last executing test programs:

1m2.552305679s ago: executing program 2 (id=124):
syz_mount_image$fuse(0x0, &(0x7f0000000080)='./file0\x00', 0x32e104c, 0x0, 0x0, 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0x2010008, 0x4, 0x0, 0x0, 0x1}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000004280)="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", 0x2000, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)={0x130, 0x0, 0x7a4552d3, {0x5, 0xfffffffe, 0x0, '\x00', {0x7ff, 0x0, 0x10, 0x0, 0x0, r2, 0x4000, '\x00', 0x4, 0x29, 0xffff, 0x358, {0x9}, {0x1f96, 0x7fff}, {0x7, 0x8}, {0xa, 0x10}, 0x5, 0x2080e16, 0x1, 0x7}}}})
statx(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x100, 0x801, 0x0)

1m2.393656504s ago: executing program 2 (id=127):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = syz_open_dev$video4linux(&(0x7f0000000900), 0x5, 0x0)
ioctl$VIDIOC_SUBDEV_G_SELECTION(r1, 0xc040563d, &(0x7f0000000000)={0x1, 0x1000000, 0x100, 0x3, {0x10001, 0x83, 0x7}})

1m2.294904155s ago: executing program 2 (id=131):
fsopen(&(0x7f0000000000)='sockfs\x00', 0x0)

1m2.250672323s ago: executing program 2 (id=132):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0xb500a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000140)='./file0/file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2145499, 0x0)
umount2(&(0x7f00000001c0)='./file0\x00', 0x8)

1m2.137063749s ago: executing program 2 (id=134):
syz_usb_connect(0x0, 0x34, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000092e1300833280102d52a0000000109022200010000000009040000000e010000082403"], 0x0)

1m1.810430953s ago: executing program 2 (id=139):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000240)='./binderfs/binder0\x00', 0x2, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0)
r1 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
read$FUSE(r1, &(0x7f0000000480)={0x2020}, 0x1723)

1m1.718134597s ago: executing program 32 (id=139):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000240)='./binderfs/binder0\x00', 0x2, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0)
r1 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
read$FUSE(r1, &(0x7f0000000480)={0x2020}, 0x1723)

765.698622ms ago: executing program 3 (id=913):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000000)=@newlink={0x54, 0x10, 0x1, 0x70bd28, 0x0, {0x0, 0x0, 0x0, 0x0, 0xdf15003157931110, 0x10}, [@IFLA_IFNAME={0x14, 0x3, 'netdevsim0\x00'}, @IFLA_VFINFO_LIST={0x20, 0x16, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, [@IFLA_VF_VLAN_LIST={0x18, 0xc, 0x0, 0x1, [{0x14, 0x1, {0xffffffff, 0xcff, 0x6}}]}]}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x20000084}, 0x4800)

672.881464ms ago: executing program 3 (id=914):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40485404, &(0x7f0000000400)={{0x3}})

603.599202ms ago: executing program 3 (id=917):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r0, &(0x7f0000000080)=[{{&(0x7f0000000040)={0xa, 0x4e24, 0x0, @local}, 0x1c, 0x0}}, {{&(0x7f0000000340)={0xa, 0x4e24, 0x0, @local}, 0x1c, 0x0, 0x0, &(0x7f0000000080)=ANY=[], 0x30}}], 0x2, 0x4c851)

603.427909ms ago: executing program 3 (id=918):
socket$packet(0x11, 0x2, 0x300)
socket$packet(0x11, 0xa, 0x300)
socket$packet(0x11, 0xa, 0x300)
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'veth1_to_hsr\x00', <r1=>0x0})
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
sendto$packet(r0, &(0x7f00000000c0)="3f031c000302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r1, 0x1, 0x0, 0x6, @multicast}, 0x14)

529.715707ms ago: executing program 3 (id=920):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000180)=@generic={&(0x7f0000000140)='./file0\x00', r0}, 0x18)

529.411723ms ago: executing program 3 (id=921):
r0 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$sock_int(r0, 0x1, 0x4000000000000002, &(0x7f0000fee000)=0x3fa, 0x4)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
connect$inet6(r0, &(0x7f0000000240)={0xa, 0x4e22, 0x0, @private1}, 0x1c)
r1 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$sock_int(r1, 0x1, 0x4000000000000002, &(0x7f0000fee000)=0x3fa, 0x4)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
connect$inet6(r1, &(0x7f0000000240)={0xa, 0x4e22, 0x0, @private1}, 0x1c)

248.028894ms ago: executing program 1 (id=934):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @broadcast})
writev(r0, &(0x7f0000000500)=[{&(0x7f0000000080)="2e9b020007e03dd65193dfb6c575963f86dd6067", 0x14}, {&(0x7f00000002c0)="b7000000060000000000005ff1dd0fccd5de059d3679904c9187295ca426674883d7c2bc344ba6", 0x27}], 0x2)

187.516692ms ago: executing program 0 (id=937):
r0 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
ioctl$sock_ifreq(r0, 0x8924, 0x0)

187.393259ms ago: executing program 0 (id=938):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$netlink(0x10, 0x3, 0x0)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
getpeername$packet(r1, &(0x7f0000000000)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0x503, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, 0x0, 0x23311, 0x8831}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}]}, 0x3c}, 0x1, 0x0, 0x0, 0x48890}, 0x0)

144.022279ms ago: executing program 0 (id=939):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x11, 0x4, 0x4, 0x8}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x3, 0xf, &(0x7f0000000900)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0x7fffffff}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)

142.050364ms ago: executing program 1 (id=940):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x88040, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
fcntl$getownex(r0, 0x10, &(0x7f0000000040))

141.709078ms ago: executing program 1 (id=941):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000680), r0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x3, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20}}, &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='contention_end\x00', r2}, 0x10)
sendmsg$NFC_CMD_START_POLL(r0, &(0x7f0000003080)={0x0, 0x0, &(0x7f0000003040)={&(0x7f0000002fc0)={0x24, r1, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_TM_PROTOCOLS={0x8, 0xe, 0x20}]}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x40800)

141.078394ms ago: executing program 0 (id=942):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='illinois', 0x8)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2, 0x3, @loopback, 0x8}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r0, &(0x7f00000000c0)="b2", 0x1, 0x24008844, &(0x7f0000000040)={0xa, 0x2, 0x80398, @empty, 0xfffffffe}, 0x1c)
shutdown(r0, 0x1)

69.09888ms ago: executing program 1 (id=943):
r0 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x89f0, &(0x7f0000001440)={'bridge0\x00', &(0x7f0000000400)=@ethtool_ringparam={0x12, 0x0, 0x20040001, 0x0, 0x1}})

68.613409ms ago: executing program 0 (id=944):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
sendmsg$inet_sctp(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000001c0)="fa8c", 0x2}], 0x1, &(0x7f0000000700)=[@prinfo={0x18}, @sndrcv={0x30, 0x84, 0x1, {0x9, 0x5, 0x200, 0xd850, 0x40, 0x3ff, 0x3c05, 0x2}}], 0x48, 0x10}, 0x10)

68.5072ms ago: executing program 1 (id=945):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000280)={0x1, 0x0, 0x27f})

68.260078ms ago: executing program 0 (id=946):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0xf}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e22, @empty}, 0x67)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='syz_tun\x00', 0x10)
sendto$inet(r1, 0x0, 0x0, 0x20000800, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)
syz_emit_ethernet(0x3a, &(0x7f00000000c0)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0xfe, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@window={0x3, 0x3, 0x5e}]}}}}}}}, 0x0)

