last executing test programs:

2m11.339923304s ago: executing program 2 (id=382):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='kfree\x00', r3, 0x0, 0x8000000000000}, 0x18)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000080)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000008000000180001801400020073797a5f74756e0000000000000000001800028014000380"], 0x44}}, 0x0)

2m11.232680455s ago: executing program 2 (id=383):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="b40800000000000073110d00000000008510000002000000b7000000000000009500c200000000009500001200000000"], &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x70)

2m11.232352615s ago: executing program 2 (id=384):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000850000001100000095"], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x400}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x3a)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000007c0)={r0}, 0x11)

2m11.161993944s ago: executing program 2 (id=387):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000080)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0xa}}, {@nomblk_io_submit}, {@auto_da_alloc}, {@minixdf}]}, 0xfe, 0x572, &(0x7f0000000240)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000000740)='./bus\x00', 0x283016, 0x0, 0x11, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})

2m11.045076041s ago: executing program 2 (id=391):
r0 = syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$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")
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r0, 0x40086610, &(0x7f0000000000)={@id={0x2, 0x2000000, @a}})

2m9.831480647s ago: executing program 2 (id=402):
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000040)={0x80, 0x3, 0x0, 0x717e387b, 0x42, "1ae34e0626b2fb12daba40794233a5bd00", 0x4, 0x2})
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCSETS(r0, 0x404c4701, &(0x7f0000000040)={0x1, 0x0, 0x1, 0x0, 0x5, "3eccd8000000000000000010000000040100"})

2m9.728478557s ago: executing program 32 (id=402):
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000040)={0x80, 0x3, 0x0, 0x717e387b, 0x42, "1ae34e0626b2fb12daba40794233a5bd00", 0x4, 0x2})
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCSETS(r0, 0x404c4701, &(0x7f0000000040)={0x1, 0x0, 0x1, 0x0, 0x5, "3eccd8000000000000000010000000040100"})

1m10.202719359s ago: executing program 3 (id=1054):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f0000000a80)=@updpolicy={0xc4, 0x19, 0x1, 0x0, 0x0, {{@in6=@rand_addr=' \x01\x00', @in=@local, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa9, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xa8f}, {0x0, 0xa00, 0x40800000000000, 0x800000000000000}}, [@mark={0xc, 0x15, {0x35075d, 0x9}}]}, 0xc4}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000000c0)=ANY=[@ANYBLOB="cc000000210001000000000004000000ff010000000000000000000000000001fc02000000000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000500011"], 0xcc}}, 0x0)

1m10.080087777s ago: executing program 3 (id=1057):
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)

1m10.022722174s ago: executing program 3 (id=1059):
syslog(0x3, &(0x7f0000000000), 0x0)

1m9.962724733s ago: executing program 3 (id=1061):
syz_mount_image$cramfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="00af268263b121dc03d7d9b98b9cdb76841d31005b31fdfd141b652968fbeae7aac982a517703dc5950f6728aecf5ec337b119ffd66d0a02970718ba573db352906385cece74366e628b6a775c9a6f6fff046416c6240e39a647186c4cf0b360bd17d4cdbd912dc61fd24e6f17d8"], 0x1, 0x152, &(0x7f00000007c0)="$eJzs0E1LKnEUx/Hf3Bnlcq/eBzKwFia0aEjMacRatdBIEtKBwk0rwSYKFCOhXBrRrkXQ1oXlVnwLlrWxRgh7E23cBS0n/o7Rw67977MZ5nsOh2FWlnoqgoAMx3KpuLdvlsvmVnDdSCc3ntrtuOhuAD8/zZ39qziwI54KMDgCRL7xAtu7BXMuXyqI90EcUAEkfjtdg7P7SzSf0+YhSaKp00Bn3Gn6aO9ji47apAIk/r7fsy+AGXHv/9s94BlApRZquZCxbNu2xfeepEJTY5LTm3cZq5sKzwbMUz050fD4ZWTN20skhvPHSDf8EGk1+z0rvWakjV5U1xeimqJpsb5xb6Vi1TMoq54DYPPLPTf8ASULHEvA+XA2uJa8ADr1F6P4Z7E++tfVQzkISJVaPud3NXK+fz8gq5BARERERERERERERERERET0Xa8BAAD//wFeZcY=")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
chdir(&(0x7f00000001c0)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000500)=""/38, 0x26)

1m9.881455737s ago: executing program 3 (id=1063):
syz_mount_image$nilfs2(&(0x7f0000000080), &(0x7f0000000040)='./file2\x00', 0x3200400, &(0x7f0000000c00)=ANY=[], 0x1, 0xa76, &(0x7f00000000c0)="$eJzs3U2MG1cBAOA33vUmmwTilIQuSWgTftry091ms4SfCJqquRA1FbdKEZcoTUtEGhCpBK0qkeTEjVZVuPIjTuVQAUJqLyjqiUslGolLxaFw4EAUpEocoJC4iv2e136xNfb+2V5/n/T89s0bz3szOx6PZ+a9F4CJVWm8Li3NFSFcffPV4/984B+zd6Y82pqj1nidbktVQwhFTE9ny3tvqhnfev+lM93iIiw2XlM6PHmz9d7tIYRL4UC4Fmph79Xrr7y9+MTJyyeuHHzntaM31mftAQBgsnzr2tGlPX/7875dH7x+37GwpTU9nZ/XYnpHPO8/Fk/80/l/JXSmi7bQbiabbzqGSjbfVJf52supZvNN9yh/JltutZW/r2O+LSXlT7VN67beMM7SflwLRWW+I12pzM83f5OHxu/6mWL+wrnzz1wcUkWBNffv+0MIB4RBQ71e/3FjA45AXdY/3KgPvw7CeoT6zmEfgQCa8vuFd7mUX1lYndbSpvsr/+Zjle7vhzWw0fu/8ser/F9fjuWf+uu61oPJsFm/v9J6pc/RjpjO7yPkzy8N+vlPy5uKL9PZ8sv0uo8wLvcXetVzaoPrsVK96p/vF5vV12OctsM3svz2z0/+Px2X/zHQ3X8m7Pr/gRGow6YO1RGog9B3qA/7AASMrOXn5prqUcrPn+vL87eU5G8tyZ8tyd9Wkr+9JB8m2e+f/2l4uVj+nZ//ph/0eli6zvaRGH90wPrk1yMHLT9/7ndQqy0/f54YRtkbp586+5WnT11vPv9ftPb/23F/PxDTtfjZuhZnSNcL8+vqrWf/a53lVHrMd09Wn3TcqGxJ89ebJe7unK/Yvbyc0Hacuasec53v29lrvv2d89Wy+WZj2JrVNz8/2Za9L51/pONq2l7T2fpWs/WYyeqRjiu7YpzXA1Yi7Y+9nv9P++dcqBbPnDt/9pGYTvvpn6aqW+5MP9S+0N9sTN2B1em3/c9c6Gz/s6M1vVppPy7sXJ5etB8Xatn0xWaydZs8TT8c0+l77jtTs43p82e+d/7ptV55mHAXX3jxu6fPnz/7A3+kP2ZtFn/4Y9hHJmC9LTz/3PcXLr7w4sPnnjv97Nlnz144fOTI4cXFI189vLTQOK9faD+7BzaT5S/9YdcEAAAAAAAAAAAA6NcPTxy//pe3vvxus/3/cvu/1P4/Pfmb2v//JGv/n7eTT+3gUzvAXV3yG+PuvdFZj5lsvmoMH8vquzsrZ0/2vo/HuDWOX2z/n9rb5/26pvrcm03P++9N82XdCdzVX8pM1gdJPl7gp2J8Jca/CjBExWz3yTHu6N863N2/ddrXU/8U+qUYT+n/lvaG1I9Jav/dq1+ndPzftQF1ZO1tRHPCYa8j0N2/Rr7/77Yz8aHXZQKC7TxRoV43igcwGoY9/me67pniC3/85tY7Ic1287HO42XefymsxqiPP6n8URj/s1izSrTGv+vr+Neld/WOfp77H13hvz+/8W5bsWFvv8ffy9mqp36gd5eX2e6DWH5a/wdDf+XXf5mVn98Q6tP/svK39Vn+Xeu/f2Xl/z+WnzbbQ5/ut/xmjYtKZz3y68bp/l9+3Ti5la1/6ttz4PVf4UCNt2P5MMl6jzPb7wi2o2ko4/92uT+6UvlzGF+K6XQgTM855N/Ig9Y/PV+Rvgf2ZMsvSr7fxmWc4l4mffzfr8W47POQxv9N+2OtS7rSlq522bbjvq/AZvPeyN//G7NwaQTqIIxomB2BOnSGer2+vhe0Sgy1cIa+/Yd993nY5Q97+5fJx//Nz+Hz8X8r2Q+IfPzf/P35+L95fj6+Xp6fj/+bb898/N88/95sufkV7LmS/E+U5O8tyd+3nD/bLX9/yfs/WZJ/MMRzkh7595W8//6S/HtK8qdK8j9Tkv/ZkvwHSvIfKsn/XEn+Zpfao0zq+sMky9vn+fzD5Ej3f3p9/neX5APj62evH3r81O++XWu2/59p/V5L9/GOxXQ1/nb+UUzn971DW/pO3lsx/fcsf9Svd8AkyfvPyL/fHyzJB8ZXes7L5xsmUNG9x55++63qdZ7PePl8jL8Q4y/G+OEYz8d4IcaHYry4QfVjfTz+2z8cfblY/r2/M8vv93nyvD1Q3k/U4T7rk18fGPR59rwfv0GttvwVNgcDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYmkrjdWlprgjh6puvHn/q5LmFO1Mebc1Ra7xOt6WqrfeF8EiMp2L8i/jHrfdfOtMe345xERZDEYrW9PDkzVZJ20MIl8KBcC3Uwt6r1195e/GJk5dPXDn4zmtHb6zfFgAAAIDN78MAAAD//+bcHCE=")
r0 = open(&(0x7f0000000180)='./bus\x00', 0xa37e, 0x0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x46342, 0x0)
ftruncate(r1, 0x2008000)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x64942, 0x0)
r3 = open(&(0x7f00000000c0)='./bus\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x1000200201005)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
r4 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r4, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x400, 0x0, 0x0, 0x1, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000000000000c00002000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4]})
ftruncate(r0, 0x0)

1m9.601222477s ago: executing program 3 (id=1066):
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x381)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_subtree(r0, &(0x7f0000000200), 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000780)=ANY=[@ANYBLOB='+cpu  '], 0xb)

1m9.377899823s ago: executing program 33 (id=1066):
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x381)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_subtree(r0, &(0x7f0000000200), 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000780)=ANY=[@ANYBLOB='+cpu  '], 0xb)

5.321471662s ago: executing program 4 (id=1745):
r0 = syz_usb_connect$uac1(0x0, 0xac, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000000000106b1d010140000102030109029a00030100000009040000000101"], 0x0)
syz_usb_control_io$uac1(r0, &(0x7f0000001840)={0x14, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="0003360000003603a886506a6b"]}, 0x0)

3.703261574s ago: executing program 4 (id=1765):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = shmget$private(0x0, 0x4000, 0x800, &(0x7f0000000000/0x4000)=nil)
shmat(r0, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffcfff)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ppoll(&(0x7f0000000000)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket(0x1f, 0x80002, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r3, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, 0x0, 0x0)
msgctl$MSG_STAT(0x0, 0xb, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x48094)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x40000000c6302, 0x0)
r5 = dup(r4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000007, 0x38011, r5, 0x0)
sendfile(r5, r5, 0x0, 0xffffffff)

1.93765701s ago: executing program 4 (id=1781):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xc)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000002c0)=""/100, &(0x7f0000000500)=""/74, 0xeeef0000})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000e40))
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f00000009c0)=""/251, 0x0, 0x4})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)
unshare(0x64000600)
ioctl$VHOST_SET_LOG_BASE(r0, 0x4008af04, &(0x7f0000000200)=&(0x7f0000000180))

1.861965406s ago: executing program 0 (id=1783):
syz_mount_image$squashfs(&(0x7f0000000100), &(0x7f0000000240)='./file0\x00', 0x1000010, &(0x7f00000004c0)=ANY=[@ANYBLOB="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", @ANYRESDEC, @ANYRESHEX, @ANYRES32, @ANYRESDEC, @ANYRES32, @ANYRES32], 0x1, 0x1fb, &(0x7f0000000280)="$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")
chdir(&(0x7f0000000380)='./file0\x00')
openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x20000, 0x20)

1.691442119s ago: executing program 0 (id=1784):
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080))
r0 = syz_open_dev$sg(&(0x7f0000000000), 0xf9ba, 0x501)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000040)={0x0, 0x405, 0x6aa0})

1.641483757s ago: executing program 0 (id=1785):
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="441f08ee00270bee724ecd8391ab161f02a79f25a6ac65a600926000000000d80990b946f7", 0x25)

1.637889317s ago: executing program 4 (id=1786):
r0 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000340)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x6, 0x0, 0x4, 0x0, 0x0, 0x0, 'syz1\x00', 0x0})
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc1105518, &(0x7f0000000040)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x1, [0x18000, 0xfffffffffffffffc, 0x0, 0x2, 0x8000000000000001, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000, 0x0, 0x0, 0x0, 0x0, 0x67, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000000, 0x9, 0x4, 0x8, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x3, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x4, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000, 0x0, 0x1c, 0x5, 0x3, 0x2, 0x4000000000002, 0x0, 0x2, 0x0, 0x0, 0x0, 0x400, 0x0, 0x5, 0x7ff, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0xac18, 0x0, 0x0, 0x4000000000000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x4, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1]})

1.623493307s ago: executing program 1 (id=1787):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x15, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe8a, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27}, 0x48)

1.520614562s ago: executing program 4 (id=1788):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup\x00', 0x0, 0x2)
getdents64(r0, &(0x7f0000000040)=""/49, 0x31)
getdents(r0, 0xfffffffffffffffd, 0x58)

1.520389383s ago: executing program 0 (id=1789):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x80000000, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)

1.520155139s ago: executing program 1 (id=1790):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000022240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000100)={0x0, @in6={{0xa, 0x4e23, 0x7ff, @remote, 0x5}}, [0x7, 0xffffffffffffffff, 0x2, 0xffffffff, 0x40, 0x7fffffffffffffff, 0xdf, 0x786, 0x6, 0x6, 0xf, 0x101, 0x6, 0x0, 0x7]}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="8000000000010104000000000000000002000000240001801400018008000100e000000108000200e00000010c000280050001000000000024000280140001800800010000000000080002007f0000010c00028005000100000000000800074000000000080003400000100e14000580050001"], 0x80}}, 0x0)

1.430875231s ago: executing program 0 (id=1791):
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$nfc_llcp(r0, &(0x7f0000000080)={0x27, 0x0, 0x0, 0x7, 0x0, 0x6, "750538d1ee602ec4802a04ea7cdcd151bb2cd9893bc31f80718336d9bd3517076db9ad1f6a120d8be6d7f81cd81ec275000386e7d95f0669b740a5418d69d0", 0x10000000000001}, 0x60)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$nfc_llcp(r1, &(0x7f0000000080)={0x27, 0x0, 0x0, 0x7, 0x0, 0x6, "750538d1ee602ec4802a04ea7cdcd151bb2cd9893bc31f80718336d9bd3517076db9ad1f6a120d8be6d7f81cd81ec275000386e7d95f0669b740a5418d69d0", 0x1000000000003f}, 0x60)
r2 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18020000000000000000000000000001850000002c00000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp}, 0x94)
bind$bt_hci(r2, &(0x7f0000000000)={0x27}, 0x62)

1.430582685s ago: executing program 1 (id=1792):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102384, 0x18ff0)
r1 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_fuse_handle_req(r1, 0x0, 0x0, 0x0)
fchownat(0xffffffffffffff9c, 0x0, 0x0, 0xffffffffffffffff, 0x100)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(0xffffffffffffffff, 0xc2604110, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002e00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000180)=ANY=[@ANYRES32=r2, @ANYRES32=r3, @ANYBLOB="05"], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)

1.430407395s ago: executing program 4 (id=1793):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1e7d, 0x2cf6, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x2, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000200)={0x2c, &(0x7f0000000080)={0x0, 0x6, 0x20, {0x20, 0x23, "a93e367f64379ac4792fd2847718bc2376c7ae1a87c93be2a1f5c8e0cc62"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

1.341997987s ago: executing program 0 (id=1794):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12013f00000000407f04ffff00000000000109022d000100000000090400001503000000092140000001220f000905", @ANYRES32], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000b00)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="00000f00000009003d140f3c369197d09647190890"], 0x0, 0x0, 0x0, 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x40200)
ioctl$HIDIOCGUSAGE(r1, 0x501c4814, &(0x7f00000000c0)={0x2})

