dbUpdatePMap: blocks are outside the map
[  153.067208][  T116] 
[  153.076546][ T5853] syz-executor: attempt to access beyond end of device
[  153.076546][ T5853] loop0: rw=1, sector=4680032, nr_sectors = 8 limit=32768
[  153.099514][ T5853] metapage_write_end_io: I/O error
[  153.104210][ T5853] JFS: metapage_get_blocks failed
[  153.105901][ T5853] JFS: metapage_get_blocks failed
[  153.107578][ T5853] JFS: metapage_get_blocks failed
[  153.120364][ T5853] JFS: metapage_get_blocks failed
[  153.351943][ T8327] loop1: detected capacity change from 0 to 256
[  153.365442][ T8327] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  153.584419][ T8341] loop2: detected capacity change from 0 to 1024
[  153.622084][ T3563] hfsplus: b-tree write err: -5, ino 4
[  153.855755][ T8357] netlink: 172 bytes leftover after parsing attributes in process `syz.0.885'.
[  153.859124][ T8357] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  154.471850][ T8386] loop0: detected capacity change from 0 to 1024
[  154.540565][ T8377] loop2: detected capacity change from 0 to 32768
[  154.565908][ T8377] XFS (loop2): Mounting V5 Filesystem 9f91832a-3b79-45c3-9d6d-ed0bc7357fe4
[  154.652421][ T8377] XFS (loop2): Ending clean mount
[  154.694035][ T8403] loop1: detected capacity change from 0 to 256
[  154.772545][ T8408] netlink: 176 bytes leftover after parsing attributes in process `syz.1.906'.
[  154.776634][ T8408] netlink: 176 bytes leftover after parsing attributes in process `syz.1.906'.
[  155.089334][ T5857] XFS (loop2): Unmounting Filesystem 9f91832a-3b79-45c3-9d6d-ed0bc7357fe4
[  155.726942][ T8440] sctp: [Deprecated]: syz.2.920 (pid 8440) Use of int in maxseg socket option.
[  155.726942][ T8440] Use struct sctp_assoc_value instead
[  155.803765][ T8444] netlink: 260 bytes leftover after parsing attributes in process `syz.2.922'.
[  155.947848][ T8452] netlink: 'syz.2.926': attribute type 4 has an invalid length.
[  155.951250][ T8452] netlink: 17 bytes leftover after parsing attributes in process `syz.2.926'.
[  156.043482][ T8456] loop2: detected capacity change from 0 to 1024
[  156.080261][   T36] hfsplus: b-tree write err: -5, ino 4
[  156.197734][ T8464] genirq: Flags mismatch irq 4. 00200000 (pcl818) vs. 00200080 (ttyS0)
[  156.295759][ T8468] pim6reg9: entered allmulticast mode
[  156.401025][   T10] usb 2-1: new low-speed USB device number 10 using dummy_hcd
[  156.424946][ T8476] netlink: 4 bytes leftover after parsing attributes in process `syz.2.936'.
[  156.551145][   T10] usb 2-1: config index 0 descriptor too short (expected 1307, got 27)
[  156.554618][   T10] usb 2-1: config 0 has an invalid interface number: 0 but max is -1
[  156.557578][   T10] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 0
[  156.562452][   T10] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  156.566406][   T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 4
[  156.571016][   T10] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  156.584093][   T10] usb 2-1: string descriptor 0 read error: -22
[  156.586835][   T10] usb 2-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  156.591823][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  156.597562][   T10] usb 2-1: config 0 descriptor??
[  156.602796][   T10] hub 2-1:0.0: bad descriptor, ignoring hub
[  156.605227][   T10] hub 2-1:0.0: probe with driver hub failed with error -5
[  156.910553][   T10] usb 2-1: USB disconnect, device number 10
[  158.271803][ T8493] loop0: detected capacity change from 0 to 8192
[  158.566789][ T8509] loop0: detected capacity change from 0 to 16
[  158.571529][ T8509] erofs (device loop0): mounted with root inode @ nid 36.