0s ago: executing program 1 (id=947):
r0 = openat$comedi(0xffffff9c, &(0x7f0000000040)='/dev/comedi1\x00', 0x28444, 0x0)
ioctl$KDSKBENT(0xffffffffffffffff, 0x4b47, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2b, 0x2, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000002c0)={'\x00', 0x0, 0x3, 0x7f, 0xa9, 0xfffffffffffffff7})
read$msr(r1, &(0x7f000001b000)=""/102400, 0x19000)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg(r2, &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=[{0x10, 0x84, 0x4}], 0x10}, 0x20040004)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f0000000080)={'c6xdigio\x00', [0x401, 0x181, 0x2, 0x3, 0x14000000, 0x0, 0xfffffffc, 0x2, 0xffd, 0x7ffe, 0x3, 0x9, 0x404, 0x2, 0x8000013, 0xa7, 0xffffffa7, 0x8000b, 0x34d, 0x6e, 0x0, 0x4000009, 0x200, 0xe2df, 0x9, 0x20000001, 0x4, 0x505e, 0x7, 0xf58, 0x6]})
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000200)={<r3=>0x0, @multicast1}, &(0x7f0000000240)=0xc)
r4 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000280), 0x4)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000340)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0xf)
r6 = syz_open_procfs(0x0, &(0x7f0000000140)='net/tcp6\x00')
read$FUSE(r6, &(0x7f0000004dc0)={0x2020}, 0x2020)
ioctl$UFFDIO_WAKE(r6, 0x8010aa02, &(0x7f0000000700)={&(0x7f0000ffb000/0x2000)=nil, 0x2000})
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWCHAIN={0x30, 0x3, 0xa, 0x5, 0x0, 0x0, {0x2, 0x0, 0x6}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_COUNTERS={0x4}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x58}, 0x1, 0x0, 0x0, 0x20018080}, 0x94)
r8 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000740), 0x41703, 0x0)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r6, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={r9, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r10=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x6, 0x3, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', r10}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000380)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x2, '\x00', r10, 0xffffffffffffffff, 0x0, 0x5}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x27, &(0x7f0000000540)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x3c9, 0x0, 0x0, 0x0, 0x6}, {{0x18, 0x1, 0x1, 0x0, 0x1}}, {}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r6}}, @printk={@lli, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x909edde}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x16}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @ldst={0x0, 0x3, 0x0, 0x2, 0x7, 0x18, 0xfffffffffffffffc}, @call={0x85, 0x0, 0x0, 0x84}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000180)='syzkaller\x00', 0x8, 0x29, &(0x7f00000001c0)=""/41, 0x41000, 0x18, '\x00', r3, 0x25, r4, 0x8, &(0x7f00000002c0)={0x8, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x4, 0xb, 0x7f, 0x5}, 0x10, 0x0, 0x0, 0x8, &(0x7f00000003c0)=[r5, r6, r8, 0x1, 0x1], &(0x7f0000000400)=[{0x0, 0x4, 0xa, 0x2}, {0x3, 0x2, 0x10}, {0x4, 0x1, 0xe, 0x4}, {0x4, 0x1, 0x7, 0xb}, {0x6, 0x67d, 0xa, 0xb}, {0x2, 0x9, 0x10, 0x9}, {0x2, 0x800004, 0x8000001, 0xf03e6ce8b924874e}, {0x4, 0x5, 0xf, 0xa}], 0x10, 0xf51}, 0x94)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:20665' (ED25519) to the list of known hosts.
syzkaller login: [   49.096571][ T5779] cgroup: Unknown subsys name 'net'
[   49.180685][ T5779] cgroup: Unknown subsys name 'cpuset'
[   49.184477][ T5779] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   51.169036][ T5779] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   55.501949][ T5849] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   55.505265][ T5849] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   55.508845][ T5849] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   55.512786][ T5849] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   55.516489][ T5849] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   55.521026][ T5849] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   55.524514][ T5849] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   55.528762][ T5849] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   55.532344][ T5849] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   55.535357][ T5849] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   55.577013][   T56] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   55.580151][   T56] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   55.583277][   T56] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   55.586651][   T56] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   55.591359][   T56] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   55.787575][ T5846] chnl_net:caif_netlink_parms(): no params data found
[   55.846460][ T5850] chnl_net:caif_netlink_parms(): no params data found
[   55.893825][ T5846] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.896906][ T5846] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.900132][ T5846] bridge_slave_0: entered allmulticast mode
[   55.903172][ T5846] bridge_slave_0: entered promiscuous mode
[   55.959270][ T5846] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.962318][ T5846] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.965358][ T5846] bridge_slave_1: entered allmulticast mode
[   55.969669][ T5846] bridge_slave_1: entered promiscuous mode
[   56.022338][ T5846] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.038250][ T5846] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.042376][ T5855] chnl_net:caif_netlink_parms(): no params data found
[   56.060288][ T5850] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.063299][ T5850] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.067023][ T5850] bridge_slave_0: entered allmulticast mode
[   56.071127][ T5850] bridge_slave_0: entered promiscuous mode
[   56.075050][ T5850] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.078321][ T5850] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.081283][ T5850] bridge_slave_1: entered allmulticast mode
[   56.085116][ T5850] bridge_slave_1: entered promiscuous mode
[   56.127162][ T5846] team0: Port device team_slave_0 added
[   56.160256][ T5850] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.165644][ T5846] team0: Port device team_slave_1 added
[   56.199564][ T5850] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.217294][ T5846] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.220417][ T5846] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   56.231547][ T5846] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.260154][ T5846] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.263059][ T5846] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   56.273867][ T5846] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.323520][ T5850] team0: Port device team_slave_0 added
[   56.326323][ T5855] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.329813][ T5855] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.333097][ T5855] bridge_slave_0: entered allmulticast mode
[   56.336844][ T5855] bridge_slave_0: entered promiscuous mode
[   56.341666][ T5855] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.344536][ T5855] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.347466][ T5855] bridge_slave_1: entered allmulticast mode
[   56.351728][ T5855] bridge_slave_1: entered promiscuous mode
[   56.356932][ T5850] team0: Port device team_slave_1 added
[   56.436034][ T5855] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.440581][ T5850] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.443442][ T5850] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   56.454420][ T5850] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.460985][ T5850] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.463769][ T5850] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   56.474738][ T5850] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.484541][ T5846] hsr_slave_0: entered promiscuous mode
[   56.487896][ T5846] hsr_slave_1: entered promiscuous mode
[   56.493824][ T5855] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.551969][ T5855] team0: Port device team_slave_0 added
[   56.580442][ T5855] team0: Port device team_slave_1 added
[   56.621291][ T5850] hsr_slave_0: entered promiscuous mode
[   56.624403][ T5850] hsr_slave_1: entered promiscuous mode
[   56.627437][ T5850] debugfs: 'hsr0' already exists in 'hsr'
[   56.630703][ T5850] Cannot create hsr debugfs directory