100.982ms ago: executing program 1 (id=1795):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)={{0x14, 0x10, 0x4}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}]}, @NFT_MSG_NEWSETELEM={0x4c, 0xc, 0xa, 0x301, 0x0, 0x0, {0x7, 0x0, 0x9}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x20, 0x3, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x10, 0xb, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, @cmp={{0x8}, @void}}]}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xd0}}, 0x0)

51.605437ms ago: executing program 1 (id=1796):
socket$nl_route(0x10, 0x3, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000040)={0x7, 0x6576, 0x3})
shmctl$SHM_STAT(0x0, 0xd, 0x0)
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r0, 0x100000000)
mremap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f00003eb000/0x1000)=nil)

0s ago: executing program 1 (id=1797):
r0 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000000)={0x6, 0x1, 0x1, 0x0, 0x3})
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000040)=0x1)

kernel console output (not intermixed with test programs):

1-1: USB disconnect, device number 10
[  140.587857][   T10] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  140.591333][ T8265] netlink: 'syz.3.868': attribute type 1 has an invalid length.
[  140.741125][   T10] usb 2-1: unable to get BOS descriptor or descriptor too short
[  140.746890][   T10] usb 2-1: config 129 has an invalid interface number: 135 but max is 0
[  140.751860][   T10] usb 2-1: config 129 has an invalid interface number: 5 but max is 0
[  140.767831][   T10] usb 2-1: config 129 has an invalid descriptor of length 0, skipping remainder of the config
[  140.772089][   T10] usb 2-1: config 129 has 2 interfaces, different from the descriptor's value: 1
[  140.776230][   T10] usb 2-1: config 129 has no interface number 0
[  140.786308][   T10] usb 2-1: config 129 has no interface number 1
[  140.791529][   T10] usb 2-1: config 129 interface 135 altsetting 6 has 0 endpoint descriptors, different from the interface descriptor's value: 5
[  140.793847][ T8277] netlink: 'syz.0.874': attribute type 9 has an invalid length.
[  140.796901][   T10] usb 2-1: too many endpoints for config 129 interface 5 altsetting 7: 37, using maximum allowed: 30
[  140.804894][ T8277] netlink: 211988 bytes leftover after parsing attributes in process `syz.0.874'.
[  140.818212][   T10] usb 2-1: config 129 interface 5 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 37
[  140.828000][   T10] usb 2-1: config 129 interface 135 has no altsetting 0
[  140.831532][   T10] usb 2-1: config 129 interface 5 has no altsetting 0
[  140.854213][   T10] usb 2-1: New USB device found, idVendor=2040, idProduct=721f, bcdDevice=f2.62
[  140.868320][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  140.868341][   T10] usb 2-1: Product: syz
[  140.868351][   T10] usb 2-1: Manufacturer: syz
[  140.868361][   T10] usb 2-1: SerialNumber: syz
[  141.069437][ T8287] netlink: 9275 bytes leftover after parsing attributes in process `syz.0.879'.
[  141.113854][   T10] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  141.128280][   T10] usb 2-1: MIDIStreaming interface descriptor not found
[  141.155717][ T8291] netlink: 'syz.0.881': attribute type 2 has an invalid length.
[  141.160318][ T8291] netlink: 'syz.0.881': attribute type 1 has an invalid length.
[  141.163703][ T8291] netlink: 152 bytes leftover after parsing attributes in process `syz.0.881'.
[  141.209687][   T10] usb 2-1: USB disconnect, device number 15
[  141.285704][ T6204] udevd[6204]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:129.5/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  141.383078][ T8275] loop3: detected capacity change from 0 to 40427
[  141.399230][ T8275] F2FS-fs (loop3): build fault injection rate: 771
[  141.405842][ T8275] F2FS-fs (loop3): invalid crc value
[  141.453323][ T8302] loop0: detected capacity change from 0 to 8
[  141.478931][ T8302] SQUASHFS error: lzo decompression failed, data probably corrupt
[  141.483077][ T8302] SQUASHFS error: Failed to read block 0x91: -5
[  141.487246][ T8275] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  141.491818][ T8302] SQUASHFS error: Unable to read metadata cache entry [8f]
[  141.495103][ T8302] SQUASHFS error: Unable to read inode 0x11f
[  141.495147][ T8275] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  141.557277][ T6942] syz-executor: attempt to access beyond end of device
[  141.557277][ T6942] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  141.569055][ T6942] CPU: 1 UID: 0 PID: 6942 Comm: syz-executor Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  141.569074][ T6942] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  141.569082][ T6942] Call Trace:
[  141.569087][ T6942]  <TASK>
[  141.569092][ T6942]  dump_stack_lvl+0x189/0x250
[  141.569114][ T6942]  ? __pfx_dump_stack_lvl+0x10/0x10
[  141.569150][ T6942]  ? __pfx_queue_work_on+0x10/0x10
[  141.569180][ T6942]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  141.569195][ T6942]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  141.569217][ T6942]  f2fs_handle_critical_error+0x37c/0x540
[  141.569239][ T6942]  f2fs_write_end_io+0x886/0xb60
[  141.569263][ T6942]  __submit_merged_bio+0x27a/0x6a0
[  141.569283][ T6942]  __submit_merged_write_cond+0x255/0x530
[  141.569305][ T6942]  f2fs_write_data_pages+0x261d/0x3000
[  141.569351][ T6942]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  141.569366][ T6942]  ? is_bpf_text_address+0x26/0x2b0
[  141.569394][ T6942]  ? arch_stack_walk+0xfc/0x150
[  141.569435][ T6942]  ? __lock_acquire+0xab9/0xd20
[  141.569458][ T6942]  ? css_rstat_updated+0x23a/0x4f0
[  141.569506][ T6942]  ? __lock_acquire+0xab9/0xd20
[  141.569536][ T6942]  ? do_raw_spin_lock+0x121/0x290
[  141.569559][ T6942]  ? do_raw_spin_unlock+0x4d/0x240
[  141.569574][ T6942]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  141.569590][ T6942]  do_writepages+0x32e/0x550
[  141.569616][ T6942]  ? do_raw_spin_unlock+0x4d/0x240
[  141.569634][ T6942]  filemap_fdatawrite+0x199/0x240
[  141.569650][ T6942]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  141.569705][ T6942]  ? do_raw_spin_unlock+0x4d/0x240
[  141.569723][ T6942]  f2fs_sync_dirty_inodes+0x31f/0x830
[  141.569747][ T6942]  f2fs_write_checkpoint+0x95a/0x1df0
[  141.569779][ T6942]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  141.569826][ T6942]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  141.569839][ T6942]  ? kfree+0x18e/0x440
[  141.569854][ T6942]  ? kill_f2fs_super+0x298/0x6c0
[  141.569871][ T6942]  kill_f2fs_super+0x2c3/0x6c0
[  141.569889][ T6942]  ? __pfx_kill_f2fs_super+0x10/0x10
[  141.569898][ T6942]  ? radix_tree_delete_item+0x2b6/0x400
[  141.569920][ T6942]  ? shrinker_free+0x2ce/0x3e0
[  141.569935][ T6942]  deactivate_locked_super+0xbc/0x130
[  141.569952][ T6942]  cleanup_mnt+0x425/0x4c0
[  141.569966][ T6942]  ? lockdep_hardirqs_on+0x9c/0x150
[  141.569985][ T6942]  task_work_run+0x1d4/0x260
[  141.570003][ T6942]  ? __pfx_task_work_run+0x10/0x10
[  141.570016][ T6942]  ? __x64_sys_umount+0x122/0x160
[  141.570036][ T6942]  ? exit_to_user_mode_loop+0x40/0x110
[  141.570054][ T6942]  exit_to_user_mode_loop+0xec/0x110
[  141.570069][ T6942]  do_syscall_64+0x2bd/0x3b0
[  141.570084][ T6942]  ? lockdep_hardirqs_on+0x9c/0x150
[  141.570098][ T6942]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.570110][ T6942]  ? exc_page_fault+0x9f/0xf0
[  141.570126][ T6942]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.570135][ T6942] RIP: 0033:0x7f3fde78ff17
[  141.570147][ T6942] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  141.570156][ T6942] RSP: 002b:00007ffe3fc28758 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  141.570172][ T6942] RAX: 0000000000000000 RBX: 00007f3fde811c05 RCX: 00007f3fde78ff17
[  141.570181][ T6942] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe3fc28810
[  141.570187][ T6942] RBP: 00007ffe3fc28810 R08: 0000000000000000 R09: 0000000000000000
[  141.570196][ T6942] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe3fc298a0
[  141.570202][ T6942] R13: 00007f3fde811c05 R14: 0000000000022872 R15: 00007ffe3fc298e0
[  141.570224][ T6942]  </TASK>
[  141.587980][ T6942] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  141.757609][ T8313] loop1: detected capacity change from 0 to 256
[  141.766783][ T8313] FAT-fs (loop1): Directory bread(block 64) failed
[  141.773865][ T8313] FAT-fs (loop1): Directory bread(block 65) failed
[  141.776662][ T8313] FAT-fs (loop1): Directory bread(block 66) failed
[  141.783993][ T8313] FAT-fs (loop1): Directory bread(block 67) failed
[  141.786308][ T8313] FAT-fs (loop1): Directory bread(block 68) failed
[  141.794118][ T8313] FAT-fs (loop1): Directory bread(block 69) failed
[  141.796396][ T8313] FAT-fs (loop1): Directory bread(block 70) failed
[  141.804262][ T8313] FAT-fs (loop1): Directory bread(block 71) failed
[  141.806690][ T8313] FAT-fs (loop1): Directory bread(block 72) failed
[  141.814386][ T8313] FAT-fs (loop1): Directory bread(block 73) failed
[  141.901536][ T8317] netlink: 16 bytes leftover after parsing attributes in process `syz.3.892'.
[  141.992865][ T6235] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  142.161130][ T6235] usb 1-1: Using ep0 maxpacket: 8
[  142.182383][ T6235] usb 1-1: unable to get BOS descriptor or descriptor too short
[  142.191639][ T6235] usb 1-1: unable to read config index 0 descriptor/start: -71
[  142.194228][ T6235] usb 1-1: can't read configurations, error -71
[  142.218766][ T8323] loop3: detected capacity change from 0 to 32768
[  142.225175][ T8323] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.895 (8323)
[  142.253592][ T8323] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  142.267968][ T8323] BTRFS info (device loop3): using crc32c (crc32c-lib) checksum algorithm
[  142.271721][ T8323] BTRFS info (device loop3): using free-space-tree
[  142.594743][ T8323] BTRFS info (device loop3): rebuilding free space tree
[  142.681409][   T33] kauditd_printk_skb: 11 callbacks suppressed
[  142.681422][   T33] audit: type=1800 audit(1755255592.726:36): pid=8323 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.895" name="bus" dev="loop3" ino=263 res=0 errno=0
[  142.888508][ T6942] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  143.036072][ T8363] netlink: 'syz.1.906': attribute type 3 has an invalid length.
[  143.042279][ T8363] netlink: 8 bytes leftover after parsing attributes in process `syz.1.906'.
[  143.053782][ T8362] netlink: 'syz.0.907': attribute type 1 has an invalid length.
[  143.368191][   T47] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  143.509363][ T8397] loop0: detected capacity change from 0 to 4096
[  143.518515][   T47] usb 2-1: Using ep0 maxpacket: 16
[  143.521952][   T47] usb 2-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[  143.525486][   T47] usb 2-1: config 7 interface 0 altsetting 5 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  143.534330][ T8397] ntfs3(loop0): ino=1e, "file1" fallocate(0x10) is not supported
[  143.550127][   T47] usb 2-1: config 7 interface 0 altsetting 5 endpoint 0x81 has invalid wMaxPacketSize 0
[  143.553952][   T47] usb 2-1: config 7 interface 0 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  143.572391][   T47] usb 2-1: config 7 interface 0 has no altsetting 0
[  143.574563][   T47] usb 2-1: New USB device found, idVendor=0458, idProduct=5010, bcdDevice= 0.00
[  143.577455][   T47] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  144.050378][   T47] input: HID 0458:5010 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:7.0/0003:0458:5010.0003/input/input10
[  144.200327][   T47] kye 0003:0458:5010.0003: input,hiddev0,hidraw0: USB HID v2.00 Device [HID 0458:5010] on usb-dummy_hcd.1-1/input0
[  144.237505][   T47] usb 2-1: USB disconnect, device number 16
[  144.977629][   T10] usb 4-1: new full-speed USB device number 6 using dummy_hcd
[  145.030504][ T8432] loop1: detected capacity change from 0 to 256
[  145.140788][   T10] usb 4-1: config 9 has an invalid interface number: 252 but max is 0
[  145.144463][   T10] usb 4-1: config 9 has no interface number 0
[  145.147227][   T10] usb 4-1: config 9 interface 252 has no altsetting 0
[  145.152691][   T10] usb 4-1: New USB device found, idVendor=05ac, idProduct=0238, bcdDevice=dd.7c
[  145.155775][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  145.159760][   T10] usb 4-1: Product: syz
[  145.161734][   T10] usb 4-1: Manufacturer: syz
[  145.163868][   T10] usb 4-1: SerialNumber: syz
[  145.388848][   T10] input: bcm5974 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:9.252/input/input11
[  145.399514][ T5282] bcm5974 4-1:9.252: could not read from device
[  145.411065][ T5282] bcm5974 4-1:9.252: could not read from device
[  145.418015][   T10] usb 4-1: USB disconnect, device number 6
[  145.423053][ T5282] bcm5974 4-1:9.252: could not read from device
[  145.483560][ T8438] loop0: detected capacity change from 0 to 1024
[  145.510425][ T8438] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  145.520429][ T6235] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  145.533992][ T8438] EXT4-fs (loop0): shut down requested (2)
[  145.546835][ T5847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.691760][ T6235] usb 2-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  145.694835][ T6235] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  145.700717][ T6235] usb 2-1: Product: syz
[  145.702128][ T6235] usb 2-1: Manufacturer: syz
[  145.703609][ T6235] usb 2-1: SerialNumber: syz
[  145.716109][ T6235] usb 2-1: config 0 descriptor??
[  145.881364][ T8466] loop0: detected capacity change from 0 to 256
[  145.922225][ T8466] FAT-fs (loop0): error, fat_free_clusters: deleting FAT entry beyond EOF
[  145.926279][ T8466] FAT-fs (loop0): Filesystem has been set read-only
[  145.942852][ T6235] usb 2-1: USB disconnect, device number 17
[  146.657949][ T8481] loop1: detected capacity change from 0 to 512
[  146.669681][ T8481] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  146.674299][ T8481] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  146.682256][ T8481] EXT4-fs (loop1): 1 truncate cleaned up
[  146.685297][ T8481] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.720995][ T5851] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.879108][ T8490] sit0: entered promiscuous mode
[  146.886313][ T8490] netlink: 21 bytes leftover after parsing attributes in process `syz.3.958'.
[  148.073544][ T8512] input: syz1 as /devices/virtual/input/input12
[  148.297174][ T8519] netlink: 146780 bytes leftover after parsing attributes in process `syz.3.970'.
[  148.425540][ T8521] syz_tun: entered allmulticast mode
[  148.441723][ T8520] syz_tun: left allmulticast mode
[  148.450565][ T8523] ALSA: mixer_oss: invalid OSS volume '49'
[  148.453215][ T8523] ALSA: mixer_oss: invalid OSS volume 'Invalid'
[  149.201129][ T8537] netlink: 'syz.3.978': attribute type 21 has an invalid length.
[  149.204421][ T8537] netlink: 8 bytes leftover after parsing attributes in process `syz.3.978'.
[  150.023602][ T8549] netlink: 8 bytes leftover after parsing attributes in process `syz.3.981'.
[  150.888499][ T8570] bridge0: port 1(bridge_slave_0) entered disabled state
[  150.908211][ T8570] bridge0: port 2(bridge_slave_1) entered disabled state
[  151.076787][ T8580] loop1: detected capacity change from 0 to 128
[  151.081576][ T8578] loop3: detected capacity change from 0 to 128
[  151.110642][ T8580] FAT-fs (loop1): error, corrupted directory (invalid entries)
[  151.118167][ T8580] FAT-fs (loop1): Filesystem has been set read-only
[  151.145998][ T8582] loop0: detected capacity change from 0 to 512
[  151.168911][ T8582] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a846e01c, mo2=0002]
[  151.174341][ T8582] System zones: 1-12
[  151.177047][ T8582] EXT4-fs error (device loop0): dx_probe:791: inode #2: comm syz.0.997: Directory hole found for htree index block 0
[  151.207572][ T8582] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -117
[  151.211234][ T8582] EXT4-fs error (device loop0): dx_probe:791: inode #2: comm syz.0.997: Directory hole found for htree index block 0
[  151.230868][ T8582] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117
[  151.249674][ T8582] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  151.270677][ T8590] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1000'.
[  151.331848][ T5847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.592718][ T8614] orangefs_devreq_open: device cannot be opened in blocking mode
[  152.157554][ T8623] loop3: detected capacity change from 0 to 2048
[  152.165775][ T8623] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  152.176037][ T8623] NILFS (loop3): mounting unchecked fs
[  152.182244][ T6206] udevd[6206]: incorrect nilfs2 checksum on /dev/loop3
[  152.190435][ T8623] NILFS (loop3): recovery complete
[  152.195519][ T8626] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  152.287231][ T8628] tmpfs: Group quota inode hardlimit too large.
[  152.497183][   T33] audit: type=1107 audit(1755255602.536:37): pid=8640 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  152.511749][ T8637] bridge0: port 2(bridge_slave_1) entered disabled state
[  152.664017][ T8650] futex_wake_op: syz.0.1024 tries to shift op by -1; fix this program
[  152.836612][ T8663] loop1: detected capacity change from 0 to 2048
[  152.950785][ T8670] loop1: detected capacity change from 0 to 512
[  152.977145][ T8672] loop0: detected capacity change from 0 to 512
[  152.982398][ T8670] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.993808][ T8670] ext4 filesystem being mounted at /384/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.030266][ T8672] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  153.035095][ T8672] ext4 filesystem being mounted at /350/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.040462][   T33] audit: type=1800 audit(1755255603.076:38): pid=8670 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1034" name="file1" dev="loop1" ino=15 res=0 errno=0
[  153.047595][   T33] audit: type=1800 audit(1755255603.076:39): pid=8670 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1034" name="file2" dev="loop1" ino=16 res=0 errno=0
[  153.055029][   T33] audit: type=1800 audit(1755255603.076:40): pid=8670 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1034" name="file1" dev="loop1" ino=15 res=0 errno=0
[  153.086106][ T5851] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.133540][ T5847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.147440][ T8664] loop3: detected capacity change from 0 to 32768
[  153.178350][ T8681] loop1: detected capacity change from 0 to 2048
[  153.182909][ T8681] UDF-fs: error (device loop1): udf_process_sequence: Primary Volume Descriptor not found!
[  153.193201][ T8681] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  153.206570][ T8664] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  153.303560][ T8664] XFS (loop3): Ending clean mount
[  153.315755][ T8664] XFS (loop3): Quotacheck needed: Please wait.
[  153.377940][ T8664] XFS (loop3): Quotacheck: Done.
[  153.462011][ T6942] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  153.575468][ T8700] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1042'.
[  153.647790][  T794] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  153.810007][  T794] usb 2-1: config 220 has an invalid interface number: 76 but max is 2
[  153.818911][  T794] usb 2-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  153.830728][  T794] usb 2-1: config 220 has no interface number 2
[  153.833587][  T794] usb 2-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  153.857104][  T794] usb 2-1: config 220 interface 0 has no altsetting 0
[  153.864388][  T794] usb 2-1: config 220 interface 76 has no altsetting 0
[  153.867246][  T794] usb 2-1: config 220 interface 1 has no altsetting 0
[  153.878250][  T794] usb 2-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  153.882187][  T794] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  153.885505][  T794] usb 2-1: Product: syz
[  153.887447][  T794] usb 2-1: Manufacturer: syz
[  153.891861][  T794] usb 2-1: SerialNumber: syz
[  154.503333][  T794] usb 2-1: selecting invalid altsetting 0
[  154.513949][  T794] usb 2-1: selecting invalid altsetting 0