[  158.892393][ T8515] loop0: detected capacity change from 0 to 40427
[  158.901225][ T8515] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  158.903793][ T8515] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  158.916944][ T8515] F2FS-fs (loop0): invalid crc value
[  158.953742][ T8515] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  158.960270][ T8515] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  158.962538][ T8515] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  159.283579][ T8521] loop0: detected capacity change from 0 to 4096
[  159.628237][   T33] audit: type=1800 audit(1757519906.668:13): pid=8521 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.950" name="file1" dev="loop0" ino=30 res=0 errno=0
[  159.712822][ T8523] loop0: detected capacity change from 0 to 8
[  159.726038][ T8523] Major/Minor mismatch, older Squashfs 0.0 filesystems are unsupported
[  159.925074][ T8533] loop2: detected capacity change from 0 to 2048
[  159.940461][ T8533] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  160.014176][ T8536] bridge0: entered allmulticast mode
[  160.016329][ T8536] netlink: 4 bytes leftover after parsing attributes in process `syz.2.957'.
[  160.019093][ T8536] bridge_slave_1: left allmulticast mode
[  160.022852][ T8536] bridge_slave_1: left promiscuous mode
[  160.025132][ T8536] bridge0: port 2(bridge_slave_1) entered disabled state
[  160.040070][ T8536] bridge_slave_0: left allmulticast mode
[  160.042065][ T8536] bridge_slave_0: left promiscuous mode
[  160.043960][ T8536] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.074382][ T8536] bridge0 (unregistering): left allmulticast mode
[  160.283929][ T8544] netlink: 36 bytes leftover after parsing attributes in process `syz.2.961'.
[  160.319089][ T8546] loop2: detected capacity change from 0 to 16
[  160.326776][ T8546] erofs (device loop2): mounted with root inode @ nid 36.
[  160.365544][ T8548] Can't find a SQUASHFS superblock on nullb0
[  160.874708][ T8573] __vm_enough_memory: pid: 8573, comm: syz.1.971, bytes: 21199700897792 not enough memory for the allocation
[  161.144801][ T8569] loop0: detected capacity change from 0 to 32768
[  161.168320][ T8569] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[  161.184909][ T8569] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  161.196206][   T13] (kworker/u8:1,13,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #72: rec_len % 4 != 0 - offset=312, inode=13845347915746889, rec_len=25793, name_len=214
[  161.266996][ T5853] ocfs2: Unmounting device (7,0) on (node local)
[  161.578046][ T8598] loop0: detected capacity change from 0 to 128
[  161.611193][ T8598] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002]
[  161.615486][ T8602] netlink: 8 bytes leftover after parsing attributes in process `syz.2.985'.
[  161.618966][ T8598] System zones: 1-3, 19-19, 35-36
[  161.630646][ T8598] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  161.641571][ T8598] ext4 filesystem being mounted at /316/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  161.664344][ T8598] EXT4-fs warning (device loop0): verify_group_input:137: Cannot add at group 1869440265 (only 1 groups)
[  161.705474][ T5853] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  161.778451][ T8611] loop2: detected capacity change from 0 to 128
[  161.788720][ T8609] loop1: detected capacity change from 0 to 4096
[  161.825256][ T8611] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  161.856879][ T8611] ext4 filesystem being mounted at /378/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  161.968586][ T5857] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  162.036032][ T8623] loop1: detected capacity change from 0 to 256
[  162.253970][ T8636] loop1: detected capacity change from 0 to 512
[  162.256514][ T8636] EXT4-fs: Ignoring removed i_version option
[  162.271713][ T8636] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  162.292242][ T8636] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2842e12c, mo2=0002]
[  162.294915][ T8636] System zones: 1-12
[  162.297072][ T8633] netlink: 8 bytes leftover after parsing attributes in process `syz.0.998'.
[  162.298073][ T8636] EXT4-fs (loop1): orphan cleanup on readonly fs
[  162.304705][ T8636] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.999: invalid indirect mapped block 12 (level 1)
[  162.313302][ T8636] EXT4-fs (loop1): Remounting filesystem read-only
[  162.315924][ T8636] EXT4-fs (loop1): 1 truncate cleaned up
[  162.318536][ T8633] bridge0: port 2(bridge_slave_1) entered disabled state
[  162.321660][ T8636] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  162.368667][ T5848] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  162.649473][   T10] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  162.668107][ T8662] loop1: detected capacity change from 0 to 256
[  162.672076][ T8662] vfat: Bad value for 'utf8'
[  162.866644][   T10] usb 1-1: New USB device found, idVendor=0644, idProduct=800f, bcdDevice=c5.77
[  162.870307][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  162.873649][   T10] usb 1-1: Product: syz
[  162.875352][   T10] usb 1-1: Manufacturer: syz
[  162.877978][   T10] usb 1-1: SerialNumber: syz
[  162.884509][   T10] usb 1-1: config 0 descriptor??