[   56.663073][ T5855] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.666032][ T5855] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   56.676569][ T5855] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.683350][ T5855] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.686256][ T5855] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   56.696952][ T5855] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.843024][ T5855] hsr_slave_0: entered promiscuous mode
[   56.846505][ T5855] hsr_slave_1: entered promiscuous mode
[   56.850021][ T5855] debugfs: 'hsr0' already exists in 'hsr'
[   56.852439][ T5855] Cannot create hsr debugfs directory
[   56.995313][ T5846] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   57.024716][ T5846] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   57.046227][ T5846] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   57.069312][ T5846] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   57.107456][ T5850] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   57.114678][ T5850] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   57.123821][ T5850] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   57.142376][ T5850] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   57.185915][ T5855] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   57.192458][ T5855] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   57.207487][ T5855] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   57.213865][ T5855] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   57.340149][ T5846] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.384581][ T5846] 8021q: adding VLAN 0 to HW filter on device team0
[   57.390289][ T5850] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.403007][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.405452][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.419740][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.422066][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.433274][ T5850] 8021q: adding VLAN 0 to HW filter on device team0
[   57.445084][ T5855] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.453088][ T1090] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.455851][ T1090] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.470405][ T1090] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.473367][ T1090] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.491860][ T5855] 8021q: adding VLAN 0 to HW filter on device team0
[   57.507679][ T5846] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   57.522038][ T1090] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.524865][ T1090] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.560578][  T138] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.563294][  T138] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.579004][ T5236] Bluetooth: hci0: command tx timeout
[   57.581460][   T56] Bluetooth: hci1: command tx timeout
[   57.659614][ T5236] Bluetooth: hci2: command tx timeout
[   57.706458][ T5846] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.766522][ T5850] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.795767][ T5846] veth0_vlan: entered promiscuous mode
[   57.806036][ T5846] veth1_vlan: entered promiscuous mode
[   57.823086][ T5855] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.864584][ T5846] veth0_macvtap: entered promiscuous mode
[   57.874294][ T5846] veth1_macvtap: entered promiscuous mode
[   57.881021][ T5850] veth0_vlan: entered promiscuous mode
[   57.900978][ T5850] veth1_vlan: entered promiscuous mode
[   57.906331][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_0
[   57.933303][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.943451][ T5855] veth0_vlan: entered promiscuous mode
[   57.957552][   T13] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.968847][ T5855] veth1_vlan: entered promiscuous mode
[   57.973203][   T13] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.976599][   T13] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.987541][ T5850] veth0_macvtap: entered promiscuous mode
[   57.992406][   T13] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.015336][ T5850] veth1_macvtap: entered promiscuous mode
[   58.077274][ T5850] batman_adv: batadv0: Interface activated: batadv_slave_0
[   58.091205][ T5855] veth0_macvtap: entered promiscuous mode
[   58.099685][ T5850] batman_adv: batadv0: Interface activated: batadv_slave_1
[   58.104457][ T5855] veth1_macvtap: entered promiscuous mode
[   58.113266][ T1203] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.116654][ T1203] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.133205][ T5694] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.142740][ T5694] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.151569][ T5694] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.167266][ T5694] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.189821][ T5855] batman_adv: batadv0: Interface activated: batadv_slave_0
[   58.199248][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.205360][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.217241][ T5855] batman_adv: batadv0: Interface activated: batadv_slave_1
[   58.239748][ T5694] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.244070][ T5694] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.247808][ T5694] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.266562][ T5694] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.287238][ T5846] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   58.342886][ T3657] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.346169][ T3657] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.380367][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.383678][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.407458][ T3657] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.413241][ T3657] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.441674][   T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.445178][   T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.579368][ T5929] loop0: detected capacity change from 0 to 512
[   58.599224][ T5929] EXT4-fs warning (device loop0): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[   58.608991][ T5929] EXT4-fs warning (device loop0): dx_probe:849: Enable large directory feature to access it
[   58.612651][ T5929] EXT4-fs warning (device loop0): dx_probe:934: inode #2: comm syz.0.8: Corrupt directory, running e2fsck is recommended
[   58.632987][ T5929] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117
[   58.659843][ T5929] EXT4-fs error (device loop0): ext4_iget_extra_inode:5075: inode #15: comm syz.0.8: corrupted in-inode xattr: invalid ea_ino
[   58.679996][ T5929] EXT4-fs (loop0): Remounting filesystem read-only
[   58.684104][ T5929] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.734818][ T5850] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.770418][ T5938] =======================================================
[   58.770418][ T5938] WARNING: The mand mount option has been deprecated and
[   58.770418][ T5938]          and is ignored by this kernel. Remove the mand
[   58.770418][ T5938]          option from the mount to silence this warning.
[   58.770418][ T5938] =======================================================
[   58.848621][ T5941] warning: `syz.0.11' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   58.947480][ T5930] loop1: detected capacity change from 0 to 32768
[   58.965720][ T5945] loop0: detected capacity change from 0 to 1024
[   58.994109][ T5930] ocfs2: Mounting device (7,1) on (node local, slot 0) with writeback data mode.
[   59.040251][ T5945] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   59.083140][ T5945] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   59.087887][ T5953] loop2: detected capacity change from 0 to 1024
[   59.108424][ T5945] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[   59.108540][ T5953] EXT4-fs: Ignoring removed nobh option
[   59.116318][ T5945] EXT4-fs (loop0): This should not happen!! Data will be lost
[   59.116318][ T5945] 
[   59.121024][ T5945] EXT4-fs (loop0): Total free blocks count 0
[   59.123633][ T5945] EXT4-fs (loop0): Free/Dirty block details
[   59.126197][ T5945] EXT4-fs (loop0): free_blocks=68451041280
[   59.130012][ T5945] EXT4-fs (loop0): dirty_blocks=80
[   59.132336][ T5945] EXT4-fs (loop0): Block reservation details
[   59.134850][ T5945] EXT4-fs (loop0): i_reserved_data_blocks=5
[   59.144357][ T5855] ocfs2: Unmounting device (7,1) on (node local)
[   59.149232][ T5953] EXT4-fs: Ignoring removed bh option
[   59.163314][   T36] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 68 with error 28