[  154.516361][  T794] usb 2-1: Found UVC 7.01 device syz (8086:0b07)
[  154.519552][  T794] usb 2-1: No valid video chain found.
[  154.536192][  T794] usb 2-1: selecting invalid altsetting 0
[  154.538869][  T794] usbtest 2-1:220.1: probe with driver usbtest failed with error -22
[  154.557245][  T794] usb 2-1: USB disconnect, device number 18
[  154.903426][ T8730] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1054'.
[  155.046222][ T8742] loop3: detected capacity change from 0 to 16
[  155.050904][ T8742] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  155.375481][ T5876] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  155.386028][ T6235] usb 2-1: new full-speed USB device number 19 using dummy_hcd
[  155.395519][ T8748] loop0: detected capacity change from 0 to 8
[  155.408198][ T8748] unable to read fragment index table
[  155.490649][ T5876] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  155.539994][ T6235] usb 2-1: unable to get BOS descriptor or descriptor too short
[  155.543939][ T6235] usb 2-1: not running at top speed; connect to a high speed hub
[  155.548718][ T6235] usb 2-1: config 2 has an invalid interface number: 226 but max is 1
[  155.552132][ T6235] usb 2-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[  155.556313][ T6235] usb 2-1: config 2 has 1 interface, different from the descriptor's value: 2
[  155.562063][ T6235] usb 2-1: config 2 has no interface number 0
[  155.564686][ T6235] usb 2-1: config 2 interface 226 altsetting 0 endpoint 0x1 has invalid maxpacket 512, setting to 64
[  155.569375][ T6235] usb 2-1: config 2 interface 226 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 10
[  155.576554][ T6235] usb 2-1: config 2 interface 226 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  155.588643][ T6235] usb 2-1: New USB device found, idVendor=0738, idProduct=4540, bcdDevice=c6.ce
[  155.593277][ T6235] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  155.604996][ T6235] usb 2-1: Product: syz
[  155.606868][ T6235] usb 2-1: Manufacturer: syz
[  155.611937][ T6235] usb 2-1: SerialNumber: syz
[  155.621319][ T5876] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  155.746471][ T5876] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  155.840659][ T6235] usb 2-1: USB disconnect, device number 19
[  155.953069][ T8757] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1071'.
[  156.000938][ T5876] bridge_slave_1: left allmulticast mode
[  156.003320][ T5876] bridge_slave_1: left promiscuous mode
[  156.012928][ T5876] bridge0: port 2(bridge_slave_1) entered disabled state
[  156.039544][ T5876] bridge_slave_0: left allmulticast mode
[  156.041973][ T5876] bridge_slave_0: left promiscuous mode
[  156.044407][ T5876] bridge0: port 1(bridge_slave_0) entered disabled state
[  156.086208][ T5850] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  156.095135][ T5850] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  156.099629][ T5850] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  156.105014][ T5850] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  156.109868][ T5850] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  156.415004][ T8769] loop1: detected capacity change from 0 to 1024
[  156.415019][ T8764] loop0: detected capacity change from 0 to 32768
[  156.473696][ T6363] hfsplus: b-tree write err: -5, ino 4
[  156.676723][ T5876] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  156.680065][ T5876] bond_slave_0: left promiscuous mode
[  156.684087][ T5876] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  156.687491][ T5876] bond_slave_1: left promiscuous mode
[  156.692173][ T5876] bond0 (unregistering): (slave batadv0): Releasing backup interface
[  156.695376][ T5876] batadv0: left promiscuous mode
[  156.700979][ T5876] bond0 (unregistering): Released all slaves
[  156.717143][ T5876] bond1 (unregistering): Released all slaves
[  157.076308][ T5876] hsr_slave_0: left promiscuous mode
[  157.083124][ T5876] hsr_slave_1: left promiscuous mode
[  157.085316][ T5876] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  157.091428][ T5876] batman_adv: batadv0: Removing interface: batadv_slave_0
[  157.094458][ T5876] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  157.097008][ T5876] batman_adv: batadv0: Removing interface: batadv_slave_1
[  157.111082][ T5876] veth1_macvtap: left promiscuous mode
[  157.113593][ T5876] veth0_macvtap: left promiscuous mode
[  157.115533][ T5876] veth1_vlan: left promiscuous mode
[  157.117520][ T5876] veth0_vlan: left promiscuous mode
[  157.225536][ T5876] team0 (unregistering): Port device batadv1 removed
[  157.348459][  T793] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  157.502288][  T793] usb 1-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  157.506246][  T793] usb 1-1: config 27 has 0 interfaces, different from the descriptor's value: 1
[  157.517121][  T793] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  157.522200][  T793] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.657873][ T5314] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  157.663655][ T5876] team0 (unregistering): Port device team_slave_1 removed
[  157.702265][ T5876] team0 (unregistering): Port device team_slave_0 removed
[  157.831393][ T5314] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid maxpacket 245, setting to 64
[  157.835942][ T5314] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  157.840271][ T5314] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.859102][ T5314] usb 2-1: config 0 descriptor??
[  158.153170][   T55] Bluetooth: hci2: command tx timeout
[  158.200257][ T8794] block nbd1: shutting down sockets
[  158.257420][ T5314] ath6kl: Failed to submit usb control message: -71
[  158.262243][ T8760] chnl_net:caif_netlink_parms(): no params data found
[  158.271160][ T5314] ath6kl: unable to send the bmi data to the device: -71
[  158.274333][ T5314] ath6kl: Unable to send get target info: -71
[  158.291928][ T5314] ath6kl: Failed to init ath6kl core: -71
[  158.294765][ T5314] ath6kl_usb 2-1:0.0: probe with driver ath6kl_usb failed with error -71
[  158.323178][ T5314] usb 2-1: USB disconnect, device number 20
[  158.413616][ T8760] bridge0: port 1(bridge_slave_0) entered blocking state
[  158.416851][ T8760] bridge0: port 1(bridge_slave_0) entered disabled state
[  158.420248][ T8760] bridge_slave_0: entered allmulticast mode
[  158.434670][ T8760] bridge_slave_0: entered promiscuous mode
[  158.439448][ T8760] bridge0: port 2(bridge_slave_1) entered blocking state
[  158.442714][ T8760] bridge0: port 2(bridge_slave_1) entered disabled state
[  158.453127][ T8760] bridge_slave_1: entered allmulticast mode
[  158.457014][ T8760] bridge_slave_1: entered promiscuous mode
[  158.528819][ T8760] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  158.543867][ T8760] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  158.587593][ T8760] team0: Port device team_slave_0 added
[  158.599378][ T8760] team0: Port device team_slave_1 added
[  158.627518][ T8760] batman_adv: batadv0: Adding interface: batadv_slave_0
[  158.630424][ T8760] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  158.641725][ T8760] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  158.646922][ T8760] batman_adv: batadv0: Adding interface: batadv_slave_1
[  158.649576][ T8760] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  158.658837][ T8760] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  158.693909][ T8760] hsr_slave_0: entered promiscuous mode
[  158.696338][ T8760] hsr_slave_1: entered promiscuous mode
[  158.892008][ T8760] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  158.899595][ T8760] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  158.911364][ T8760] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  158.917240][ T8760] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  158.972463][ T8760] bridge0: port 2(bridge_slave_1) entered blocking state
[  158.974904][ T8760] bridge0: port 2(bridge_slave_1) entered forwarding state
[  158.977288][ T8760] bridge0: port 1(bridge_slave_0) entered blocking state
[  158.979932][ T8760] bridge0: port 1(bridge_slave_0) entered forwarding state
[  159.090304][ T8760] 8021q: adding VLAN 0 to HW filter on device bond0
[  159.209064][   T27] bridge0: port 1(bridge_slave_0) entered disabled state
[  159.213218][   T27] bridge0: port 2(bridge_slave_1) entered disabled state
[  159.229320][ T8760] 8021q: adding VLAN 0 to HW filter on device team0
[  159.240690][   T27] bridge0: port 1(bridge_slave_0) entered blocking state
[  159.243736][   T27] bridge0: port 1(bridge_slave_0) entered forwarding state
[  159.581661][   T27] bridge0: port 2(bridge_slave_1) entered blocking state
[  159.584559][   T27] bridge0: port 2(bridge_slave_1) entered forwarding state
[  159.604964][ T8760] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  159.609947][ T8760] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  159.730675][ T8760] 8021q: adding VLAN 0 to HW filter on device batadv0
[  160.072639][   T10] usb 1-1: USB disconnect, device number 13
[  160.077235][ T8863] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1086'.
[  160.096730][ T8760] veth0_vlan: entered promiscuous mode
[  160.123088][ T8760] veth1_vlan: entered promiscuous mode
[  160.152993][ T8760] veth0_macvtap: entered promiscuous mode
[  160.160755][ T8760] veth1_macvtap: entered promiscuous mode
[  160.185322][ T8760] batman_adv: batadv0: Interface activated: batadv_slave_0
[  160.194105][ T8760] batman_adv: batadv0: Interface activated: batadv_slave_1
[  160.204998][   T13] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  160.209361][   T13] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  160.212501][   T13] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  160.215528][   T13] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  160.229107][   T55] Bluetooth: hci2: command tx timeout
[  160.301409][   T27] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  160.304734][   T27] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  160.343671][   T40] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  160.346980][   T40] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  160.701064][ T8896] hugetlbfs: syz.4.1092 (8896): Using mlock ulimits for SHM_HUGETLB is obsolete
[  160.993050][ T8902] loop1: detected capacity change from 0 to 2048
[  161.013848][ T8902] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  161.729307][ T8916] block nbd4: NBD_DISCONNECT
[  161.731324][ T8916] block nbd4: Send disconnect failed -89
[  161.735668][ T8915] block nbd4: Disconnected due to user request.
[  161.739000][ T8915] block nbd4: shutting down sockets
[  161.794439][ T8918] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1101'.
[  161.938237][   T33] audit: type=1326 audit(1755255611.976:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8927 comm="syz.4.1105" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fda45f8ebe9 code=0x0
[  161.981445][ T8931] loop0: detected capacity change from 0 to 256
[  161.992935][ T8931] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6d3f72e, utbl_chksum : 0xe619d30d)
[  162.085687][ T8938] veth0_macvtap: left promiscuous mode
[  162.181497][ T8943] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1112'.
[  162.308357][   T55] Bluetooth: hci2: command tx timeout
[  162.604600][ T8965] loop1: detected capacity change from 0 to 128
[  162.625310][ T8965] syz.1.1122: attempt to access beyond end of device
[  162.625310][ T8965] loop1: rw=2051, sector=128, nr_sectors = 913 limit=128
[  162.819532][ T8974] netlink: 6 bytes leftover after parsing attributes in process `syz.1.1127'.
[  162.824841][ T8975] loop4: detected capacity change from 0 to 16
[  162.848014][ T8974] loop1: detected capacity change from 0 to 512
[  162.859401][ T8975] erofs (device loop4): mounted with root inode @ nid 36.
[  162.875359][ T8975] erofs (device loop4): readahead error at folio 2 @ nid 89
[  162.895781][ T8974] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.896884][ T7419] erofs (device loop4): failed to decompress 6887 in[4096, 0] out[8192]
[  162.909914][ T8974] ext4 filesystem being mounted at /427/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  162.921484][ T8975] erofs (device loop4): failed to decompress 6887 in[4096, 0] out[8192]
[  162.925071][ T8975] erofs (device loop4): read error -117 @ 1 of nid 89
[  162.938304][   T33] audit: type=1800 audit(1755255612.976:42): pid=8975 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1126" name="file3" dev="loop4" ino=89 res=0 errno=0
[  163.025305][ T5851] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.182896][ T8993] loop0: detected capacity change from 0 to 4096
[  163.407100][ T9002] loop0: detected capacity change from 0 to 32768
[  163.418549][ T9002] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  163.467537][ T5847] ocfs2: Unmounting device (7,0) on (node local)
[  164.388376][   T55] Bluetooth: hci2: command tx timeout
[  165.247940][ T5885] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  165.358193][ T5314] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  165.397812][ T5885] usb 5-1: Using ep0 maxpacket: 8
[  165.401556][ T5885] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x73, changing to 0x3
[  165.406202][ T5885] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  165.412462][ T5885] usb 5-1: New USB device found, idVendor=0e9c, idProduct=0000, bcdDevice=5b.1e
[  165.415753][ T5885] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  165.419247][ T5885] usb 5-1: Product: syz
[  165.421064][ T5885] usb 5-1: Manufacturer: syz
[  165.422943][ T5885] usb 5-1: SerialNumber: syz
[  165.426439][ T5885] usb 5-1: config 0 descriptor??
[  165.434709][ T5885] streamzap 5-1:0.0: streamzap_probe: endpoint doesn't match input device 0203
[  165.518520][ T5314] usb 2-1: Using ep0 maxpacket: 8
[  165.522419][ T5314] usb 2-1: config 0 interface 0 altsetting 5 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  165.526937][ T5314] usb 2-1: config 0 interface 0 altsetting 5 endpoint 0x81 has invalid wMaxPacketSize 0
[  165.531115][ T5314] usb 2-1: config 0 interface 0 has no altsetting 0
[  165.534009][ T5314] usb 2-1: New USB device found, idVendor=1038, idProduct=1410, bcdDevice= 0.00
[  165.538684][ T5314] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  165.549461][ T5314] usb 2-1: config 0 descriptor??
[  165.644018][ T6235] usb 5-1: USB disconnect, device number 2
[  165.960700][ T5314] steelseries 0003:1038:1410.0004: unknown main item tag 0x0
[  165.963284][ T5314] steelseries 0003:1038:1410.0004: unknown main item tag 0x0
[  165.966374][ T5314] steelseries 0003:1038:1410.0004: unknown main item tag 0x0
[  165.970642][ T5314] steelseries 0003:1038:1410.0004: unknown main item tag 0x0
[  165.973608][ T5314] steelseries 0003:1038:1410.0004: unknown main item tag 0x0
[  165.976791][ T5314] steelseries 0003:1038:1410.0004: missing HID_OUTPUT_REPORT 0
[  166.168694][ T6235] usb 2-1: USB disconnect, device number 21
[  166.405460][ T9140] af_packet: tpacket_rcv: packet too big, clamped from 4 to 4294967272. macoff=96
[  166.446432][ T9142] loop4: detected capacity change from 0 to 1024
[  166.704531][ T9149] mac80211_hwsim hwsim7 wlan1: entered allmulticast mode
[  166.788228][  T793] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  166.970557][  T793] usb 5-1: config 0 has an invalid interface number: 69 but max is 0
[  166.974237][  T793] usb 5-1: config 0 has no interface number 0
[  166.976967][  T793] usb 5-1: config 0 interface 69 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 1023
[  166.982257][  T793] usb 5-1: config 0 interface 69 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  166.991692][  T793] usb 5-1: New USB device found, idVendor=0c4b, idProduct=0100, bcdDevice=d7.ca
[  166.995630][  T793] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  166.999754][  T793] usb 5-1: Product: syz
[  167.001570][  T793] usb 5-1: Manufacturer: syz
[  167.003546][  T793] usb 5-1: SerialNumber: syz
[  167.008270][  T793] usb 5-1: config 0 descriptor??
[  167.013471][ T9146] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  167.019611][  T793] cyberjack 5-1:0.69: Reiner SCT Cyberjack USB card reader converter detected
[  167.030778][  T793] usb 5-1: Reiner SCT Cyberjack USB card reader converter now attached to ttyUSB0
[  167.232396][   T33] audit: type=1326 audit(1755255617.276:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9159 comm="syz.0.1171" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9e24f8ebe9 code=0x0
[  167.430780][ T6235] usb 5-1: USB disconnect, device number 3
[  167.451407][ T6235] cyberjack ttyUSB0: Reiner SCT Cyberjack USB card reader converter now disconnected from ttyUSB0
[  167.456502][ T6235] cyberjack 5-1:0.69: device disconnected
[  167.568737][ T9164] loop0: detected capacity change from 0 to 32768
[  167.572748][ T9164] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1173 (9164)
[  167.582261][ T9164] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  167.589403][ T9164] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  167.593017][ T9164] BTRFS info (device loop0): using free-space-tree
[  167.691971][ T9180] loop1: detected capacity change from 0 to 1024
[  167.835168][ T5847] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  167.853282][ T9187] loop1: detected capacity change from 0 to 256
[  167.892509][ T9187] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  167.958392][ T9187] exFAT-fs (loop1): IO charset iso8859- not found
[  168.128534][  T793] hid-generic 00A0:0006:0003.0005: unknown main item tag 0x0
[  168.131119][  T793] hid-generic 00A0:0006:0003.0005: unknown main item tag 0x0
[  168.133793][  T793] hid-generic 00A0:0006:0003.0005: unknown main item tag 0x0
[  168.136450][  T793] hid-generic 00A0:0006:0003.0005: unknown main item tag 0x0
[  168.141478][  T793] hid-generic 00A0:0006:0003.0005: unknown main item tag 0x0
[  168.152992][  T793] hid-generic 00A0:0006:0003.0005: hidraw0: <UNKNOWN> HID v0.05 Device [syz1] on syz0
[  168.220473][ T9203] loop1: detected capacity change from 0 to 512
[  168.547925][ T5314] usb 5-1: new full-speed USB device number 4 using dummy_hcd
[  168.636841][ T9210] loop1: detected capacity change from 0 to 512
[  168.653059][ T9210] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.1185: casefold flag without casefold feature
[  168.657208][ T9210] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.1185: couldn't read orphan inode 15 (err -117)
[  168.661957][ T9210] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.673520][ T9210] EXT4-fs error (device loop1): htree_dirblock_to_tree:1051: inode #2: comm syz.1.1185: Directory hole found for htree leaf block 0
[  168.694379][ T5851] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.705407][ T5314] usb 5-1: config 0 has no interfaces?
[  168.707316][ T5314] usb 5-1: New USB device found, idVendor=04f3, idProduct=0754, bcdDevice= 0.00
[  168.710702][ T5314] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  168.714851][ T5314] usb 5-1: config 0 descriptor??
[  168.926410][ T6235] usb 5-1: USB disconnect, device number 4
[  169.097871][  T793] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  169.249716][  T793] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  169.254314][  T793] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  169.258482][  T793] usb 2-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00
[  169.262410][  T793] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  169.266557][  T793] usb 2-1: config 0 descriptor??
[  169.288739][ T5314] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  169.437818][ T5314] usb 1-1: Using ep0 maxpacket: 16
[  169.445202][ T5314] usb 1-1: New USB device found, idVendor=06b9, idProduct=4061, bcdDevice= 1.88
[  169.448919][ T5314] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  169.452235][ T5314] usb 1-1: Product: syz
[  169.454136][ T5314] usb 1-1: Manufacturer: syz
[  169.456067][ T5314] usb 1-1: SerialNumber: syz
[  169.462114][ T5314] usb 1-1: config 0 descriptor??
[  169.496075][ T9223] sctp: [Deprecated]: syz.4.1190 (pid 9223) Use of int in maxseg socket option.
[  169.496075][ T9223] Use struct sctp_assoc_value instead
[  169.614334][ T9229] loop4: detected capacity change from 0 to 512