[  162.890215][   T10] usb 1-1: disable ehci-hcd to run US-144
[  163.238324][   T10] usb 1-1: USB disconnect, device number 15
[  163.293414][ T8668] loop2: detected capacity change from 0 to 512
[  163.321415][ T8668] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1013: bg 0: block 248: padding at end of block bitmap is not set
[  163.331589][ T8668] Quota error (device loop2): write_blk: dquota write failed
[  163.334609][ T8668] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  163.338197][ T8668] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.1013: Failed to acquire dquot type 1
[  163.351109][ T8668] EXT4-fs (loop2): 1 truncate cleaned up
[  163.355968][ T8668] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.361298][ T8668] ext4 filesystem being mounted at /383/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  163.387009][ T5857] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.868724][ T8689] loop0: detected capacity change from 0 to 2048
[  163.885245][ T8689] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  164.285497][ T8709] loop2: detected capacity change from 0 to 128
[  164.288741][ T8709] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  164.307835][ T8709] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  164.369781][ T8711] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1032'.
[  164.476803][ T8716] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000005: 0000 [#1] SMP KASAN PTI
[  164.481519][ T8716] KASAN: null-ptr-deref in range [0x0000000000000028-0x000000000000002f]
[  164.485446][ T8716] CPU: 1 UID: 0 PID: 8716 Comm: syz.0.1034 Not tainted syzkaller #0 PREEMPT(full) 
[  164.489327][ T8716] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  164.493660][ T8716] RIP: 0010:pcl818_ai_cancel+0x69/0x3f0
[  164.495868][ T8716] Code: 8b 1b 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 a9 d8 35 f9 48 8b 03 48 89 04 24 49 83 c4 28 4c 89 e0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 e7 e8 88 d8 35 f9 4d 8b 24 24 48 83 c3
[  164.503255][ T8716] RSP: 0018:ffffc90007727a60 EFLAGS: 00010206
[  164.505710][ T8716] RAX: 0000000000000005 RBX: ffff88810f6bd500 RCX: 0000000000080000
[  164.508821][ T8716] RDX: ffffc90003a82000 RSI: 00000000000003b4 RDI: 00000000000003b5
[  164.511926][ T8716] RBP: 0000000000000001 R08: ffff88810f9de92f R09: 1ffff11021f3bd25
[  164.515094][ T8716] R10: dffffc0000000000 R11: ffffffff88ed25d0 R12: 0000000000000028
[  164.518139][ T8716] R13: dffffc0000000000 R14: ffff88810f9de800 R15: dffffc0000000000
[  164.521122][ T8716] FS:  00007f32cd6756c0(0000) GS:ffff8881a3c15000(0000) knlGS:0000000000000000
[  164.524670][ T8716] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  164.527198][ T8716] CR2: 0000001b32523ffc CR3: 0000000026f6e000 CR4: 00000000000006f0
[  164.530311][ T8716] Call Trace:
[  164.531707][ T8716]  <TASK>
[  164.532946][ T8716]  pcl818_detach+0x66/0xd0
[  164.534796][ T8716]  comedi_device_detach_locked+0x178/0x750
[  164.537257][ T8716]  comedi_unlocked_ioctl+0xcde/0x1020
[  164.539397][ T8716]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  164.541662][ T8716]  ? __lock_acquire+0xab9/0xd20
[  164.543616][ T8716]  ? __fget_files+0x2a/0x420
[  164.545481][ T8716]  ? __fget_files+0x2a/0x420
[  164.547285][ T8716]  ? __fget_files+0x3a0/0x420
[  164.549171][ T8716]  ? __fget_files+0x2a/0x420
[  164.551010][ T8716]  ? bpf_lsm_file_ioctl+0x9/0x20
[  164.553007][ T8716]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  164.555347][ T8716]  __se_sys_ioctl+0xfc/0x170
[  164.557135][ T8716]  do_syscall_64+0xfa/0x3b0
[  164.558995][ T8716]  ? lockdep_hardirqs_on+0x9c/0x150
[  164.561000][ T8716]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.563443][ T8716]  ? exc_page_fault+0x9f/0xf0
[  164.565342][ T8716]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.567704][ T8716] RIP: 0033:0x7f32cc78eba9