[   59.172126][ T5953] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   59.294472][ T5846] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.306719][ T5958] loop0: detected capacity change from 0 to 2048
[   59.348925][ T5958] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   59.462777][ T5966] netlink: 104 bytes leftover after parsing attributes in process `syz.0.19'.
[   59.572112][ T5974] loop1: detected capacity change from 0 to 512
[   59.672337][ T5236] Bluetooth: hci0: command tx timeout
[   59.674686][ T5236] Bluetooth: hci1: command tx timeout
[   59.695999][ T5980] sctp: [Deprecated]: syz.0.28 (pid 5980) Use of int in max_burst socket option.
[   59.695999][ T5980] Use struct sctp_assoc_value instead
[   59.738663][   T56] Bluetooth: hci2: command tx timeout
[   59.916635][ T5996] netlink: 4 bytes leftover after parsing attributes in process `syz.0.35'.
[   60.153112][ T6016] loop1: detected capacity change from 0 to 512
[   60.156897][ T6016] EXT4-fs (loop1): blocks per group (255) and clusters per group (8192) inconsistent
[   60.304077][ T6025] netlink: 'syz.1.47': attribute type 1 has an invalid length.
[   60.348717][ T5885] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   60.508331][ T5885] usb 3-1: Using ep0 maxpacket: 8
[   60.520913][ T5885] usb 3-1: New USB device found, idVendor=05e3, idProduct=0502, bcdDevice=dc.f4
[   60.528437][ T5885] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   60.536950][ T5885] usb 3-1: Product: syz
[   60.538946][ T5885] usb 3-1: Manufacturer: syz
[   60.540827][ T5885] usb 3-1: SerialNumber: syz
[   60.549394][ T5885] usb 3-1: config 0 descriptor??
[   60.564296][ T5885] gl620a 3-1:0.0: probe with driver gl620a failed with error -22
[   60.820478][ T1270] usb 3-1: USB disconnect, device number 2
[   61.561613][ T6060] loop2: detected capacity change from 0 to 32768
[   61.738624][ T5236] Bluetooth: hci0: command tx timeout
[   61.740895][   T56] Bluetooth: hci1: command tx timeout
[   61.820334][   T56] Bluetooth: hci2: command tx timeout
[   62.016835][ T5901] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   62.063120][ T6083] netlink: 'syz.0.71': attribute type 29 has an invalid length.
[   62.067503][ T6083] netlink: 'syz.0.71': attribute type 29 has an invalid length.
[   62.168235][ T5901] usb 3-1: Using ep0 maxpacket: 8
[   62.172390][ T5901] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   62.176568][ T5901] usb 3-1: config 0 has no interfaces?
[   62.182248][ T5901] usb 3-1: New USB device found, idVendor=04a5, idProduct=3003, bcdDevice=44.b2
[   62.186424][ T5901] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   62.190189][ T5901] usb 3-1: Product: syz
[   62.192174][ T5901] usb 3-1: Manufacturer: syz
[   62.194319][ T5901] usb 3-1: SerialNumber: syz
[   62.207313][ T5901] usb 3-1: config 0 descriptor??
[   62.422170][ T2206] usb 3-1: USB disconnect, device number 3
[   63.203834][ T6111] netlink: 4 bytes leftover after parsing attributes in process `syz.2.83'.
[   63.291672][ T6114] netlink: 40 bytes leftover after parsing attributes in process `syz.1.85'.
[   63.360706][ T6111] loop2: detected capacity change from 0 to 1024
[   63.393858][ T6111] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   63.399860][ T6111] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   63.474178][ T6111] jbd2_journal_init_inode: Cannot locate journal superblock
[   63.487325][ T6111] EXT4-fs (loop2): Could not load journal inode
[   63.703652][ T6121] netlink: 64 bytes leftover after parsing attributes in process `syz.1.87'.
[   63.828552][ T5236] Bluetooth: hci0: command tx timeout
[   63.831040][   T56] Bluetooth: hci1: command tx timeout
[   63.899164][   T56] Bluetooth: hci2: command tx timeout
[   64.284460][ T6130] loop2: detected capacity change from 0 to 32768
[   64.301051][ T6130] (syz.2.91,6130,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[   64.314233][ T6130] (syz.2.91,6130,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[   64.327169][ T6130] (syz.2.91,6130,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x729e4f9c, computed 0x295f958d. Applying ECC.
[   64.337417][ T6130] JBD2: Ignoring recovery information on journal
[   64.386586][ T6130] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[   64.393649][ T6130] (syz.2.91,6130,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x729e4f9c, computed 0x295f958d. Applying ECC.
[   64.770155][ T6130] (syz.2.91,6130,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xdf8356d3, computed 0xa1ff4175. Applying ECC.
[   64.781637][ T6130] (syz.2.91,6130,1):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0xdf8356d3, computed 0xfd02ac81
[   64.786920][ T6130] (syz.2.91,6130,1):ocfs2_read_quota_phys_block:160 ERROR: status = -5
[   64.791272][ T6130] (syz.2.91,6130,1):ocfs2_quota_read:201 ERROR: status = -5
[   64.794756][ T6130] Quota error (device loop2): find_block_dqentry: Can't read quota tree block 6
[   64.801080][ T6130] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[   64.808419][ T6130] (syz.2.91,6130,1):ocfs2_acquire_dquot:890 ERROR: status = -5
[   64.816023][ T6130] (syz.2.91,6130,1):ocfs2_mknod:317 ERROR: status = -5
[   64.820755][ T6130] (syz.2.91,6130,1):ocfs2_mknod:505 ERROR: status = -5
[   64.823969][ T6130] (syz.2.91,6130,1):ocfs2_mkdir:661 ERROR: status = -5
[   64.859802][ T5846] ocfs2: Unmounting device (7,2) on (node local)
[   65.226402][ T6164] loop1: detected capacity change from 0 to 1024
[   65.237085][ T6164] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   65.540509][ T6187] loop2: detected capacity change from 0 to 24
[   65.545036][ T6188] loop1: detected capacity change from 0 to 65
[   65.554532][ T6188] BFS-fs: bfs_fill_super(): NOTE: filesystem loop1 was created with 512 inodes, the real maximum is 511, mounting anyway
[   65.615674][ T6190] netlink: 12 bytes leftover after parsing attributes in process `syz.2.118'.
[   65.700225][ T6194] loop1: detected capacity change from 0 to 164
[   65.729738][ T6194] Unsupported NM flag settings (240)
[   65.999484][ T6212] fuse: Bad value for 'fd'
[   66.110504][ T6213] loop1: detected capacity change from 0 to 4096
[   66.495462][ T5846] syz-executor (5846) used greatest stack depth: 19032 bytes left
[   66.516279][   T13] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.574412][   T13] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.648798][   T13] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.719453][   T13] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.856297][ T5236] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   66.860782][ T5236] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   66.864400][ T5236] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   66.870111][ T5236] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   66.873812][ T5236] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   66.900549][   T13] bridge_slave_1: left allmulticast mode
[   66.903565][   T13] bridge_slave_1: left promiscuous mode
[   66.906912][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.915459][   T13] bridge_slave_0: left allmulticast mode
[   66.917994][   T13] bridge_slave_0: left promiscuous mode
[   66.922004][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.183826][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   67.190561][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   67.198222][   T13] bond0 (unregistering): Released all slaves
[   67.616108][ T6243] loop1: detected capacity change from 0 to 512
[   67.636867][ T6243] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   67.650563][ T6243] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[   67.665103][ T6243] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[   67.680194][ T6243] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[   67.691737][ T6243] System zones: 0-2, 18-18, 34-34
[   67.698338][ T6243] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.143: iget: bad i_size value: 360287970189639680
[   67.709048][ T6243] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.143: couldn't read orphan inode 15 (err -117)
[   67.716738][ T6243] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.793875][ T5855] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.952008][   T13] hsr_slave_0: left promiscuous mode
[   67.960655][   T13] hsr_slave_1: left promiscuous mode
[   67.963524][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   67.966454][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[   67.990463][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   68.032303][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[   68.063583][   T13] veth1_macvtap: left promiscuous mode