[  169.621351][ T9229] EXT4-fs: Ignoring removed oldalloc option
[  169.631410][ T9229] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  169.636463][ T9229] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  169.642523][ T9229] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a856c01c, mo2=0102]
[  169.645920][ T9229] System zones: 0-2, 18-18, 34-34
[  169.649309][ T9229] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.1193: iget: bad i_size value: 360287970189639680
[  169.655137][ T9229] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.1193: couldn't read orphan inode 15 (err -117)
[  169.661883][ T9229] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.670038][ T5314] speedtch 1-1:0.0: speedtch_bind: data interface not found!
[  169.673216][ T5314] speedtch 1-1:0.0: usbatm_usb_probe: bind failed: -19!
[  169.677500][   T55] Bluetooth: hci2: unexpected event 0x03 length: 1 < 11
[  169.694734][  T793] hid-led 0003:27B8:01ED.0006: unbalanced delimiter at end of report description
[  169.698567][  T793] hid-led 0003:27B8:01ED.0006: probe with driver hid-led failed with error -22
[  169.877536][  T793] usb 1-1: USB disconnect, device number 14
[  169.893888][ T6235] usb 2-1: USB disconnect, device number 22
[  169.992911][ T9212] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 80: padding at end of block bitmap is not set
[  170.245761][ T8760] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.376557][ T9245] sg_read: process 70 (syz.4.1196) changed security contexts after opening file descriptor, this is not allowed.
[  170.538799][ T9256] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1200'.
[  170.549247][ T9258] overlayfs: missing 'lowerdir'
[  170.558987][ T9256] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1200'.
[  170.604416][ T9262] netlink: 204 bytes leftover after parsing attributes in process `syz.0.1203'.
[  170.746565][ T9275] loop4: detected capacity change from 0 to 8
[  170.795908][ T9279] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1210'.
[  170.830713][ T9279] team1: entered promiscuous mode
[  170.847434][ T9279] team1: entered allmulticast mode
[  170.985317][   T47] usb 1-1: new full-speed USB device number 15 using dummy_hcd
[  171.171360][   T47] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  171.175440][   T47] usb 1-1: New USB device found, idVendor=056e, idProduct=00e6, bcdDevice= 0.00
[  171.182112][   T47] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  171.197643][   T47] usb 1-1: config 0 descriptor??
[  171.621258][   T47] hid (null): unknown global tag 0xe
[  171.650738][   T47] hid_parser_main: 10 callbacks suppressed
[  171.650969][   T47] elecom 0003:056E:00E6.0007: unknown main item tag 0x7
[  171.662330][   T47] elecom 0003:056E:00E6.0007: unknown global tag 0xe
[  171.665047][   T47] elecom 0003:056E:00E6.0007: item 0 0 1 14 parsing failed
[  171.685490][   T47] elecom 0003:056E:00E6.0007: probe with driver elecom failed with error -22
[  171.841303][   T47] usb 1-1: USB disconnect, device number 15
[  172.167533][ T9320] loop1: detected capacity change from 0 to 32768
[  172.178468][ T9320] bcachefs (/dev/loop1): error validating superblock: Invalid superblock: optional field extends past end of superblock (type 1497488896)
[  172.184920][ T9320] bcachefs: bch2_fs_get_tree() error: invalid_sb_field_size
[  172.640278][ T9344] loop6: detected capacity change from 0 to 7
[  172.651540][ T9344] Dev loop6: unable to read RDB block 7
[  172.653665][ T9344]  loop6: AHDI p3 p4
[  172.655336][ T9344] loop6: partition table partially beyond EOD, truncated
[  172.679500][ T9344] loop6: p3 start 1886353253 is beyond EOD, truncated
[  172.890535][ T9360] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  173.125436][ T9369] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(8)
[  173.128019][ T9369] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  173.145373][ T9369] vhci_hcd vhci_hcd.0: Device attached
[  173.258132][ T5314] usb 1-1: new full-speed USB device number 16 using dummy_hcd
[  173.387818][   T10] usb 41-1: new high-speed USB device number 2 using vhci_hcd
[  173.460494][ T5314] usb 1-1: unable to get BOS descriptor or descriptor too short
[  173.466783][ T5314] usb 1-1: not running at top speed; connect to a high speed hub
[  173.474615][ T5314] usb 1-1: config 4 has an invalid interface number: 111 but max is 0
[  173.482543][ T5314] usb 1-1: config 4 has no interface number 0
[  173.489631][ T5314] usb 1-1: config 4 interface 111 has no altsetting 0
[  173.501140][ T5314] usb 1-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=44.99
[  173.507278][ T5314] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  173.516722][ T5314] usb 1-1: Product: syz
[  173.522703][ T5314] usb 1-1: Manufacturer: syz
[  173.526339][ T5314] usb 1-1: SerialNumber: syz
[  173.622647][ T9370] loop1: detected capacity change from 0 to 40427
[  173.649084][ T9370] F2FS-fs (loop1): Image doesn't support compression
[  173.659051][ T9370] F2FS-fs (loop1): build fault injection rate: 4
[  173.666829][ T9370] F2FS-fs (loop1): build fault injection type: 0x5288
[  173.692253][ T9370] F2FS-fs (loop1): invalid crc value
[  173.763007][ T5314] pvrusb2: Hardware description: Terratec Grabster AV400
[  173.771550][ T5314] pvrusb2: **********
[  173.774572][ T5314] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  173.784631][ T5314] pvrusb2: Important functionality might not be entirely working.
[  173.793709][ T5314] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  173.805775][ T5314] pvrusb2: **********
[  173.810368][ T5314] usb 1-1: selecting invalid altsetting 0
[  173.844592][ T5314] usb 1-1: USB disconnect, device number 16
[  173.874633][ T9370] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  173.895243][ T9370] F2FS-fs (loop1): Start checkpoint disabled!
[  173.903069][ T9371] vhci_hcd: connection reset by peer
[  173.906641][ T6954] vhci_hcd: stop threads
[  173.908840][ T6954] vhci_hcd: release socket
[  173.911149][ T6954] vhci_hcd: disconnect device
[  173.919072][ T9370] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  173.975624][ T2399] pvrusb2: control-write URB failure, status=-71
[  173.978287][ T2399] pvrusb2: Device being rendered inoperable
[  173.985596][ T2399] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  173.993051][ T2399] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  174.244150][ T9387] bridge0: port 3(ipvlan2) entered blocking state
[  174.246545][ T9387] bridge0: port 3(ipvlan2) entered disabled state
[  174.249005][ T9387] ipvlan2: entered allmulticast mode
[  174.250691][ T9387] bridge0: entered allmulticast mode
[  174.253418][ T9387] ipvlan2: left allmulticast mode
[  174.255297][ T9387] bridge0: left allmulticast mode
[  174.436314][ T9399] netlink: 'syz.4.1247': attribute type 9 has an invalid length.
[  174.443467][ T9399] netlink: 'syz.4.1247': attribute type 6 has an invalid length.
[  174.487480][ T9401] netlink: 'syz.4.1249': attribute type 7 has an invalid length.
[  174.505031][ T9401] : entered promiscuous mode
[  174.607792][  T793] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  174.727816][   T47] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  174.746697][ T9425] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci2/hci2:200/input13
[  174.768432][  T793] usb 1-1: Using ep0 maxpacket: 16
[  174.776272][  T793] usb 1-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice=10.00
[  174.784274][  T793] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  174.788580][  T793] usb 1-1: Product: syz
[  174.792463][  T793] usb 1-1: Manufacturer: syz
[  174.795168][  T793] usb 1-1: SerialNumber: syz
[  174.799274][  T793] usb 1-1: config 0 descriptor??
[  174.803303][  T793] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[  174.807220][  T793] usb 1-1: Detected FT-X
[  174.878160][   T47] usb 2-1: Using ep0 maxpacket: 32
[  174.884428][   T47] usb 2-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  174.893673][   T47] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE3, changing to 0x83
[  174.908745][   T47] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 33307, setting to 1024
[  174.924657][   T47] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 1024
[  174.929287][   T47] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  174.933280][   T47] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  174.937214][   T47] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  174.944365][ T9432] loop4: detected capacity change from 0 to 1024
[  174.944561][   T47] usb 2-1: config 0 interface 0 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3
[  174.955103][   T47] usb 2-1: New USB device found, idVendor=072f, idProduct=2200, bcdDevice=3f.bf
[  174.963914][   T47] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  174.967436][   T47] usb 2-1: Product: syz
[  174.969424][   T47] usb 2-1: Manufacturer: syz
[  174.971452][   T47] usb 2-1: SerialNumber: syz
[  174.975672][   T47] usb 2-1: config 0 descriptor??
[  174.981241][ T9403] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  174.986356][   T47] usb 2-1: NFC: Reader power on cmd error -90
[  174.989192][   T47] pn533_usb 2-1:0.0: NFC: Couldn't poweron the reader (error -90)
[  174.990167][ T9432] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  174.992421][   T47] pn533_usb 2-1:0.0: probe with driver pn533_usb failed with error -90
[  175.008377][  T793] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  175.057645][ T8760] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.214806][   T47] usb 2-1: USB disconnect, device number 23
[  175.220063][  T793] ftdi_sio 1-1:0.0: GPIO initialisation failed: -71
[  175.229755][  T793] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  175.240858][  T793] usb 1-1: USB disconnect, device number 17
[  175.249558][  T793] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  175.253716][  T793] ftdi_sio 1-1:0.0: device disconnected
[  175.447464][ T9442] loop4: detected capacity change from 0 to 40427
[  175.454876][ T9442] F2FS-fs (loop4): Image doesn't support compression
[  175.458460][ T9442] F2FS-fs (loop4): invalid crc value
[  175.463556][ T9442] F2FS-fs (loop4): SIT is corrupted node# 2 vs 7
[  175.472115][ T9442] F2FS-fs (loop4): Failed to initialize F2FS segment manager (-117)
[  175.765320][ T9455] netlink: 'syz.1.1269': attribute type 1 has an invalid length.
[  175.768658][ T9455] netlink: 228 bytes leftover after parsing attributes in process `syz.1.1269'.
[  175.911605][   T33] audit: type=1326 audit(1755255625.946:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9452 comm="syz.0.1270" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9e24f8ebe9 code=0x0
[  176.384308][ T9460] syz.4.1268 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  176.730878][ T9467] loop4: detected capacity change from 0 to 1024
[  176.766380][ T9467] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  176.824764][ T8760] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.079409][ T9478] loop4: detected capacity change from 0 to 32768
[  177.086002][ T9478] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1278 (9478)
[  177.110995][ T9478] BTRFS info (device loop4): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  177.115412][ T9478] BTRFS info (device loop4): using crc32c (crc32c-lib) checksum algorithm
[  177.119849][ T9478] BTRFS info (device loop4): using free-space-tree
[  177.214260][ T8760] BTRFS info (device loop4): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  177.841027][ T9507] loop4: detected capacity change from 0 to 40427
[  177.845152][ T9507] F2FS-fs (loop4): Corrupted extension count (64 + 1 > 64)
[  177.848684][ T9507] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  177.957236][ T9507] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  177.964522][ T9507] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  177.967285][ T9507] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  178.464039][ T9523] loop4: detected capacity change from 0 to 32768
[  178.512049][ T9523] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,nochanges,nojournal_transaction_names,read_only,version_upgrade=none
[  178.512070][ T9523]   allowing incompatible features above 0.0: (unknown version)
[  178.512077][ T9523]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  178.531260][ T9523] bcachefs (loop4): Using encoding defined by superblock: utf8-12.1.0
[  178.534583][ T9523] bcachefs (loop4): recovering from clean shutdown, journal seq 13
[  178.538029][   T10] vhci_hcd: vhci_device speed not set
[  178.555512][ T9523] bcachefs (loop4): accounting_read... done
[  178.558789][ T9523] bcachefs (loop4): alloc_read... done
[  178.561388][ T9523] bcachefs (loop4): snapshots_read... done
[  178.567465][ T9523] bcachefs (loop4): journal_replay... done
[  178.570865][ T9523] bcachefs (loop4): resume_logged_ops... done
[  178.573799][ T9523] bcachefs (loop4): delete_dead_inodes... done
[  178.577502][ T9523] bcachefs (loop4): done starting filesystem
[  178.640409][ T8760] bcachefs (loop4): shutting down
[  178.658394][ T8760] bcachefs (loop4): shutdown complete
[  180.044392][ T9540] loop4: detected capacity change from 0 to 128
[  180.189793][ T9532] loop1: detected capacity change from 0 to 32768
[  180.294557][ T5913] usb 1-1: new full-speed USB device number 18 using dummy_hcd
[  180.369052][ T9542] loop4: detected capacity change from 0 to 1024
[  180.376610][ T9542] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  180.463073][ T5913] usb 1-1: config 0 has an invalid interface number: 20 but max is 0
[  180.466714][ T5913] usb 1-1: config 0 has no interface number 0
[  180.471594][ T5913] usb 1-1: config 0 interface 20 altsetting 0 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[  180.479215][ T5913] usb 1-1: New USB device found, idVendor=04e6, idProduct=000b, bcdDevice= 1.00
[  180.482962][ T5913] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  180.486573][ T5913] usb 1-1: Product: syz
[  180.490922][ T5913] usb 1-1: Manufacturer: syz
[  180.492916][ T5913] usb 1-1: SerialNumber: syz
[  180.500059][ T5913] usb 1-1: config 0 descriptor??
[  180.502924][ T9536] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  180.512522][ T5913] usb-storage 1-1:0.20: USB Mass Storage device detected
[  180.522925][ T5913] usb-storage 1-1:0.20: Quirks match for vid 04e6 pid 000b: 4
[  180.721460][ T5913] scsi host6: usb-storage 1-1:0.20
[  180.748926][ T5913] usb 1-1: USB disconnect, device number 18
[  180.931646][ T9561] loop4: detected capacity change from 0 to 1024
[  180.936315][ T9561] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  180.953735][ T9561] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[  180.964136][ T9561] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  180.969177][ T9549] loop1: detected capacity change from 0 to 40427
[  180.972305][ T9561] EXT4-fs error (device loop4): ext4_get_journal_inode:5796: inode #5: comm syz.4.1303: unexpected bad inode w/o EXT4_IGET_BAD
[  180.981775][ T9549] F2FS-fs (loop1): Small segment_count (9 < 1 * 24)
[  180.987064][ T9549] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  180.993312][ T9561] EXT4-fs (loop4): no journal found
[  180.996104][ T9561] EXT4-fs (loop4): can't get journal size
[  181.018483][ T9561] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  181.069538][ T8760] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.072311][ T9549] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  181.085568][ T9549] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  181.093511][ T9549] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  181.171866][ T5851] syz-executor: attempt to access beyond end of device
[  181.171866][ T5851] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  181.177645][ T5851] CPU: 1 UID: 0 PID: 5851 Comm: syz-executor Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  181.177664][ T5851] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  181.177671][ T5851] Call Trace:
[  181.177675][ T5851]  <TASK>
[  181.177700][ T5851]  dump_stack_lvl+0x189/0x250
[  181.177723][ T5851]  ? __pfx_dump_stack_lvl+0x10/0x10
[  181.177735][ T5851]  ? __pfx_queue_work_on+0x10/0x10
[  181.177746][ T5851]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  181.177761][ T5851]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  181.177784][ T5851]  f2fs_handle_critical_error+0x37c/0x540
[  181.177805][ T5851]  f2fs_write_end_io+0x886/0xb60
[  181.177863][ T5851]  __submit_merged_bio+0x27a/0x6a0
[  181.177886][ T5851]  __submit_merged_write_cond+0x255/0x530
[  181.177906][ T5851]  f2fs_write_data_pages+0x261d/0x3000
[  181.177951][ T5851]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  181.178007][ T5851]  ? __lock_acquire+0xab9/0xd20
[  181.178051][ T5851]  ? __lock_acquire+0xab9/0xd20
[  181.178080][ T5851]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  181.178095][ T5851]  do_writepages+0x32e/0x550
[  181.178119][ T5851]  ? do_raw_spin_unlock+0x4d/0x240
[  181.178135][ T5851]  filemap_fdatawrite+0x199/0x240
[  181.178151][ T5851]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  181.178203][ T5851]  ? do_raw_spin_unlock+0x4d/0x240
[  181.178220][ T5851]  f2fs_sync_dirty_inodes+0x31f/0x830
[  181.178243][ T5851]  f2fs_write_checkpoint+0x95a/0x1df0
[  181.178273][ T5851]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  181.178276][ T9568] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1305'.
[  181.178319][ T5851]  ? call_rcu+0x6ff/0x9c0
[  181.178330][ T5851]  ? lockdep_hardirqs_on+0x9c/0x150
[  181.178343][ T5851]  ? kill_f2fs_super+0x298/0x6c0
[  181.178358][ T5851]  kill_f2fs_super+0x2c3/0x6c0
[  181.178374][ T5851]  ? __pfx_kill_f2fs_super+0x10/0x10
[  181.178382][ T5851]  ? radix_tree_delete_item+0x2b6/0x400
[  181.178402][ T5851]  ? shrinker_free+0x2ce/0x3e0
[  181.178415][ T5851]  deactivate_locked_super+0xbc/0x130
[  181.178432][ T5851]  cleanup_mnt+0x425/0x4c0
[  181.178445][ T5851]  ? lockdep_hardirqs_on+0x9c/0x150
[  181.178460][ T5851]  task_work_run+0x1d4/0x260
[  181.178476][ T5851]  ? __pfx_task_work_run+0x10/0x10
[  181.178488][ T5851]  ? __x64_sys_umount+0x122/0x160
[  181.178504][ T5851]  ? exit_to_user_mode_loop+0x40/0x110
[  181.178522][ T5851]  exit_to_user_mode_loop+0xec/0x110
[  181.178536][ T5851]  do_syscall_64+0x2bd/0x3b0
[  181.178548][ T5851]  ? lockdep_hardirqs_on+0x9c/0x150
[  181.178560][ T5851]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  181.178571][ T5851]  ? exc_page_fault+0x9f/0xf0
[  181.178585][ T5851]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  181.178595][ T5851] RIP: 0033:0x7faf1eb8ff17
[  181.178606][ T5851] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  181.178615][ T5851] RSP: 002b:00007fff68169ab8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  181.178628][ T5851] RAX: 0000000000000000 RBX: 00007faf1ec11c05 RCX: 00007faf1eb8ff17
[  181.178634][ T5851] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff68169b70
[  181.178640][ T5851] RBP: 00007fff68169b70 R08: 0000000000000000 R09: 0000000000000000
[  181.178646][ T5851] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff6816ac00
[  181.178653][ T5851] R13: 00007faf1ec11c05 R14: 000000000002c32c R15: 00007fff6816ac40
[  181.178675][ T5851]  </TASK>
[  181.181402][ T5851] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  182.217028][ T9572] loop0: detected capacity change from 0 to 131072
[  182.224771][ T9572] F2FS-fs (loop0): Test dummy encryption mode enabled
[  182.229305][ T9572] F2FS-fs (loop0): invalid crc value
[  182.268730][ T9572] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  182.279898][ T9572] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  182.549158][ T9591] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1314'.
[  182.553805][ T9591] IPVS: Error connecting to the multicast addr
[  182.670985][ T9595] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  182.954920][ T9607] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  183.051868][ T5913] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  183.057299][ T9611] loop1: detected capacity change from 0 to 512
[  183.113292][ T9611] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  183.119033][ T9611] ext4 filesystem being mounted at /489/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  183.172221][ T5851] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.221549][ T5913] usb 5-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.04