[  164.569522][ T8716] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  164.576941][ T8716] RSP: 002b:00007f32cd675038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  164.580161][ T8716] RAX: ffffffffffffffda RBX: 00007f32cc9d5fa0 RCX: 00007f32cc78eba9
[  164.583299][ T8716] RDX: 0000000000000000 RSI: 0000000040946400 RDI: 0000000000000003
[  164.586495][ T8716] RBP: 00007f32cc811e19 R08: 0000000000000000 R09: 0000000000000000
[  164.589609][ T8716] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  164.592852][ T8716] R13: 00007f32cc9d6038 R14: 00007f32cc9d5fa0 R15: 00007ffc934069d8
[  164.595982][ T8716]  </TASK>
[  164.597319][ T8716] Modules linked in:
[  164.599097][    C1] vkms_vblank_simulate: vblank timer overrun
[  164.602474][ T8716] ---[ end trace 0000000000000000 ]---
[  164.610073][ T8716] RIP: 0010:pcl818_ai_cancel+0x69/0x3f0
[  164.636773][ T8716] Code: 8b 1b 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 a9 d8 35 f9 48 8b 03 48 89 04 24 49 83 c4 28 4c 89 e0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 e7 e8 88 d8 35 f9 4d 8b 24 24 48 83 c3
[  164.646021][ T8716] RSP: 0018:ffffc90007727a60 EFLAGS: 00010206
[  164.648398][ T8716] RAX: 0000000000000005 RBX: ffff88810f6bd500 RCX: 0000000000080000
[  164.652061][ T8716] RDX: ffffc90003a82000 RSI: 00000000000003b4 RDI: 00000000000003b5
[  164.654916][ T8716] RBP: 0000000000000001 R08: ffff88810f9de92f R09: 1ffff11021f3bd25
[  164.658028][ T8716] R10: dffffc0000000000 R11: ffffffff88ed25d0 R12: 0000000000000028
[  164.661096][ T8716] R13: dffffc0000000000 R14: ffff88810f9de800 R15: dffffc0000000000
[  164.663782][ T8716] FS:  00007f32cd6756c0(0000) GS:ffff8880b8615000(0000) knlGS:0000000000000000
[  164.666698][ T8716] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  164.669133][ T8716] CR2: 00007f32cd654d58 CR3: 0000000026f6e000 CR4: 00000000000006f0
[  164.673377][ T8716] Kernel panic - not syncing: Fatal exception
[  164.676344][ T8716] Kernel Offset: disabled
[  164.677758][ T8716] Rebooting in 86400 seconds..

VM DIAGNOSIS:
15:58:31  Registers:
info registers vcpu 0

CPU#0
RAX=000000000004187f RBX=ffff88804b023900 RCX=0000000000000838 RDX=0000000000000000
RSI=000000000004187f RDI=0000000000000838 RBP=0000000000000000 RSP=ffffc90000007e50
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000003 R11=ffffffff81703490
R12=000000001000771e R13=dffffc0000000000 R14=000000000004187f R15=0000000000000020
RIP=ffffffff81716179 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f47d67886c0 ffffffff 00c00000
GS =0000 ffff8880b8615000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f47d5bd7dac CR3=00000000281b4000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007f47d5ba7498 00007f47d5ba7470 XMM03=00007f47d5ba74a8 00007f47d5ba74a0
XMM04=00007f47d670d100 00007f47d5ba7460 XMM05=00007f47d5ba7478 00007f47d5ba74c0
XMM06=00007f47d5ba74b8 00007f47d5ba74b0 XMM07=00007f47d5ba74a8 00007f47d5ba74a0
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007f47d5a12fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000034 RBX=0000000000000034 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000001527 RDI=0000000000001528 RBP=00000000000003f8 RSP=ffffc900077271f0
R8 =ffff888020e18237 R9 =1ffff110041c3046 R10=dffffc0000000000 R11=ffffffff854f7200
R12=dffffc0000000000 R13=ffffffff99b008cc R14=ffffffff99df5420 R15=0000000000000000
RIP=ffffffff854f727c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f32cd6756c0 ffffffff 00c00000
GS =0000 ffff8881a3c15000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b32523ffc CR3=0000000026f6e000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007f32cc9a7498 00007f32cc9a7470 XMM03=00007f32cc9a74a8 00007f32cc9a74a0
XMM04=00007f32cd50d100 00007f32cc9a7460 XMM05=00007f32cc9a7478 00007f32cc9a74c0
XMM06=00007f32cc9a74b8 00007f32cc9a74b0 XMM07=00007f32cc9a74a8 00007f32cc9a74a0
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007f32cc812fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