[   68.066033][   T13] veth0_macvtap: left promiscuous mode
[   68.079054][   T13] veth1_vlan: left promiscuous mode
[   68.081549][   T13] veth0_vlan: left promiscuous mode
[   68.395031][   T13] team0 (unregistering): Port device team_slave_1 removed
[   68.421809][   T13] team0 (unregistering): Port device team_slave_0 removed
[   68.674410][ T6264] netlink: 'syz.1.146': attribute type 1 has an invalid length.
[   68.677419][ T6264] netlink: 'syz.1.146': attribute type 4 has an invalid length.
[   68.680366][ T6264] netlink: 8 bytes leftover after parsing attributes in process `syz.1.146'.
[   68.693428][ T6234] chnl_net:caif_netlink_parms(): no params data found
[   68.807359][ T6271] loop1: detected capacity change from 0 to 4096
[   68.925289][ T6271] ntfs3(loop1): failed to convert "0080" to macinuit
[   68.942921][ T5236] Bluetooth: hci0: command tx timeout
[   68.968412][ T6271] ntfs3(loop1): failed to convert name for inode 1e.
[   68.975850][ T6271] ntfs3(loop1): ino=1f, mi_enum_attr
[   69.010332][ T6234] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.012813][ T6234] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.026574][ T6234] bridge_slave_0: entered allmulticast mode
[   69.046532][ T6234] bridge_slave_0: entered promiscuous mode
[   69.056521][ T6234] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.065282][ T6234] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.084178][ T6234] bridge_slave_1: entered allmulticast mode
[   69.094477][ T6234] bridge_slave_1: entered promiscuous mode
[   69.181136][ T6234] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   69.190330][ T6234] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   69.302128][ T6234] team0: Port device team_slave_0 added
[   69.305699][ T6234] team0: Port device team_slave_1 added
[   69.347462][ T6234] batman_adv: batadv0: Adding interface: batadv_slave_0
[   69.356685][ T6234] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   69.375170][ T6291] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   69.402358][ T6234] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   69.425729][ T6234] batman_adv: batadv0: Adding interface: batadv_slave_1
[   69.432915][ T6234] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   69.463985][ T6234] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   69.720088][ T6234] hsr_slave_0: entered promiscuous mode
[   69.730149][ T6234] hsr_slave_1: entered promiscuous mode
[   69.960301][ T6234] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   69.965989][ T6234] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   69.972965][ T6234] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   69.983902][ T6234] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   70.132892][ T6328] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   70.186236][ T6234] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.197783][ T6234] 8021q: adding VLAN 0 to HW filter on device team0
[   70.199890][ T6332] fuse: Bad value for 'fd'
[   70.205406][ T1089] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.207828][ T1089] bridge0: port 1(bridge_slave_0) entered forwarding state
[   70.223439][ T1089] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.226954][ T1089] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.506702][ T6234] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.562655][ T6359] netlink: 10 bytes leftover after parsing attributes in process `syz.1.174'.
[   70.574904][ T6234] veth0_vlan: entered promiscuous mode
[   70.587226][ T6234] veth1_vlan: entered promiscuous mode
[   70.615485][ T6234] veth0_macvtap: entered promiscuous mode
[   70.620852][ T6234] veth1_macvtap: entered promiscuous mode
[   70.639801][ T6234] batman_adv: batadv0: Interface activated: batadv_slave_0
[   70.646771][ T6234] batman_adv: batadv0: Interface activated: batadv_slave_1
[   70.654158][ T6293] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   70.657310][ T6293] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   70.665510][ T6293] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   70.673076][ T6293] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   70.713769][ T1090] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.723728][ T1090] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   70.786655][ T1090] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.795577][ T1090] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   70.797135][ T6369] netlink: 4 bytes leftover after parsing attributes in process `syz.1.179'.
[   70.994682][ T6372] loop1: detected capacity change from 0 to 256
[   71.058147][ T5236] Bluetooth: hci0: command tx timeout
[   71.076991][ T6372] exFAT-fs (loop1): failed to load upcase table (idx : 0x0001e4a3, chksum : 0x009ea0b8, utbl_chksum : 0x7319d30d)
[   71.183764][ T1360] ieee802154 phy0 wpan0: encryption failed: -22
[   71.186481][ T1360] ieee802154 phy1 wpan1: encryption failed: -22
[   71.303956][ T6379] netlink: 'syz.1.181': attribute type 1 has an invalid length.
[   71.307060][ T6379] netlink: 'syz.1.181': attribute type 1 has an invalid length.
[   72.185963][ T6407] netlink: 24 bytes leftover after parsing attributes in process `syz.0.194'.
[   72.190121][ T6407] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[   72.409849][ T6421] loop3: detected capacity change from 0 to 1024
[   72.427438][ T6421] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   72.433747][ T6421] ext4 filesystem being mounted at /7/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.527960][ T6421] EXT4-fs error (device loop3): ext4_free_blocks:6706: comm syz.3.201: Freeing blocks not in datazone - block = 0, count = 16
[   72.559728][ T3657] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   72.567496][ T3657] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 4 with error 28
[   72.572923][ T3657] EXT4-fs (loop3): This should not happen!! Data will be lost
[   72.572923][ T3657] 
[   72.577180][ T3657] EXT4-fs (loop3): Total free blocks count 0
[   72.580209][ T3657] EXT4-fs (loop3): Free/Dirty block details
[   72.582720][ T3657] EXT4-fs (loop3): free_blocks=4293918736
[   72.585156][ T3657] EXT4-fs (loop3): dirty_blocks=16
[   72.587235][ T3657] EXT4-fs (loop3): Block reservation details
[   72.590353][ T3657] EXT4-fs (loop3): i_reserved_data_blocks=1
[   72.596112][ T6234] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   72.966633][ T6429] loop3: detected capacity change from 0 to 32768
[   72.987827][   T33] audit: type=1800 audit(1759062955.451:2): pid=6429 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.203" name="file1" dev="loop3" ino=4 res=0 errno=0
[   72.988011][ T6429] read_mapping_page failed!
[   73.010979][ T6429] ERROR: (device loop3): txCommit: 
[   73.010979][ T6429] 
[   73.028759][ T6429] read_mapping_page failed!
[   73.030833][ T6429] ERROR: (device loop3): txCommit: 
[   73.030833][ T6429] 
[   73.078285][   T47] usb 2-1: new full-speed USB device number 2 using dummy_hcd
[   73.108720][ T5236] Bluetooth: hci0: command tx timeout
[   73.162071][ T6433] Illegal XDP return value 4294967282 on prog  (id 21) dev syz_tun, expect packet loss!
[   73.241890][   T47] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 33437, setting to 64
[   73.252397][ T6435] loop3: detected capacity change from 0 to 4096
[   73.256718][   T47] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[   73.275510][ T6435] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512).
[   73.284386][   T47] usb 2-1: New USB device found, idVendor=054c, idProduct=06c1, bcdDevice=c2.87
[   73.289222][   T47] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   73.292975][   T47] usb 2-1: Product: syz
[   73.294768][   T47] usb 2-1: Manufacturer: syz
[   73.296982][   T47] usb 2-1: SerialNumber: syz
[   73.300450][ T6435] ntfs3(loop3): try to read out of volume at offset 0xffffffff0000
[   73.302473][   T47] usb 2-1: config 0 descriptor??
[   73.303089][ T6435] ntfs3(loop3): Failed to initialize $Bitmap (-5).
[   73.305919][ T6431] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   73.320000][    C1] port100 2-1:0.0: NFC: Urb failure (status -71)
[   73.322911][   T47] port100 2-1:0.0: NFC: Could not get supported command types
[   73.397135][ T6439] veth3: entered promiscuous mode
[   73.399953][ T6439] veth3: entered allmulticast mode
[   73.525291][   T10] usb 2-1: USB disconnect, device number 2
[   73.596344][ T6456] trusted_key: encrypted_key: insufficient parameters specified
[   73.976452][ T6467] overlay: Unknown parameter ':'
[   74.569220][ T6469] loop1: detected capacity change from 0 to 40427
[   74.577132][ T6469] F2FS-fs (loop1): invalid crc value