[  183.224833][ T5913] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  183.229568][ T5913] usb 5-1: config 0 descriptor??
[  183.484570][ T5913] go7007 5-1:0.0: probe with driver go7007 failed with error -12
[  183.495899][ T6235] usb 5-1: USB disconnect, device number 5
[  183.657583][ T9623] loop1: detected capacity change from 0 to 32768
[  183.675714][   T33] audit: type=1800 audit(1755255633.716:45): pid=9623 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1326" name="file1" dev="loop1" ino=4 res=0 errno=0
[  183.680828][ T9623] ERROR: (device loop1): dbAllocBits: leaf page corrupt
[  183.680828][ T9623] 
[  183.686782][ T9623] ERROR: (device loop1): remounting filesystem as read-only
[  183.691732][ T9623] syz.1.1326: attempt to access beyond end of device
[  183.691732][ T9623] loop1: rw=34817, sector=4680704, nr_sectors = 792 limit=32768
[  183.702179][ T9623] blkno = 8ed80, nblocks = 63
[  183.704455][ T9623] ERROR: (device loop1): dbFree: block to be freed is outside the map
[  183.704455][ T9623] 
[  184.006429][ T9631] loop0: detected capacity change from 0 to 512
[  184.009545][ T9627] loop1: detected capacity change from 0 to 32768
[  184.050156][ T9631] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  184.053777][ T9631] EXT4-fs (loop0): orphan cleanup on readonly fs
[  184.059081][ T9631] Quota error (device loop0): v2_read_file_info: Block with free entry 4294967071 out of range (1, 6).
[  184.066008][ T9631] EXT4-fs warning (device loop0): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  184.073406][ T9627] (syz.1.1328,9627,0):ocfs2_journal_init:961 ERROR: Journal file size (0) is too small!
[  184.079852][ T9627] (syz.1.1328,9627,0):ocfs2_check_volume:2347 ERROR: Could not initialize journal!
[  184.083200][ T9627] (syz.1.1328,9627,0):ocfs2_check_volume:2432 ERROR: status = -22
[  184.088900][ T9631] EXT4-fs (loop0): Cannot turn on quotas: error -117
[  184.091636][ T9627] (syz.1.1328,9627,0):ocfs2_mount_volume:1764 ERROR: status = -22
[  184.103471][ T9631] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1330: bg 0: block 40: padding at end of block bitmap is not set
[  184.103517][ T9627] (syz.1.1328,9627,1):ocfs2_fill_super:1177 ERROR: status = -22
[  184.121109][ T9631] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  184.128625][ T9631] EXT4-fs (loop0): 1 truncate cleaned up
[  184.149194][ T9631] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  184.239599][ T5847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.514875][ T9637] loop4: detected capacity change from 0 to 32768
[  184.528870][ T9637] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1332 (9637)
[  184.548042][ T9637] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  184.567382][ T9637] BTRFS info (device loop4): using crc32c (crc32c-lib) checksum algorithm
[  184.585663][ T9637] BTRFS info (device loop4): using free-space-tree
[  184.837373][ T8760] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  184.924722][ T9675] loop0: detected capacity change from 0 to 128
[  184.929442][ T9675] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  185.537914][  T794] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  185.718073][  T794] usb 5-1: Using ep0 maxpacket: 16
[  185.747968][ T5850] Bluetooth: hci1: command 0x0406 tx timeout
[  185.819638][  T794] usb 5-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  185.829149][  T794] usb 5-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  185.836974][  T794] usb 5-1: Product: syz
[  185.841151][  T794] usb 5-1: Manufacturer: syz
[  185.845398][  T794] usb 5-1: SerialNumber: syz
[  185.856256][  T794] usb 5-1: config 0 descriptor??
[  185.975227][ T9690] loop1: detected capacity change from 0 to 1024
[  186.017980][ T9073] hfsplus: b-tree write err: -5, ino 4
[  186.113585][ T5913] usb 5-1: USB disconnect, device number 6
[  186.369867][ T9703] loop0: detected capacity change from 0 to 1024
[  186.373302][ T9703] EXT4-fs (loop0): Test dummy encryption mode enabled
[  186.410963][ T9703] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  186.642238][ T9703] fscrypt: AES-256-XTS using implementation "xts(ecb(aes-fixed-time))"
[  186.677041][ T5847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.935515][ T9715] loop0: detected capacity change from 0 to 4096
[  186.962594][ T9715] NILFS (loop0): mounting unchecked fs
[  186.971869][ T9715] NILFS (loop0): recovery required for readonly filesystem
[  186.978477][ T9715] NILFS (loop0): write access will be enabled during recovery
[  187.002600][ T9715] NILFS (loop0): invalid segment: Checksum error in segment payload
[  187.010137][ T9715] NILFS (loop0): trying rollback from an earlier position
[  187.183343][ T9715] NILFS (loop0): norecovery option specified, skipping roll-forward recovery
[  187.519585][ T9727] loop0: detected capacity change from 0 to 736
[  188.000381][ T9738] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1366'.
[  188.164692][ T9742] Bluetooth: hci0: Opcode 0x0c1a failed: -22
[  188.201565][ T9733] loop4: detected capacity change from 0 to 32768
[  188.204599][ T9733] XFS: ikeep mount option is deprecated.
[  188.243615][ T9733] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  188.312903][ T9733] XFS (loop4): Ending clean mount
[  188.317332][ T9733] XFS (loop4): Quotacheck needed: Please wait.
[  188.336081][ T9733] XFS (loop4): Quotacheck: Done.
[  188.403372][ T8760] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  189.032132][ T9770] loop1: detected capacity change from 0 to 512
[  189.039504][ T9770] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  189.044841][ T9770] EXT4-fs (loop1): orphan cleanup on readonly fs
[  189.051078][ T9770] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  189.066948][ T9770] EXT4-fs (loop1): Cannot turn on quotas: error -22
[  189.082049][ T9770] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #16: comm syz.1.1376: invalid fast symlink length 9000
[  189.086254][ T9770] EXT4-fs (loop1): Remounting filesystem read-only
[  189.090327][ T9770] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  189.129931][ T5851] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.198376][ T9775] loop4: detected capacity change from 0 to 4096
[  189.215675][ T9777] openvswitch: netlink: VXLAN extension 11 out of range max 1
[  189.254673][ T9779] loop1: detected capacity change from 0 to 512
[  189.300204][ T9775] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  189.313237][ T9781] loop0: detected capacity change from 0 to 64
[  189.722857][  T794] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  189.728171][ T6235] usb 2-1: new full-speed USB device number 24 using dummy_hcd
[  189.887952][  T794] usb 1-1: Using ep0 maxpacket: 32
[  189.893609][ T6235] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  189.899889][  T794] usb 1-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[  189.903802][ T6235] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10
[  189.909195][  T794] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  189.913843][ T6235] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 255, setting to 64
[  189.919310][  T794] usb 1-1: config 0 descriptor??
[  189.921726][ T6235] usb 2-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  189.925764][ T6235] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  189.933206][  T794] gspca_main: sunplus-2.14.0 probing 041e:400b
[  189.937225][ T6235] usb 2-1: config 0 descriptor??
[  189.939989][ T9791] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  189.947458][ T6235] hub 2-1:0.0: bad descriptor, ignoring hub
[  189.949732][ T6235] hub 2-1:0.0: probe with driver hub failed with error -5
[  189.998472][ T5314] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  190.149795][ T5314] usb 5-1: Using ep0 maxpacket: 8
[  190.154322][ T5314] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  190.158919][ T5314] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  190.163033][ T5314] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  190.167201][ T5314] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  190.174547][ T5314] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  190.178911][ T5314] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.227964][   T55] Bluetooth: hci0: command tx timeout
[  190.363758][ T6235] elan 0003:04F3:0755.0008: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.1-1/input0
[  190.392283][ T5314] usb 5-1: GET_CAPABILITIES returned 0
[  190.394518][ T5314] usbtmc 5-1:16.0: can't read capabilities
[  190.562732][ T5314] usb 2-1: USB disconnect, device number 24
[  190.603103][ T6235] usb 5-1: USB disconnect, device number 7
[  190.937635][  T794] gspca_sunplus: reg_w_riv err -71
[  190.940753][  T794] sunplus 1-1:0.0: probe with driver sunplus failed with error -71
[  190.948202][  T794] usb 1-1: USB disconnect, device number 19
[  191.315076][ T9820] batadv_slave_0: entered promiscuous mode
[  191.320188][ T9820] batadv_slave_0: left promiscuous mode
[  191.541873][ T9826] loop1: detected capacity change from 0 to 2048
[  191.561503][ T9826] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  191.609866][ T6206] udevd[6206]: incorrect nilfs2 checksum on /dev/loop1
[  191.645996][ T6206] udevd[6206]: incorrect nilfs2 checksum on /dev/loop1
[  191.659196][ T9829] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  192.687853][  T794] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  192.707467][ T9852] bond0: option lp_interval: invalid value (0)
[  192.723444][ T9852] bond0: option lp_interval: allowed values 1 - 2147483647
[  192.812284][ T9854] loop4: detected capacity change from 0 to 2048
[  192.820263][ T9854] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  192.910769][  T794] usb 1-1: Using ep0 maxpacket: 32
[  192.936245][  T794] usb 1-1: config 0 has an invalid interface number: 196 but max is 0
[  192.939334][  T794] usb 1-1: config 0 has no interface number 0
[  192.941451][  T794] usb 1-1: config 0 interface 196 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 528
[  192.944798][  T794] usb 1-1: config 0 interface 196 has no altsetting 0
[  192.955175][  T794] usb 1-1: New USB device found, idVendor=05ac, idProduct=77c2, bcdDevice=eb.3a
[  192.958913][  T794] usb 1-1: New USB device strings: Mfr=1, Product=226, SerialNumber=3
[  192.961954][  T794] usb 1-1: Product: syz
[  192.963444][  T794] usb 1-1: Manufacturer: syz
[  192.964949][  T794] usb 1-1: SerialNumber: syz
[  192.975709][  T794] usb 1-1: config 0 descriptor??
[  192.980420][ T9846] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  193.402862][ T9866] loop1: detected capacity change from 0 to 8
[  193.652469][  T794] ipheth 1-1:0.196: ipheth_enable_ncm: usb_control_msg: 0
[  193.670687][  T794] ipheth 1-1:0.196: Apple iPhone USB Ethernet device attached
[  193.878948][ T5314] usb 1-1: USB disconnect, device number 20
[  193.914657][ T1365] ieee802154 phy1 wpan1: encryption failed: -22
[  193.980349][ T5314] ipheth 1-1:0.196: Apple iPhone USB Ethernet now disconnected
[  194.050038][ T9893] netlink: 'syz.1.1430': attribute type 4 has an invalid length.
[  194.071743][ T6954] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  194.080249][ T6954] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  194.083288][ T6954] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  194.105018][ T6954] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  194.164520][ T9905] loop4: detected capacity change from 0 to 512
[  194.177432][ T9905] EXT4-fs: Ignoring removed i_version option
[  194.185478][ T9905] EXT4-fs: Ignoring removed mblk_io_submit option
[  194.201435][ T9905] EXT4-fs (loop4): Test dummy encryption mode enabled
[  194.220244][ T9905] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c018, mo2=0103]
[  194.227491][ T9905] EXT4-fs error (device loop4): ext4_orphan_get:1392: comm syz.4.1434: inode #13: comm syz.4.1434: iget: illegal inode #
[  194.244547][ T9905] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.1434: couldn't read orphan inode 13 (err -117)
[  194.253486][ T9905] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  194.263937][ T9905] EXT4-fs (loop4): shut down requested (1)
[  194.291869][ T8760] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.378204][ T5898] kernel read not supported for file /input/event1 (pid: 5898 comm: kworker/1:3)
[  194.457880][ T9922] loop1: detected capacity change from 0 to 1024
[  194.461334][ T9922] EXT4-fs: Ignoring removed nomblk_io_submit option
[  194.468861][ T9922] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  194.478057][ T9922] EXT4-fs (loop1): stripe (3675) is not aligned with cluster size (16), stripe is disabled
[  194.489270][ T9922] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  194.571970][ T9928] netlink: 'syz.4.1442': attribute type 13 has an invalid length.
[  194.592395][ T5851] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.672408][ T9928] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  194.678810][ T5314] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  194.829756][ T5314] usb 1-1: Using ep0 maxpacket: 16
[  194.834147][ T5314] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 65, using maximum allowed: 30
[  194.838745][ T5314] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  194.842833][ T5314] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 65
[  194.853014][ T5314] usb 1-1: New USB device found, idVendor=1e71, idProduct=2006, bcdDevice= 0.00
[  194.856894][ T5314] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.866206][ T5314] usb 1-1: config 0 descriptor??
[  195.010074][ T5898] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  195.158442][ T5898] usb 2-1: Using ep0 maxpacket: 32
[  195.161672][ T5898] usb 2-1: config 0 has an invalid interface number: 23 but max is 0
[  195.164449][ T5898] usb 2-1: config 0 has no interface number 0
[  195.166486][ T5898] usb 2-1: config 0 interface 23 has no altsetting 0
[  195.171148][ T5898] usb 2-1: New USB device found, idVendor=0557, idProduct=2002, bcdDevice=b6.ad
[  195.174440][ T5898] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  195.177382][ T5898] usb 2-1: Product: syz
[  195.179245][ T5898] usb 2-1: Manufacturer: syz
[  195.181117][ T5898] usb 2-1: SerialNumber: syz
[  195.184039][ T5898] usb 2-1: config 0 descriptor??
[  195.280297][ T5314] nzxt-smart2 0003:1E71:2006.0009: item fetching failed at offset 10/11
[  195.283443][ T5314] nzxt-smart2 0003:1E71:2006.0009: probe with driver nzxt-smart2 failed with error -22
[  195.288122][  T794] usb 5-1: new full-speed USB device number 8 using dummy_hcd
[  195.389854][ T9936] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  195.396136][ T9936] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  195.411342][ T5898] kaweth 2-1:0.23: Firmware present in device.
[  195.414398][ T5898] kaweth 2-1:0.23: Error reading configuration (-71), no net device created
[  195.418848][ T5898] kaweth 2-1:0.23: probe with driver kaweth failed with error -5
[  195.425271][ T5898] usb 2-1: USB disconnect, device number 25
[  195.439808][  T794] usb 5-1: config 7 has an invalid interface number: 192 but max is 0
[  195.443214][  T794] usb 5-1: config 7 has no interface number 0
[  195.445848][  T794] usb 5-1: config 7 interface 192 altsetting 7 endpoint 0x1 has invalid wMaxPacketSize 0
[  195.449542][  T794] usb 5-1: config 7 interface 192 has no altsetting 0
[  195.454170][  T794] usb 5-1: New USB device found, idVendor=09fb, idProduct=ebbe, bcdDevice=d4.8d
[  195.457565][  T794] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  195.461764][  T794] usb 5-1: Product: syz
[  195.463349][  T794] usb 5-1: Manufacturer: syz
[  195.464930][  T794] usb 5-1: SerialNumber: syz
[  195.483090][ T5314] usb 1-1: USB disconnect, device number 21
[  195.684553][  T794] usb 5-1: USB disconnect, device number 8
[  196.190404][ T9954] cgroup: fork rejected by pids controller in /syz1
[  196.492481][   T33] audit: type=1326 audit(1755255646.536:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9962 comm="syz.4.1458" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fda45f8ebe9 code=0x0
[  196.717966][ T5314] usb 1-1: new full-speed USB device number 22 using dummy_hcd
[  196.872051][ T5314] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  196.875839][ T5314] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  196.880643][ T5314] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66
[  196.884479][ T5314] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  196.893663][ T5314] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  196.897632][ T5314] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  196.901615][ T5314] usb 1-1: Product: syz
[  196.903352][ T5314] usb 1-1: Manufacturer: syz
[  196.911850][ T5314] cdc_wdm 1-1:1.0: invalid descriptor buffer length
[  196.914918][ T5314] cdc_wdm 1-1:1.0: probe with driver cdc_wdm failed with error -22
[  197.120328][ T6235] usb 1-1: USB disconnect, device number 22
[  197.181154][ T5876] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  197.265035][ T5876] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  197.324366][ T5876] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  197.420898][ T5876] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  197.443500][ T5850] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  197.447416][ T5850] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  197.452423][ T5850] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  197.455788][ T5850] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  197.461669][ T5850] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  197.578019][ T5876] bridge_slave_1: left allmulticast mode
[  197.581466][ T5876] bridge_slave_1: left promiscuous mode
[  197.585241][ T5876] bridge0: port 2(bridge_slave_1) entered disabled state
[  197.591078][ T5876] bridge_slave_0: left allmulticast mode
[  197.593513][ T5876] bridge_slave_0: left promiscuous mode
[  197.596010][ T5876] bridge0: port 1(bridge_slave_0) entered disabled state
[  197.637863][ T5314] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  197.801614][ T5314] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  197.806123][ T5314] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  197.813641][ T9977] loop0: detected capacity change from 0 to 736
[  197.818919][ T5314] usb 5-1: New USB device found, idVendor=0079, idProduct=1846, bcdDevice= 0.00
[  197.822665][ T5314] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  197.848192][ T5314] usb 5-1: config 0 descriptor??
[  198.078706][ T5876] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  198.084270][ T5876] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  198.091890][ T5876] bond0 (unregistering): (slave macvlan2): Releasing backup interface
[  198.096478][ T5876] veth1_vlan: left allmulticast mode
[  198.100997][ T5876] bond0 (unregistering): Released all slaves
[  198.296699][ T5314] hid_mf 0003:0079:1846.000A: hidraw0: USB HID v0.00 Device [HID 0079:1846] on usb-dummy_hcd.4-1/input0
[  198.320445][ T5314] hid_mf 0003:0079:1846.000A: Force feedback for HJZ Mayflash game controller adapters by Marcel Hasler <mahasler@gmail.com>
[  198.385907][ T9969] chnl_net:caif_netlink_parms(): no params data found
[  198.484134][ T5314] usb 5-1: USB disconnect, device number 9
[  198.586319][ T9969] bridge0: port 1(bridge_slave_0) entered blocking state
[  198.594931][ T9969] bridge0: port 1(bridge_slave_0) entered disabled state
[  198.601450][ T9969] bridge_slave_0: entered allmulticast mode
[  198.605248][ T9969] bridge_slave_0: entered promiscuous mode
[  198.611373][ T9969] bridge0: port 2(bridge_slave_1) entered blocking state
[  198.614324][ T9969] bridge0: port 2(bridge_slave_1) entered disabled state
[  198.620733][ T9969] bridge_slave_1: entered allmulticast mode
[  198.633967][ T9969] bridge_slave_1: entered promiscuous mode
[  198.646895][ T5876] hsr_slave_0: left promiscuous mode
[  198.650712][ T5876] hsr_slave_1: left promiscuous mode
[  198.653469][ T5876] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  198.656592][ T5876] batman_adv: batadv0: Removing interface: batadv_slave_0
[  198.663466][ T5876] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  198.666627][ T5876] batman_adv: batadv0: Removing interface: batadv_slave_1
[  198.685957][ T5876] veth1_macvtap: left promiscuous mode
[  198.691214][ T5876] veth1_vlan: left promiscuous mode
[  199.156619][ T5876] team0 (unregistering): Port device team_slave_1 removed
[  199.199473][ T5876] team0 (unregistering): Port device team_slave_0 removed
[  199.203718][T10007] loop4: detected capacity change from 0 to 32768
[  199.517869][ T5850] Bluetooth: hci1: command tx timeout
[  199.829096][ T9969] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  199.843128][ T9969] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  199.911180][ T9969] team0: Port device team_slave_0 added
[  199.914315][ T9969] team0: Port device team_slave_1 added
[  199.968622][ T9969] batman_adv: batadv0: Adding interface: batadv_slave_0
[  199.971966][ T9969] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  199.989228][ T9969] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  200.001387][ T9969] batman_adv: batadv0: Adding interface: batadv_slave_1
[  200.004407][ T9969] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  200.015817][ T9969] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  200.093328][ T9969] hsr_slave_0: entered promiscuous mode
[  200.102708][ T9969] hsr_slave_1: entered promiscuous mode
[  200.105358][ T9969] debugfs: 'hsr0' already exists in 'hsr'
[  200.107276][ T9969] Cannot create hsr debugfs directory
[  200.292476][T10034] tap0: tun_chr_ioctl cmd 2147767521
[  200.723075][T10059] loop4: detected capacity change from 0 to 256
[  200.742381][T10059] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  200.937583][ T5913] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  201.045399][ T9969] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  201.056656][ T9969] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  201.064314][ T9969] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  201.080439][ T9969] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  201.099956][ T5913] usb 1-1: Using ep0 maxpacket: 8
[  201.110778][ T5913] usb 1-1: New USB device found, idVendor=2770, idProduct=9120, bcdDevice=6c.77
[  201.114470][ T5913] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  201.123731][ T5913] usb 1-1: Product: syz
[  201.126291][ T5913] usb 1-1: Manufacturer: syz
[  201.133153][ T5913] usb 1-1: SerialNumber: syz
[  201.137113][ T5913] usb 1-1: config 0 descriptor??
[  201.163650][ T5913] gspca_main: sq905-2.14.0 probing 2770:9120
[  201.221370][ T9969] 8021q: adding VLAN 0 to HW filter on device bond0
[  201.242160][ T9969] 8021q: adding VLAN 0 to HW filter on device team0
[  201.250466][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[  201.253394][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[  201.274448][ T5097] bridge0: port 2(bridge_slave_1) entered blocking state
[  201.277455][ T5097] bridge0: port 2(bridge_slave_1) entered forwarding state
[  201.490358][ T5314] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  201.545800][ T9969] 8021q: adding VLAN 0 to HW filter on device batadv0
[  201.571496][ T5913] gspca_sq905: sq905_command: usb_control_msg failed 2 (-71)
[  201.580326][ T5913] sq905 1-1:0.0: probe with driver sq905 failed with error -71
[  201.588323][ T5850] Bluetooth: hci1: command tx timeout
[  201.596439][ T5913] usb 1-1: USB disconnect, device number 23
[  201.637306][ T9969] veth0_vlan: entered promiscuous mode
[  201.646720][ T9969] veth1_vlan: entered promiscuous mode
[  201.651598][ T5314] usb 5-1: Using ep0 maxpacket: 16
[  201.655668][ T5314] usb 5-1: config 0 has an invalid interface number: 157 but max is 0
[  201.667934][ T5314] usb 5-1: config 0 has no interface number 0
[  201.670730][ T5314] usb 5-1: config 0 interface 157 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[  201.690585][ T5314] usb 5-1: config 0 interface 157 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  201.702448][ T5314] usb 5-1: New USB device found, idVendor=058f, idProduct=9720, bcdDevice=fb.74
[  201.706257][ T5314] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  201.710547][ T9969] veth0_macvtap: entered promiscuous mode
[  201.713951][ T5314] usb 5-1: Product: syz
[  201.715695][ T5314] usb 5-1: Manufacturer: syz
[  201.717599][ T5314] usb 5-1: SerialNumber: syz
[  201.720906][ T9969] veth1_macvtap: entered promiscuous mode
[  201.737542][ T9969] batman_adv: batadv0: Interface activated: batadv_slave_0
[  201.740801][ T5314] usb 5-1: config 0 descriptor??
[  201.743363][T10085] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  201.746264][T10085] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  201.756232][ T5314] pl2303 5-1:0.157: required interrupt-in endpoint missing
[  201.760935][ T9969] batman_adv: batadv0: Interface activated: batadv_slave_1
[  201.782481][ T5860] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  201.793456][ T5860] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  201.802564][ T5860] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  201.806013][ T5860] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  201.890184][ T5097] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  201.893733][ T5097] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  201.923695][ T9071] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  201.927080][ T9071] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  201.977164][ T5913] usb 5-1: USB disconnect, device number 10
[  202.145838][T10115] loop1: detected capacity change from 0 to 4096
[  202.149587][T10115] ntfs3(loop1): Different NTFS sector size (2048) and media sector size (512).
[  202.353152][T10126] loop0: detected capacity change from 0 to 1024
[  202.356246][T10126] EXT4-fs: Ignoring removed orlov option
[  202.378205][T10126] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  202.395952][T10126] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  202.430354][ T5847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.553466][T10127] loop1: detected capacity change from 0 to 32768
[  202.591994][   T33] audit: type=1800 audit(1755255652.636:47): pid=10127 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1504" name="file1" dev="loop1" ino=4 res=0 errno=0
[  203.463421][T10175] loop1: detected capacity change from 0 to 1024
[  203.470287][T10175] EXT4-fs: Ignoring removed nobh option
[  203.516782][T10175] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  203.667906][ T5850] Bluetooth: hci1: command tx timeout
[  204.192265][   T33] audit: type=1326 audit(1755255654.236:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10183 comm="syz.0.1526" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e24f8ebe9 code=0x7ffc0000
[  204.255191][T10184] netlink: 'syz.0.1526': attribute type 6 has an invalid length.
[  204.271735][   T33] audit: type=1326 audit(1755255654.246:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10183 comm="syz.0.1526" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e24f8ebe9 code=0x7ffc0000
[  204.285948][T10184] netlink: 168 bytes leftover after parsing attributes in process `syz.0.1526'.
[  204.393211][   T33] audit: type=1326 audit(1755255654.276:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10183 comm="syz.0.1526" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9e24f8ebe9 code=0x7ffc0000
[  204.470656][   T33] audit: type=1326 audit(1755255654.286:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10183 comm="syz.0.1526" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e24f8ebe9 code=0x7ffc0000
[  204.535057][   T33] audit: type=1326 audit(1755255654.286:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10183 comm="syz.0.1526" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e24f8ebe9 code=0x7ffc0000
[  204.578438][   T33] audit: type=1326 audit(1755255654.286:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10183 comm="syz.0.1526" exe="/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f9e24f8ebe9 code=0x7ffc0000
[  204.582845][T10190] loop4: detected capacity change from 0 to 1024
[  204.592626][   T33] audit: type=1326 audit(1755255654.376:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10183 comm="syz.0.1526" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e24f8ebe9 code=0x7ffc0000
[  204.609208][   T33] audit: type=1326 audit(1755255654.376:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10183 comm="syz.0.1526" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e24f8ebe9 code=0x7ffc0000
[  204.623182][T10190] hfsplus: small dir entry
[  205.017612][T10203] usb usb8: usbfs: process 10203 (syz.0.1535) did not claim interface 1 before use
[  205.535160][ T9969] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.760185][ T5850] Bluetooth: hci1: command tx timeout
[  205.766666][T10213] loop0: detected capacity change from 0 to 32768
[  205.793009][T10211] loop4: detected capacity change from 0 to 131072
[  205.796718][T10211] F2FS-fs (loop4): Test dummy encryption mode enabled
[  205.801595][T10211] F2FS-fs (loop4): invalid crc value
[  205.805332][   T33] audit: type=1800 audit(1755255655.846:56): pid=10213 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1540" name="file1" dev="loop0" ino=4 res=0 errno=0
[  205.862799][T10211] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  205.872731][T10211] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  206.362685][T10220] loop1: detected capacity change from 0 to 32768
[  206.401018][T10220] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  206.428231][T10220] XFS (loop1): Ending clean mount
[  206.465081][ T9969] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  206.590708][T10240] loop0: detected capacity change from 0 to 512
[  206.605656][T10240] EXT4-fs: Ignoring removed nobh option
[  206.664056][T10240] fscrypt (loop0, inode 2): Error -61 getting encryption context
[  206.666691][T10240] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -61
[  206.670137][T10240] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #13: comm syz.0.1550: casefold flag without casefold feature
[  206.674691][T10240] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.1550: couldn't read orphan inode 13 (err -117)
[  206.679764][T10240] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  206.696009][ T5847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  207.165668][T10246] loop1: detected capacity change from 0 to 32768
[  207.194248][T10246] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  207.265847][ T9969] ocfs2: Unmounting device (7,1) on (node local)
[  207.371781][T10265] loop1: detected capacity change from 0 to 1024
[  207.431145][   T28] hfsplus: b-tree write err: -5, ino 4
[  207.448462][ T5898] usb 5-1: new full-speed USB device number 11 using dummy_hcd
[  207.611655][ T5898] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  207.616301][ T5898] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 512, setting to 64
[  207.623177][ T5898] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 1280, setting to 64
[  207.628303][ T5898] usb 5-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[  207.635142][ T5898] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 1.40
[  207.654246][ T5898] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  207.663364][ T5898] usb 5-1: SerialNumber: syz
[  207.688847][T10277] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1562'.
[  207.704520][T10263] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  207.718565][T10263] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  207.729030][ T5898] cdc_acm 5-1:1.0: Control and data interfaces are not separated!
[  207.914544][T10280] loop0: detected capacity change from 0 to 128
[  207.946611][ T5898] cdc_acm 5-1:1.0: ttyACM0: USB ACM device
[  207.974051][ T5898] usb 5-1: USB disconnect, device number 11
[  208.329664][T10284] loop0: detected capacity change from 0 to 32768
[  208.337495][T10284] bcachefs (/dev/loop0): error validating superblock: Invalid superblock section clean: entry type btree_keys overruns end of section
[  208.337495][T10284] clean (size 2912):
[  208.337495][T10284] flags:          0
[  208.337495][T10284] journal_seq:    10
[  208.337495][T10284] usage: type=inodes v=8
[  208.337495][T10284] usage: type=key_version v=0
[  208.337495][T10284] usage: type=reserved v=0
[  208.337495][T10284] usage: type=reserved v=0
[  208.337495][T10284] usage: type=reserved v=0
[  208.337495][T10284] usage: type=reserved v=0
[  208.337495][T10284] data_usage: btree: 1/1 [0]=2816
[  208.337495][T10284] data_usage: journal: 1/1 [0]=0
[  208.337495][T10284] data_usage: user: 1/1 [0]=16
[  208.337495][T10284] dev_usage: dev=0  
[  208.337495][T10284]   free: buckets=83 sectors=0 fragmented=0
[  208.337495][T10284]   sb: buckets=25 sectors=6152 fragmented=248
[  208.337495][T10284]   journal: buckets=8 sectors=2048 fragmented=0
[  208.337495][T10284]   btree: buckets=11 sectors=2816 fragmented=0
[  208.337495][T10284]   user: buckets=1 sectors=16 fragmented=240
[  208.337495][T10284]   cached: buckets=0 sectors=0 fragmented=0
[  208.337495][T10284]   parity: buckets=0 sectors=0 fragmented=0
[  208.337495][T10284]   stripe: buckets=0 sectors=0 fragmented=0
[  208.337495][T10284]   need_gc_gens: buckets=0 sectors=0 fragmented=0
[  208.337495][T10284]   need_discard: buckets=0 sectors=0 fragmented=0
[  208.337495][T10284] log: 
[  208.337495][T10284] clock: write=1280
[  208.337495][T10284] 
[  208.397228][T10284] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[  208.977487][T10312] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[  208.988234][T10312] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[  209.045931][T10297] loop0: detected capacity change from 0 to 32768
[  209.532713][T10337] loop1: detected capacity change from 0 to 1024
[  209.549990][T10337] EXT4-fs: inline encryption not supported
[  209.552588][T10337] EXT4-fs: Ignoring removed i_version option
[  209.563655][T10337] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  209.611054][T10337] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 2: comm syz.1.1590: lblock 2 mapped to illegal pblock 2 (length 1)
[  209.624317][T10337] Quota error (device loop1): qtree_write_dquot: dquota write failed
[  209.627584][T10337] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 48: comm syz.1.1590: lblock 0 mapped to illegal pblock 48 (length 1)
[  209.628521][T10342] loop0: detected capacity change from 0 to 2048
[  209.636467][T10337] Quota error (device loop1): v2_write_file_info: Can't write info structure
[  209.636536][T10337] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.1590: Failed to acquire dquot type 0
[  209.648662][T10337] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  209.657141][T10342] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=26504, location=26504
[  209.668296][T10337] EXT4-fs error (device loop1): ext4_evict_inode:254: inode #11: comm syz.1.1590: mark_inode_dirty error
[  209.677255][T10337] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  209.691758][T10342] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  209.697349][T10337] EXT4-fs (loop1): 1 orphan inode deleted
[  209.711869][T10337] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  209.716056][ T1091] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u10:5: lblock 1 mapped to illegal pblock 1 (length 1)
[  209.736458][ T1091] Quota error (device loop1): remove_tree: Can't read quota data block 1
[  209.743669][ T1091] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u10:5: Failed to release dquot type 0
[  209.764448][T10337] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.781853][T10337] EXT4-fs error (device loop1): __ext4_get_inode_loc:4861: comm syz.1.1590: Invalid inode table block 1 in block_group 0
[  209.799258][T10337] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  209.803527][T10337] EXT4-fs error (device loop1): ext4_quota_off:7217: inode #3: comm syz.1.1590: mark_inode_dirty error
[  209.965746][T10346] loop4: detected capacity change from 0 to 32768
[  210.024257][T10346] (syz.4.1593,10346,0):ocfs2_verify_userspace_stack:858 ERROR: cluster stack passed to mount, but this filesystem does not support it
[  210.041277][T10346] (syz.4.1593,10346,0):ocfs2_fill_super:1177 ERROR: status = -22
[  210.094527][T10353] loop1: detected capacity change from 0 to 32768
[  210.097674][T10353] bcachefs: bch2_fs_parse_param() Error parsing option allocator_stuck_timeout: option_value
[  210.180820][T10353] overlayfs: conflicting options: metacopy=on,redirect_dir=follow
[  210.397056][T10379] loop4: detected capacity change from 0 to 512
[  210.415718][T10379] EXT4-fs error (device loop4): ext4_iget_extra_inode:5104: inode #15: comm syz.4.1609: corrupted in-inode xattr: invalid ea_ino
[  210.424797][T10379] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.1609: couldn't read orphan inode 15 (err -117)
[  210.436737][T10379] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  210.492978][ T8760] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.556135][T10388] sctp: [Deprecated]: syz.4.1611 (pid 10388) Use of struct sctp_assoc_value in delayed_ack socket option.
[  210.556135][T10388] Use struct sctp_sack_info instead
[  210.647609][T10394] erspan1: entered promiscuous mode
[  210.651314][T10394] erspan1: entered allmulticast mode
[  210.694659][T10371] loop1: detected capacity change from 0 to 32768
[  210.713399][T10398] loop0: detected capacity change from 0 to 256
[  210.731815][T10398] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  210.742758][T10396] loop4: detected capacity change from 0 to 4096
[  210.780136][T10396] ntfs3(loop4): ino=3, ntfs_set_state failed, -22.
[  210.783175][T10396] ntfs3(loop4): Failed to initialize $Extend/$ObjId.
[  210.815408][T10371] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,metadata_target=invalid label 246,noinodes_use_key_cache,journal_flush_delay=3,journal_reclaim_delay=1000,nocow
[  210.815425][T10371]   allowing incompatible features above 0.0: (unknown version)
[  210.815430][T10371]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  210.831644][T10371] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0
[  210.834857][T10371] bcachefs (loop1): initializing new filesystem
[  210.842083][T10371] bcachefs (loop1): going read-write
[  210.848162][T10371] bcachefs (loop1): marking superblocks
[  210.866255][T10371] bcachefs (loop1): initializing freespace
[  210.902141][T10371] bcachefs (loop1): done initializing freespace
[  210.918974][T10371] bcachefs (loop1): reading snapshots table
[  210.920941][T10371] bcachefs (loop1): reading snapshots done
[  210.940487][T10371] bcachefs (loop1): done starting filesystem
[  210.945135][T10415] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1619'.
[  210.952800][T10415] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1619'.
[  210.957909][T10415] netlink: 108 bytes leftover after parsing attributes in process `syz.0.1619'.
[  211.274444][T10371] bcachefs (loop1): going read-only
[  211.277271][T10371] bcachefs (loop1): finished waiting for writes to stop
[  211.294472][T10371] bcachefs (loop1): flushing journal and stopping allocators, journal seq 4
[  211.334294][T10371] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 6
[  211.351242][T10371] bcachefs (loop1): clean shutdown complete, journal seq 7
[  211.353902][T10371] bcachefs (loop1): marking filesystem clean
[  211.381539][ T9969] bcachefs (loop1): shutting down
[  211.413290][ T9969] bcachefs (loop1): shutdown complete
[  211.521054][T10422] loop0: detected capacity change from 0 to 32768
[  211.524841][T10422] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1622 (10422)
[  211.622388][   T40] ntfs3(loop4): ino=3, ntfs3_write_inode failed, -22.
[  211.627465][ T8760] ntfs3(loop4): ino=3, ntfs_set_state failed, -22.
[  211.632757][T10422] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  211.637066][T10422] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  211.640581][ T8760] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  211.652450][ T8760] ntfs3(loop4): ino=3, ntfs_set_state failed, -22.
[  211.655375][   T40] ntfs3(loop4): ino=3, ntfs3_write_inode failed, -22.
[  211.658557][T10422] BTRFS info (device loop0): using free-space-tree
[  211.716216][T10434] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1624'.