[   74.650089][ T6469] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   74.655662][ T6469] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   74.704923][ T5855] syz-executor: attempt to access beyond end of device
[   74.704923][ T5855] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   74.711985][ T5855] CPU: 0 UID: 0 PID: 5855 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[   74.712003][ T5855] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   74.712011][ T5855] Call Trace:
[   74.712016][ T5855]  <TASK>
[   74.712023][ T5855]  dump_stack_lvl+0x189/0x250
[   74.712046][ T5855]  ? __pfx_dump_stack_lvl+0x10/0x10
[   74.712061][ T5855]  ? __pfx_queue_work_on+0x10/0x10
[   74.712073][ T5855]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   74.712086][ T5855]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   74.712107][ T5855]  f2fs_handle_critical_error+0x37c/0x540
[   74.712128][ T5855]  f2fs_write_end_io+0x886/0xb60
[   74.712156][ T5855]  __submit_merged_bio+0x27a/0x6a0
[   74.712196][ T5855]  __submit_merged_write_cond+0x255/0x530
[   74.712222][ T5855]  f2fs_write_data_pages+0x261d/0x3000
[   74.712263][ T5855]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   74.712333][ T5855]  ? __lock_acquire+0xab9/0xd20
[   74.712356][ T5855]  ? do_raw_spin_lock+0x121/0x290
[   74.712379][ T5855]  ? do_raw_spin_unlock+0x4d/0x240
[   74.712394][ T5855]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   74.712409][ T5855]  do_writepages+0x32e/0x550
[   74.712431][ T5855]  ? do_raw_spin_unlock+0x4d/0x240
[   74.712449][ T5855]  filemap_fdatawrite+0x199/0x240
[   74.712463][ T5855]  ? __pfx_filemap_fdatawrite+0x10/0x10
[   74.712520][ T5855]  ? do_raw_spin_unlock+0x4d/0x240
[   74.712539][ T5855]  f2fs_sync_dirty_inodes+0x31f/0x830
[   74.712567][ T5855]  f2fs_write_checkpoint+0x93e/0x2440
[   74.712603][ T5855]  ? __lock_acquire+0xab9/0xd20
[   74.712642][ T5855]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[   74.712701][ T5855]  kill_f2fs_super+0x2cc/0x6d0
[   74.712723][ T5855]  ? __pfx_kill_f2fs_super+0x10/0x10
[   74.712751][ T5855]  ? shrinker_free+0x2ce/0x3e0
[   74.712770][ T5855]  deactivate_locked_super+0xbc/0x130
[   74.712790][ T5855]  cleanup_mnt+0x425/0x4c0
[   74.712807][ T5855]  ? lockdep_hardirqs_on+0x9c/0x150
[   74.712823][ T5855]  task_work_run+0x1d4/0x260
[   74.712840][ T5855]  ? __pfx_task_work_run+0x10/0x10
[   74.712852][ T5855]  ? __x64_sys_umount+0x122/0x160
[   74.712868][ T5855]  ? exit_to_user_mode_loop+0x40/0x130
[   74.712888][ T5855]  exit_to_user_mode_loop+0xe9/0x130
[   74.712902][ T5855]  do_syscall_64+0x2bd/0xfa0
[   74.712917][ T5855]  ? lockdep_hardirqs_on+0x9c/0x150
[   74.712931][ T5855]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.712942][ T5855]  ? exc_page_fault+0xab/0x100
[   74.712958][ T5855]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.712970][ T5855] RIP: 0033:0x7fd48d58ff57
[   74.712983][ T5855] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   74.712992][ T5855] RSP: 002b:00007ffd5568df98 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   74.713006][ T5855] RAX: 0000000000000000 RBX: 00007fd48d611c2d RCX: 00007fd48d58ff57
[   74.713013][ T5855] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd5568e050
[   74.713021][ T5855] RBP: 00007ffd5568e050 R08: 0000000000000000 R09: 0000000000000000
[   74.713028][ T5855] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd5568f0e0
[   74.713035][ T5855] R13: 00007fd48d611c2d R14: 00000000000121a5 R15: 00007ffd5568f120
[   74.713058][ T5855]  </TASK>
[   74.715786][ T5855] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[   75.188672][ T5236] Bluetooth: hci0: command tx timeout
[   75.699429][ T6501] process 'syz.0.231' launched './file2' with NULL argv: empty string added
[   76.968154][   T47] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   76.969450][ T6526] vlan0: entered promiscuous mode
[   77.117166][ T6534] vxcan1: tx address claim with dest, not broadcast
[   77.129376][   T47] usb 2-1: Using ep0 maxpacket: 8
[   77.132916][   T47] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   77.157651][   T47] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   77.164094][   T47] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[   77.176971][   T47] usb 2-1: New USB device found, idVendor=046d, idProduct=c293, bcdDevice= 0.00
[   77.182323][   T47] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   77.196655][   T47] usb 2-1: config 0 descriptor??
[   77.210279][ T6541] IPVS: sync thread started: state = MASTER, mcast_ifn = hsr0, syncid = 4, id = 0
[   77.616511][   T47] logitech 0003:046D:C293.0001: unknown main item tag 0x0
[   77.621416][   T47] logitech 0003:046D:C293.0001: unknown main item tag 0x0
[   77.623916][   T47] logitech 0003:046D:C293.0001: unknown main item tag 0x0
[   77.626951][   T47] logitech 0003:046D:C293.0001: unknown main item tag 0x0
[   77.642530][   T47] logitech 0003:046D:C293.0001: hidraw0: USB HID v0.00 Device [HID 046d:c293] on usb-dummy_hcd.1-1/input0
[   77.647639][   T47] logitech 0003:046D:C293.0001: no inputs found
[   77.819400][   T47] usb 2-1: USB disconnect, device number 3
[   77.821496][ T6578] netlink: 'syz.3.265': attribute type 3 has an invalid length.
[   78.409223][   T47] usb 4-1: new full-speed USB device number 2 using dummy_hcd
[   78.440137][ T6599] kAFS: unparsable volume name
[   78.580925][   T47] usb 4-1: config 0 has an invalid interface number: 128 but max is 0
[   78.585590][   T47] usb 4-1: config 0 has no interface number 0
[   78.591138][   T47] usb 4-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[   78.595077][   T47] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   78.598581][   T47] usb 4-1: Product: syz
[   78.601929][   T47] usb 4-1: Manufacturer: syz
[   78.604703][   T47] usb 4-1: SerialNumber: syz
[   78.610388][   T47] usb 4-1: config 0 descriptor??
[   78.809480][ T6610] loop1: detected capacity change from 0 to 128
[   78.845907][   T33] audit: type=1800 audit(1759062961.311:3): pid=6610 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.280" name="file1" dev="loop1" ino=1048604 res=0 errno=0
[   79.044891][   T47] usb 4-1: Firmware: major: 0, minor: 84, hardware type: UNKNOWN (103)
[   79.073683][ T6614] loop1: detected capacity change from 0 to 512
[   79.120514][ T6614] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.125826][ T6614] ext4 filesystem being mounted at /85/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   79.164794][ T5855] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.247316][   T47] usb 4-1: failed to fetch extended address, random address set
[   79.258711][   T47] usb 4-1: atusb_probe: initialization failed, error = -524
[   79.262892][   T47] atusb 4-1:0.128: probe with driver atusb failed with error -524
[   79.276313][   T47] usb 4-1: USB disconnect, device number 2
[   80.036625][ T6637] loop1: detected capacity change from 0 to 2048
[   80.045804][ T6637] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[   80.292442][ T6650] mmap: syz.3.297 (6650) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   80.538190][ T1270] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[   80.698928][ T1270] usb 2-1: Using ep0 maxpacket: 16
[   80.712622][ T1270] usb 2-1: unable to get BOS descriptor or descriptor too short
[   80.722421][ T1270] usb 2-1: config 13 has an invalid interface number: 50 but max is 0
[   80.725766][ T1270] usb 2-1: config 13 has an invalid descriptor of length 0, skipping remainder of the config
[   80.734946][ T1270] usb 2-1: config 13 has no interface number 0
[   80.738379][ T1270] usb 2-1: config 13 interface 50 altsetting 167 bulk endpoint 0x8 has invalid maxpacket 16
[   80.742699][ T1270] usb 2-1: config 13 interface 50 altsetting 167 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   80.752977][ T1270] usb 2-1: config 13 interface 50 has no altsetting 0
[   80.770491][ T1270] usb 2-1: New USB device found, idVendor=1aca, idProduct=b28e, bcdDevice=92.32
[   80.774474][ T1270] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   80.778438][ T1270] usb 2-1: Product: syz
[   80.780263][ T1270] usb 2-1: Manufacturer: syz
[   80.782187][ T1270] usb 2-1: SerialNumber: syz
[   80.794625][ T6648] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   81.071604][ T1270] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[   81.074649][ T1270] usb 2-1: MIDIStreaming interface descriptor not found
[   81.131350][ T1270] usb 2-1: USB disconnect, device number 4
[   81.263125][ T6663] udevd[6663]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:13.50/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   82.671909][ T6693] netlink: 8 bytes leftover after parsing attributes in process `syz.3.314'.
[   82.727859][ T6697] loop3: detected capacity change from 0 to 512
[   82.747873][ T6697] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   82.760076][ T6697] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   82.767867][ T6697] EXT4-fs (loop3): 1 truncate cleaned up
[   82.771387][ T6697] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.801776][ T6234] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.776233][ T6746] loop1: detected capacity change from 0 to 32768
[   83.784855][ T6746] bcachefs (/dev/loop1): error validating superblock: Invalid superblock section clean: entry type btree_keys overruns end of section
[   83.784855][ T6746] clean (size 2912):
[   83.784855][ T6746] flags:          0
[   83.784855][ T6746] journal_seq:    8
[   83.784855][ T6746] prio_ptrs: 
[   83.784855][ T6746] usage: type=key_version v=0
[   83.784855][ T6746] usage: type=reserved v=0
[   83.784855][ T6746] usage: type=reserved v=0
[   83.784855][ T6746] usage: type=reserved v=0
[   83.784855][ T6746] usage: type=reserved v=0
[   83.784855][ T6746] data_usage: btree: 1/1 [0]=2816
[   83.784855][ T6746] data_usage: journal: 1/1 [0]=0
[   83.784855][ T6746] data_usage: user: 1/1 [0]=32
[   83.784855][ T6746] dev_usage: dev=0  
[   83.784855][ T6746]   free: buckets=83 sectors=0 fragmented=0
[   83.784855][ T6746]   sb: buckets=25 sectors=6152 fragmented=248
[   83.784855][ T6746]   journal: buckets=8 sectors=2048 fragmented=0
[   83.784855][ T6746]   btree: buckets=11 sectors=2816 fragmented=0
[   83.784855][ T6746]   user: buckets=1 sectors=32 fragmented=224
[   83.784855][ T6746]   cached: buckets=0 sectors=0 fragmented=0
[   83.784855][ T6746]   parity: buckets=0 sectors=0 fragmented=0
[   83.784855][ T6746]   stripe: buckets=0 sectors=0 fragmented=0
[   83.784855][ T6746]   need_gc_gens: buckets=0 sectors=0 fragmented=0
[   83.784855][ T6746]   need_discard: buckets=0 sectors=0 fragmented=0
[   83.784855][ T6746] clock: read=0
[   83.784855][ T6746] clock: write=1288
[   83.784855][ T6746] btree_root: btree=extents level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 249e7ae2af8ee3
[   83.785011][ T6746] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[   84.014670][ T6762] capability: warning: `syz.1.344' uses deprecated v2 capabilities in a way that may be insecure
[   84.131317][ T6768] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[   84.159024][ T6770] tmpfs: Bad value for 'mpol'
[   84.443201][ T6788] loop3: detected capacity change from 0 to 1024
[   84.450269][ T6788] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 0 not in group (block 5)!
[   84.457423][ T6788] EXT4-fs (loop3): group descriptors corrupted!
[   84.481283][ T6788] loop3: detected capacity change from 0 to 1024
[   84.490152][ T6788] EXT4-fs (loop3): bad geometry: first data block 0 is beyond end of filesystem (0)
[   84.566798][ T6792] binder: 6791:6792 ioctl c018620c 2000000000c0 returned -22
[   84.921711][   T47] IPVS: starting estimator thread 0...
[   84.924219][ T6822] IPVS: lblc: FWM 3 0x00000003 - no destination available
[   85.008306][ T6823] IPVS: using max 80 ests per chain, 192000 per kthread
[   85.804332][ T6867] netlink: 100 bytes leftover after parsing attributes in process `syz.0.392'.
[   86.568799][   T24] cfg80211: failed to load regulatory.db
[   86.685509][   T33] audit: type=1326 audit(1759062969.151:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6903 comm="syz.0.409" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb28638ec29 code=0x7ffc0000
[   86.694619][   T33] audit: type=1326 audit(1759062969.151:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6903 comm="syz.0.409" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb28638ec29 code=0x7ffc0000
[   86.706909][   T33] audit: type=1326 audit(1759062969.151:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6903 comm="syz.0.409" exe="/syz-executor" sig=0 arch=c000003e syscall=154 compat=0 ip=0x7fb28638ec29 code=0x7ffc0000
[   86.716104][   T33] audit: type=1326 audit(1759062969.151:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6903 comm="syz.0.409" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb28638ec29 code=0x7ffc0000
[   86.872367][   T47] usb 2-1: new full-speed USB device number 5 using dummy_hcd
[   87.048742][   T47] usb 2-1: unable to get BOS descriptor or descriptor too short
[   87.052823][   T47] usb 2-1: not running at top speed; connect to a high speed hub
[   87.058617][   T47] usb 2-1: config 4 has an invalid interface number: 156 but max is 0
[   87.062011][   T47] usb 2-1: config 4 has no interface number 0
[   87.064569][   T47] usb 2-1: config 4 interface 156 has no altsetting 0
[   87.080422][   T47] usb 2-1: New USB device found, idVendor=0545, idProduct=800c, bcdDevice= 3.0a
[   87.084257][   T47] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   87.087532][   T47] usb 2-1: Product: syz
[   87.089482][   T47] usb 2-1: Manufacturer: syz
[   87.091471][   T47] usb 2-1: SerialNumber: syz
[   87.273210][ T6916] loop3: detected capacity change from 0 to 32768
[   87.305271][ T6916] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   87.317883][   T47] usb 2-1: USB disconnect, device number 5
[   87.319171][ T6916] XFS (loop3): Ending clean mount
[   87.326309][ T6916] XFS (loop3): Quotacheck needed: Please wait.
[   87.349917][ T6916] XFS (loop3): Quotacheck: Done.
[   87.378270][ T6234] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   87.610850][ T6934] loop3: detected capacity change from 0 to 32768
[   87.614688][ T6934] bcachefs (/dev/loop3): error validating superblock: Invalid superblock section journal: journal bucket 128 past end of device (nbuckets 128)
[   87.614688][ T6934] journal (size 32):
[   87.614688][ T6934] Buckets:  9 7 128
[   87.614688][ T6934] 
[   87.622904][ T6934] bcachefs: bch2_fs_get_tree() error: invalid_sb_journal
[   87.664329][ T6936] xt_l2tp: unknown flags: 10
[   87.696599][ T6938] netlink: 'syz.3.420': attribute type 1 has an invalid length.
[   87.861323][ T6950] bond0: Unable to set down delay as MII monitoring is disabled
[   87.905253][ T6954] loop1: detected capacity change from 0 to 2048
[   87.935051][ T6956] netlink: 32 bytes leftover after parsing attributes in process `syz.3.429'.
[   88.011228][ T5296]  loop1: p1 < > p4
[   88.013882][ T5296] loop1: p4 start 42180 is beyond EOD, truncated
[   88.019177][ T6954]  loop1: p1 < > p4
[   88.022429][ T6954] loop1: p4 start 42180 is beyond EOD, truncated
[   88.036054][   T10] IPVS: starting estimator thread 0...
[   88.129792][ T6966] IPVS: using max 79 ests per chain, 189600 per kthread
[   88.282769][   T10] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   88.370600][   T10] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   88.423417][ T5847] udevd[5847]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   88.442203][ T5847] udevd[5847]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   88.463849][ T5847] udevd[5847]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   88.881697][ T6991] netlink: 8 bytes leftover after parsing attributes in process `syz.0.444'.
[   88.885649][ T6991] netlink: 'syz.0.444': attribute type 2 has an invalid length.
[   89.765184][ T7027] Invalid ELF header magic: != ELF
[   89.935357][ T7035] loop3: detected capacity change from 0 to 4096
[   90.045289][ T7048] netlink: 'syz.1.467': attribute type 23 has an invalid length.
[   90.074917][ T7049] loop3: detected capacity change from 0 to 128
[   90.091943][ T7049] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[   90.099545][ T7049] hpfs: filesystem error: improperly stopped
[   90.101970][ T7049] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[   90.105124][ T7049] hpfs: You really don't want any checks? You are crazy...
[   90.108835][ T7049] hpfs: hpfs_map_sector(): read error
[   90.111167][ T7049] hpfs: code page support is disabled
[   90.114038][ T7049] hpfs: hpfs_map_4sectors(): unaligned read
[   90.117273][ T7049] hpfs: hpfs_map_4sectors(): unaligned read
[   90.120850][ T7049] hpfs: filesystem error: unable to find root dir
[   90.125770][ T7049] hpfs: hpfs_map_4sectors(): unaligned read
[   90.377521][   T33] audit: type=1326 audit(1759062972.841:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7058 comm="syz.0.475" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb28638ec29 code=0x7ffc0000
[   90.545298][   T33] audit: type=1326 audit(1759062972.841:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7058 comm="syz.0.475" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb28638ec29 code=0x7ffc0000