[  211.744269][ T1091] BTRFS warning (device loop0): checksum verify failed on logical 1052672 mirror 1 wanted 0x11f3e929624b680852cd2754314153a53c00b22ae8936d589814e00d5ed09030 found 0xe38ba9bd71c513db051652ecf0e4e83d075b6f90790e6c1c1ddb1c188093d1e0 level 0
[  211.764072][T10422] BTRFS error (device loop0): failed to read chunk root
[  211.830498][T10422] BTRFS error (device loop0): open_ctree failed: -5
[  211.847252][T10442] loop4: detected capacity change from 0 to 2048
[  211.861591][T10442] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[  211.910122][T10443] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  211.910269][T10442] syz.4.1626: attempt to access beyond end of device
[  211.910269][T10442] loop4: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  211.994588][T10442] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  212.001235][T10442] Remounting filesystem read-only
[  212.003193][T10442] NILFS error (device loop4): nilfs_bmap_last_key: broken bmap (inode number=16)
[  212.006671][T10442] NILFS (loop4): error -5 truncating bmap (ino=16)
[  212.048767][ T8760] NILFS (loop4): disposed unprocessed dirty file(s) when detaching log writer
[  212.476071][T10472] loop0: detected capacity change from 0 to 512
[  212.495842][T10472] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #17: comm syz.0.1639: iget: bogus i_mode (0)
[  212.499962][T10472] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.1639: couldn't read orphan inode 17 (err -117)
[  212.508960][T10472] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  212.537444][ T5847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  212.676878][T10485] loop0: detected capacity change from 0 to 512
[  212.714189][T10485] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.1645: casefold flag without casefold feature
[  212.742059][T10485] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.1645: couldn't read orphan inode 15 (err -117)
[  212.747648][T10485] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  212.759954][T10485] EXT4-fs (loop0): shut down requested (2)
[  212.813317][ T5847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  213.031001][T10507] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1654'.
[  213.914183][T10537] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1667'.
[  213.919363][T10537] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1667'.
[  214.024258][T10530] loop1: detected capacity change from 0 to 32768
[  214.142351][T10545] loop0: detected capacity change from 0 to 256
[  214.146049][T10545] exfat: Deprecated parameter 'utf8'
[  214.176040][T10545] exfat: Deprecated parameter 'namecase'
[  214.189266][T10545] exfat: Deprecated parameter 'utf8'
[  214.205482][T10545] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  214.313701][T10553] loop0: detected capacity change from 0 to 1024
[  214.336037][   T40] hfsplus: b-tree write err: -5, ino 4
[  214.487332][T10565] loop4: detected capacity change from 0 to 128
[  214.555277][T10565] FAT-fs (loop4): error, corrupted directory (invalid i_start)
[  214.568456][T10565] FAT-fs (loop4): Filesystem has been set read-only
[  215.537788][ T5912] usb 2-1: new full-speed USB device number 26 using dummy_hcd
[  215.650712][T10590] loop4: detected capacity change from 0 to 1024
[  215.727431][ T5912] usb 2-1: config 0 contains an unexpected descriptor of type 0x2, skipping
[  215.734562][ T5912] usb 2-1: config 0 has an invalid interface number: 2 but max is -1
[  215.738717][ T5912] usb 2-1: config 0 has an invalid interface number: 2 but max is -1
[  215.742169][ T5912] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  215.746071][T10593] loop0: detected capacity change from 0 to 4096
[  215.746668][ T5912] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 0
[  215.761147][ T5912] usb 2-1: config 0 has no interface number 0
[  215.768528][ T5912] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  215.772518][ T5912] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  215.775827][ T5912] usb 2-1: Product: syz
[  215.777651][ T5912] usb 2-1: Manufacturer: syz
[  215.782324][ T5912] usb 2-1: SerialNumber: syz
[  215.787066][ T5912] usb 2-1: config 0 descriptor??
[  215.792435][T10593] ntfs3(loop0): ino=5, "/" mi_enum_attr
[  215.881820][T10600] (unnamed net_device) (uninitialized): option resend_igmp: invalid value (1024)
[  215.885082][T10600] (unnamed net_device) (uninitialized): option resend_igmp: allowed values 0 - 255
[  215.907889][T10602] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  216.005647][ T5912] usb 2-1: No MIDI 2.0 at altset 1, falling back to MIDI 1.0
[  216.008817][ T5912] usb 2-1: MIDIStreaming interface descriptor not found
[  216.033168][ T5912] usb 2-1: USB disconnect, device number 26
[  216.177887][  T793] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  216.327809][  T793] usb 1-1: Using ep0 maxpacket: 32
[  216.332628][  T793] usb 1-1: config 0 has an invalid interface number: 12 but max is 0
[  216.336024][  T793] usb 1-1: config 0 has no interface number 0
[  216.340795][  T793] usb 1-1: config 0 interface 12 has no altsetting 0
[  216.345967][  T793] usb 1-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  216.350246][  T793] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  216.353709][  T793] usb 1-1: Product: syz
[  216.355569][  T793] usb 1-1: Manufacturer: syz
[  216.357614][  T793] usb 1-1: SerialNumber: syz
[  216.363498][  T793] usb 1-1: config 0 descriptor??
[  216.637256][T10612] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1701'.
[  216.642109][T10612] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1701'.
[  216.646168][T10612] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1701'.
[  216.649662][T10612] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1701'.
[  216.783920][T10620] bond0: (slave veth0_virt_wifi): Enslaving as an active interface with an up link
[  216.797938][ T5912] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[  216.957005][ T5912] usb 2-1: unable to get BOS descriptor or descriptor too short
[  216.961707][ T5912] usb 2-1: config 84 has an invalid interface number: 111 but max is 0
[  216.965210][ T5912] usb 2-1: config 84 has no interface number 0
[  216.968149][ T5912] usb 2-1: config 84 interface 111 has no altsetting 0
[  216.976694][ T5912] usb 2-1: language id specifier not provided by device, defaulting to English
[  216.981684][  T793] f81534 1-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  216.987322][  T793] f81534 1-1:0.12: f81534_find_config_idx: read failed: -71
[  216.992568][  T793] f81534 1-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  216.995993][  T793] f81534 1-1:0.12: probe with driver f81534 failed with error -71
[  216.999791][ T5912] usb 2-1: New USB device found, idVendor=0421, idProduct=046e, bcdDevice=33.f0
[  217.003426][  T793] usb 1-1: USB disconnect, device number 24
[  217.010601][ T5912] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  217.015619][ T5912] usb 2-1: Product: Ъ
[  217.027799][ T5912] usb 2-1: SerialNumber: 麡珏גּ줺귮癲ꋧ⌗컹야髰蹏铏܎䖎鯫湼샘婜ꁤ齯Ἑᢱ벗/￭蠾쬯ꃯ▋뵻薱⾡䴢㒟瀪慠欗삅탯睌࢔קּ狴
[  217.253801][ T5912] usb 2-1: bad CDC descriptors
[  217.259807][ T5912] usb 2-1: USB disconnect, device number 27
[  217.518462][T10637] netlink: 248 bytes leftover after parsing attributes in process `syz.0.1712'.
[  217.522155][T10637] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1712'.
[  217.851345][T10647] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1717'.
[  217.862471][T10647] vlan2: entered allmulticast mode
[  217.864870][T10647] bridge0: port 3(vlan2) entered blocking state
[  217.873648][T10647] bridge0: port 3(vlan2) entered disabled state
[  217.877844][T10647] vlan2: entered promiscuous mode
[  217.937895][  T793] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  218.090917][  T793] usb 1-1: New USB device found, idVendor=1d50, idProduct=6089, bcdDevice=d0.1d
[  218.095030][  T793] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  218.100447][  T793] usb 1-1: config 0 descriptor??
[  218.632152][T10665] dvmrp5: entered allmulticast mode
[  218.645305][T10665] pimreg: entered allmulticast mode
[  218.658345][  T793] hackrf 1-1:0.0: usb_control_msg() failed -71 request 0f
[  218.665350][  T793] hackrf 1-1:0.0: Could not detect board
[  218.667657][  T793] hackrf 1-1:0.0: probe with driver hackrf failed with error -71
[  218.678039][  T793] usb 1-1: USB disconnect, device number 25
[  218.926170][T10680] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  218.926170][T10680] The task syz.4.1730 (10680) triggered the difference, watch for misbehavior.
[  218.962201][T10682] loop1: detected capacity change from 0 to 512
[  218.970652][T10682] EXT4-fs (loop1): filesystem is read-only
[  218.979611][T10682] EXT4-fs (loop1): filesystem is read-only
[  218.982172][T10682] EXT4-fs (loop1): orphan cleanup on readonly fs
[  218.984836][T10682] EXT4-fs error (device loop1): ext4_orphan_get:1418: comm syz.1.1731: bad orphan inode 16
[  218.990343][T10682] ext4_test_bit(bit=15, block=3) = 0
[  218.995624][T10682] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  219.024935][ T9969] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.233905][T10692] netlink: 'syz.1.1736': attribute type 4 has an invalid length.
[  219.247546][T10692] netlink: 'syz.1.1736': attribute type 4 has an invalid length.
[  219.319779][T10699] loop1: detected capacity change from 0 to 512
[  219.332141][T10699] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  219.336878][T10699] ext4 filesystem being mounted at /56/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  219.349888][T10699] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.1739: corrupted inode contents
[  219.357914][T10699] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #2: comm syz.1.1739: mark_inode_dirty error
[  219.362892][T10699] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.1739: corrupted inode contents
[  219.371153][T10699] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.1739: corrupted inode contents
[  219.376442][T10699] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #2: comm syz.1.1739: mark_inode_dirty error
[  219.382768][T10699] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.1739: corrupted inode contents
[  219.404106][ T9969] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.495263][T10708] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1742'.
[  219.500868][T10708] netlink: 100 bytes leftover after parsing attributes in process `syz.1.1742'.
[  219.510503][ T5913] usb 1-1: new full-speed USB device number 26 using dummy_hcd
[  219.690729][ T5913] usb 1-1: not running at top speed; connect to a high speed hub
[  219.696215][ T5913] usb 1-1: config 10 has an invalid interface number: 102 but max is 0
[  219.699462][ T5913] usb 1-1: config 10 has no interface number 0
[  219.701924][ T5913] usb 1-1: config 10 interface 102 has no altsetting 0
[  219.711954][ T5913] usb 1-1: New USB device found, idVendor=9022, idProduct=d421, bcdDevice=c1.e2
[  219.715512][ T5913] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  219.722773][ T5913] usb 1-1: Product: syz
[  219.724256][ T5913] usb 1-1: Manufacturer: syz
[  219.725906][ T5913] usb 1-1: SerialNumber: syz
[  219.794189][T10716] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  219.796764][T10716] IPv6: NLM_F_CREATE should be set when creating new route
[  219.957941][ T5912] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  220.158590][ T5912] usb 5-1: Using ep0 maxpacket: 16
[  220.169357][ T5913] dvb-usb: found a 'TeVii S421 PCI' in warm state.
[  220.172242][ T5913] dw2102: su3000_power_ctrl: 1, initialized 0
[  220.175208][ T5913] dvb-usb: bulk message failed: -22 (2/0)
[  220.183074][ T5913] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  220.190494][ T5913] dvb-usb: TeVii S421 PCI error while loading driver (-19)
[  220.199260][ T5912] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  220.201605][ T5913] usb 1-1: USB disconnect, device number 26
[  220.206804][ T5912] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  220.218022][ T5912] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  220.222515][ T5912] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  220.226010][ T5912] usb 5-1: Product: syz
[  220.229891][ T5912] usb 5-1: Manufacturer: syz
[  220.232034][ T5912] usb 5-1: SerialNumber: syz
[  220.663605][ T5912] usb 5-1: cannot find UAC_HEADER
[  220.721093][ T5912] snd-usb-audio 5-1:1.0: probe with driver snd-usb-audio failed with error -22
[  220.727934][ T5912] usb 5-1: USB disconnect, device number 12
[  220.736567][T10733] loop1: detected capacity change from 0 to 2048
[  220.758495][T10733] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  220.761698][ T6206] udevd[6206]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  221.127664][T10756] loop0: detected capacity change from 0 to 4096
[  221.209716][T10756] ntfs3(loop0): $Secure::$SII is corrupted.
[  221.211935][T10756] ntfs3(loop0): Failed to initialize $Secure (-22).
[  221.524658][   T33] audit: type=1800 audit(1755255671.566:57): pid=10760 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1765" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  223.183665][T10806] loop0: detected capacity change from 0 to 8
[  223.241870][T10806] SQUASHFS error: xz decompression failed, data probably corrupt
[  223.245472][T10806] SQUASHFS error: Failed to read block 0xa8: -5
[  223.262293][T10806] SQUASHFS error: xz decompression failed, data probably corrupt
[  223.278556][T10806] SQUASHFS error: Failed to read block 0xa8: -5
[  223.280852][   T33] audit: type=1800 audit(1755255673.326:58): pid=10806 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1783" name="file0" dev="loop0" ino=3 res=0 errno=0
[  223.343500][T10810] program syz.0.1784 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  223.830337][ T5913] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  223.968284][  T793] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[  224.009521][ T5913] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  224.013478][ T5913] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  224.017278][ T5913] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00
[  224.020324][ T5913] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  224.031319][ T5913] usb 5-1: config 0 descriptor??
[  224.146177][  T793] usb 1-1: config index 0 descriptor too short (expected 45, got 36)
[  224.149814][  T793] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  224.155084][  T793] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  224.159262][  T793] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  224.163074][  T793] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  224.168925][  T793] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  224.172805][  T793] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  224.188699][  T793] usb 1-1: config 0 descriptor??
[  224.200176][T10831] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  224.520661][ T5913] pyra 0003:1E7D:2CF6.000B: unknown main item tag 0x2
[  224.523196][ T5913] pyra 0003:1E7D:2CF6.000B: unknown main item tag 0x2
[  224.542049][ T5913] pyra 0003:1E7D:2CF6.000B: hidraw0: USB HID v0.00 Device [HID 1e7d:2cf6] on usb-dummy_hcd.4-1/input0
[  224.634518][  T793] plantronics 0003:047F:FFFF.000C: reserved main item tag 0xd
[  224.710405][ T5913] pyra 0003:1E7D:2CF6.000B: couldn't init struct pyra_device
[  224.714922][  T793] plantronics 0003:047F:FFFF.000C: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  224.720575][ T5913] pyra 0003:1E7D:2CF6.000B: couldn't install mouse
[  224.736403][ T5913] pyra 0003:1E7D:2CF6.000B: probe with driver pyra failed with error -71
[  224.760850][ T5913] usb 5-1: USB disconnect, device number 13
[  224.901125][ T5898] usb 1-1: USB disconnect, device number 27
[  225.118531][T10839] ksmbd: Unknown IPC event: 4, ignore.
[  225.142114][T10841] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000005: 0000 [#1] SMP KASAN PTI
[  225.146404][T10841] KASAN: null-ptr-deref in range [0x0000000000000028-0x000000000000002f]
[  225.150430][T10841] CPU: 1 UID: 0 PID: 10841 Comm: syz.1.1799 Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  225.155909][T10841] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  225.160206][T10841] RIP: 0010:pcl818_ai_cancel+0x69/0x3f0
[  225.162470][T10841] Code: 8b 1b 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 39 5e 36 f9 48 8b 03 48 89 04 24 49 83 c4 28 4c 89 e0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 e7 e8 18 5e 36 f9 4d 8b 24 24 48 83 c3
[  225.170398][T10841] RSP: 0018:ffffc90004b7fa60 EFLAGS: 00010206
[  225.172786][T10841] RAX: 0000000000000005 RBX: ffff888021c89c00 RCX: 0000000000080000
[  225.176051][T10841] RDX: ffffc90003b62000 RSI: 00000000000003ba RDI: 00000000000003bb
[  225.179003][T10841] RBP: 0000000000000001 R08: ffff8881091a892f R09: 1ffff11021235125
[  225.182072][T10841] R10: dffffc0000000000 R11: ffffffff88ec9110 R12: 0000000000000028
[  225.185397][T10841] R13: dffffc0000000000 R14: ffff8881091a8800 R15: dffffc0000000000
[  225.188811][T10841] FS:  00007fd66d87b6c0(0000) GS:ffff8881a3c1c000(0000) knlGS:0000000000000000
[  225.192557][T10841] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  225.195378][T10841] CR2: 00007fd66d87afc8 CR3: 000000001fe86000 CR4: 00000000000006f0
[  225.198641][T10841] Call Trace:
[  225.200072][T10841]  <TASK>
[  225.201305][T10841]  pcl818_detach+0x66/0xd0
[  225.203101][T10841]  comedi_device_detach_locked+0x178/0x750
[  225.205573][T10841]  comedi_unlocked_ioctl+0xcde/0x1020
[  225.207777][T10841]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  225.210185][T10841]  ? __lock_acquire+0xab9/0xd20
[  225.212265][T10841]  ? __fget_files+0x2a/0x420
[  225.214244][T10841]  ? __fget_files+0x2a/0x420
[  225.216218][T10841]  ? __fget_files+0x3a0/0x420
[  225.217984][T10841]  ? __fget_files+0x2a/0x420
[  225.219900][T10841]  ? bpf_lsm_file_ioctl+0x9/0x20
[  225.222065][T10841]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  225.224540][T10841]  __se_sys_ioctl+0xfc/0x170
[  225.226527][T10841]  do_syscall_64+0xfa/0x3b0
[  225.228432][T10841]  ? lockdep_hardirqs_on+0x9c/0x150
[  225.230522][T10841]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.232965][T10841]  ? exc_page_fault+0x9f/0xf0
[  225.235041][T10841]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.237622][T10841] RIP: 0033:0x7fd66c98ebe9
[  225.239580][T10841] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  225.246245][T10841] RSP: 002b:00007fd66d87b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  225.249761][T10841] RAX: ffffffffffffffda RBX: 00007fd66cbb5fa0 RCX: 00007fd66c98ebe9
[  225.252504][T10841] RDX: 0000000000000000 RSI: 0000000040946400 RDI: 0000000000000003
[  225.255303][T10841] RBP: 00007fd66ca11e19 R08: 0000000000000000 R09: 0000000000000000
[  225.257933][T10841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  225.261003][T10841] R13: 00007fd66cbb6038 R14: 00007fd66cbb5fa0 R15: 00007ffed27ed348
[  225.263948][T10841]  </TASK>
[  225.265236][T10841] Modules linked in:
[  225.266972][    C1] vkms_vblank_simulate: vblank timer overrun
[  225.270327][T10841] ---[ end trace 0000000000000000 ]---
[  225.282621][T10841] RIP: 0010:pcl818_ai_cancel+0x69/0x3f0
[  225.284527][T10841] Code: 8b 1b 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 39 5e 36 f9 48 8b 03 48 89 04 24 49 83 c4 28 4c 89 e0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 e7 e8 18 5e 36 f9 4d 8b 24 24 48 83 c3
[  225.291499][T10841] RSP: 0018:ffffc90004b7fa60 EFLAGS: 00010206
[  225.293566][T10841] RAX: 0000000000000005 RBX: ffff888021c89c00 RCX: 0000000000080000
[  225.296320][T10841] RDX: ffffc90003b62000 RSI: 00000000000003ba RDI: 00000000000003bb
[  225.299537][T10841] RBP: 0000000000000001 R08: ffff8881091a892f R09: 1ffff11021235125
[  225.302058][T10841] R10: dffffc0000000000 R11: ffffffff88ec9110 R12: 0000000000000028
[  225.304546][T10841] R13: dffffc0000000000 R14: ffff8881091a8800 R15: dffffc0000000000
[  225.307125][T10841] FS:  00007fd66d87b6c0(0000) GS:ffff8881a3c1c000(0000) knlGS:0000000000000000
[  225.310819][T10841] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  225.313574][T10841] CR2: 00007f4a296af000 CR3: 000000001fe86000 CR4: 00000000000006f0
[  225.316572][T10841] Kernel panic - not syncing: Fatal exception
[  225.319539][T10841] Kernel Offset: disabled
[  225.320953][T10841] Rebooting in 86400 seconds..

VM DIAGNOSIS:
11:01:15  Registers:
info registers vcpu 0

CPU#0
RAX=e4503a034b98f600 RBX=ffffffff81968308 RCX=e4503a034b98f600 RDX=0000000000000001
RSI=ffffffff8be333e0 RDI=ffffffff81968308 RBP=ffffffff8de07eb8 RSP=ffffffff8de07d80
R8 =ffff88804b032f9b R9 =1ffff110096065f3 R10=dffffc0000000000 R11=ffffed10096065f4
R12=ffffffff8fa37e30 R13=0000000000000000 R14=0000000000000000 R15=1ffffffff1bd2a20
RIP=ffffffff8b7943f3 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880b861c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b33e23ffc CR3=000000003ac42000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=2525252525252525 2525252525252525
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 00000000000000ff XMM05=0000000000000000 00007fd66ca12e53
XMM06=0000000000000000 00007fd66ca12e4d XMM07=0000000000000000 00007fd66ca12e61
XMM08=0000000000000000 00007fd66ca12ee7 XMM09=0000000000000000 00007fd66ca12fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000035 RBX=0000000000000035 RCX=0000000000000000 RDX=00000000000003f8
RSI=00000000000015d1 RDI=00000000000015d2 RBP=00000000000003f8 RSP=ffffc90004b7f1f0
R8 =ffff888108508237 R9 =1ffff110210a1046 R10=dffffc0000000000 R11=ffffffff854efeb0
R12=dffffc0000000000 R13=ffffffff99af98c9 R14=ffffffff99dee3a0 R15=0000000000000000
RIP=ffffffff854eff2c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fd66d87b6c0 ffffffff 00c00000
GS =0000 ffff8881a3c1c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fd66d87afc8 CR3=000000001fe86000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007fd66cb87498 00007fd66cb87470 XMM03=00007fd66cb874a8 00007fd66cb874a0
XMM04=00007fd66d6ed100 00007fd66cb87460 XMM05=00007fd66cb87478 00007fd66cb874c0
XMM06=00007fd66cb874b8 00007fd66cb874b0 XMM07=00007fd66cb874a8 00007fd66cb874a0
XMM08=0000000000000000 00007fd66ca12ee7 XMM09=0000000000000000 00007fd66ca12fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