[   90.553121][   T33] audit: type=1326 audit(1759062972.861:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7058 comm="syz.0.475" exe="/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fb28638ec29 code=0x7ffc0000
[   90.562724][   T33] audit: type=1326 audit(1759062972.861:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7058 comm="syz.0.475" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb28638ec29 code=0x7ffc0000
[   90.571707][   T33] audit: type=1326 audit(1759062972.861:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7058 comm="syz.0.475" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb28638ec29 code=0x7ffc0000
[   90.583666][   T33] audit: type=1326 audit(1759062972.861:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7058 comm="syz.0.475" exe="/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fb28638ec29 code=0x7ffc0000
[   90.847183][ T7079] netlink: 'syz.0.484': attribute type 1 has an invalid length.
[   90.899316][ T7081] netlink: 8 bytes leftover after parsing attributes in process `syz.1.485'.
[   90.903076][ T7081] netlink: 20 bytes leftover after parsing attributes in process `syz.1.485'.
[   91.060058][ T7077] loop3: detected capacity change from 0 to 32768
[   91.103882][ T7077] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   91.136662][ T7077] XFS (loop3): Ending clean mount
[   91.142055][ T7077] XFS (loop3): Quotacheck needed: Please wait.
[   91.144534][ T7101] netlink: 24 bytes leftover after parsing attributes in process `syz.1.491'.
[   91.168502][ T7101] netlink: 24 bytes leftover after parsing attributes in process `syz.1.491'.
[   91.171001][ T7077] XFS (loop3): Quotacheck: Done.
[   91.219970][ T6234] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   92.463358][ T7138] loop1: detected capacity change from 0 to 512
[   92.500468][ T7138] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   92.506045][ T7138] ext4 filesystem being mounted at /145/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.513436][ T7147] fuse: Bad value for 'fd'
[   92.898171][   T10] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[   93.054717][   T10] usb 4-1: config 0 has no interfaces?
[   93.065713][   T10] usb 4-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[   93.069304][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   93.072050][   T10] usb 4-1: Product: syz
[   93.074768][   T10] usb 4-1: Manufacturer: syz
[   93.076682][   T10] usb 4-1: SerialNumber: syz
[   93.082424][   T10] usb 4-1: config 0 descriptor??
[   93.336602][ T7153] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   93.411857][   T10] usb 4-1: USB disconnect, device number 3
[   93.912639][ T5855] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.582800][ T7193] netlink: 68 bytes leftover after parsing attributes in process `syz.3.529'.
[   94.793702][ T7202] loop1: detected capacity change from 0 to 1024
[   94.798525][ T7202] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   94.813397][ T7202] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   94.816882][ T7202] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   94.897539][ T7202] JBD2: no valid journal superblock found
[   94.906071][ T7202] EXT4-fs (loop1): Could not load journal inode
[   95.549283][ T7216] ptrace attach of ""[7217] was attempted by "/syz-executor exec"[7216]
[   95.627467][ T7219] overlay: Bad value for 'workdir'
[   96.259336][ T7245] loop2: detected capacity change from 0 to 7
[   96.273035][ T7245] Dev loop2: unable to read RDB block 7
[   96.275477][ T7245]  loop2: unable to read partition table
[   96.277944][ T7245] loop2: partition table beyond EOD, truncated
[   96.293255][ T7245] loop_reread_partitions: partition scan of loop2 (被x ) failed (rc=-5)
[   97.130543][ T7268] netlink: 8 bytes leftover after parsing attributes in process `syz.0.559'.
[   97.136202][ T7268] netlink: 28 bytes leftover after parsing attributes in process `syz.0.559'.
[   98.212241][ T7284] pim6reg: entered allmulticast mode
[   98.241417][ T7283] pim6reg: left allmulticast mode
[   98.270245][ T7286] erspan0: entered promiscuous mode
[   98.352037][ T7290] sctp: [Deprecated]: syz.1.570 (pid 7290) Use of int in max_burst socket option deprecated.
[   98.352037][ T7290] Use struct sctp_assoc_value instead
[   98.632616][ T7306] sch_tbf: burst 2 is lower than device lo mtu (65550) !
[   98.642717][ T7306] Zero length message leads to an empty skb
[   98.711035][   T24] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[   98.889655][   T24] usb 4-1: Using ep0 maxpacket: 32
[   98.897807][   T24] usb 4-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[   98.901478][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   98.907957][   T24] usb 4-1: config 0 descriptor??
[   98.929941][   T24] gspca_main: sunplus-2.14.0 probing 041e:400b
[   99.136717][ T7323] pim6reg: entered allmulticast mode
[   99.981989][ T7339] loop1: detected capacity change from 0 to 4096
[   99.987148][ T7339] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  100.014082][ T7339] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  100.020964][ T7339] ntfs3(loop1): Failed to load $Extend (-22).
[  100.023634][ T7339] ntfs3(loop1): Failed to initialize $Extend.
[  100.193805][   T24] gspca_sunplus: reg_w_riv err -71
[  100.196160][   T24] sunplus 4-1:0.0: probe with driver sunplus failed with error -71
[  100.201231][   T24] usb 4-1: USB disconnect, device number 4
[  100.744382][ T7349] loop3: detected capacity change from 0 to 4096
[  100.766185][ T7349] NILFS (loop3): invalid segment: Checksum error in segment payload
[  100.776937][ T7349] NILFS (loop3): trying rollback from an earlier position
[  100.792455][ T7349] NILFS (loop3): recovery complete
[  100.797601][ T7353] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  101.456214][ T7370] overlayfs: failed to clone upperpath
[  101.744684][ T7366] loop1: detected capacity change from 0 to 40427
[  101.795143][ T7366] F2FS-fs (loop1): invalid crc value
[  101.900519][ T7374] syz.0.607 (7374) used greatest stack depth: 19000 bytes left
[  101.942411][ T7366] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  101.953119][ T7366] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[  102.041923][ T7366] syz.1.603: attempt to access beyond end of device
[  102.041923][ T7366] loop1: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[  102.050546][ T7366] syz.1.603: attempt to access beyond end of device
[  102.050546][ T7366] loop1: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  102.097198][ T5855] syz-executor: attempt to access beyond end of device
[  102.097198][ T5855] loop1: rw=2049, sector=45112, nr_sectors = 8 limit=40427
[  102.103547][ T5855] CPU: 0 UID: 0 PID: 5855 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  102.103564][ T5855] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  102.103570][ T5855] Call Trace:
[  102.103575][ T5855]  <TASK>
[  102.103580][ T5855]  dump_stack_lvl+0x189/0x250
[  102.103601][ T5855]  ? __pfx_dump_stack_lvl+0x10/0x10
[  102.103614][ T5855]  ? __pfx_queue_work_on+0x10/0x10
[  102.103623][ T5855]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  102.103636][ T5855]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  102.103679][ T5855]  f2fs_handle_critical_error+0x37c/0x540
[  102.103700][ T5855]  f2fs_write_end_io+0x886/0xb60
[  102.103729][ T5855]  __submit_merged_bio+0x27a/0x6a0
[  102.103746][ T5855]  __submit_merged_write_cond+0x255/0x530
[  102.103770][ T5855]  f2fs_write_data_pages+0x261d/0x3000
[  102.103813][ T5855]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  102.103863][ T5855]  ? do_raw_spin_lock+0x121/0x290
[  102.103905][ T5855]  ? __lock_acquire+0xab9/0xd20
[  102.103933][ T5855]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  102.103947][ T5855]  do_writepages+0x32e/0x550
[  102.103968][ T5855]  ? do_raw_spin_unlock+0x4d/0x240
[  102.103985][ T5855]  filemap_fdatawrite+0x199/0x240
[  102.103997][ T5855]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  102.104049][ T5855]  ? do_raw_spin_unlock+0x4d/0x240
[  102.104064][ T5855]  f2fs_sync_dirty_inodes+0x31f/0x830
[  102.104089][ T5855]  f2fs_write_checkpoint+0x93e/0x2440
[  102.104101][ T5855]  ? __lock_acquire+0xab9/0xd20
[  102.104138][ T5855]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  102.104194][ T5855]  kill_f2fs_super+0x2cc/0x6d0
[  102.104213][ T5855]  ? __pfx_kill_f2fs_super+0x10/0x10
[  102.104239][ T5855]  ? shrinker_free+0x2ce/0x3e0
[  102.104256][ T5855]  deactivate_locked_super+0xbc/0x130
[  102.104303][ T5855]  cleanup_mnt+0x425/0x4c0
[  102.104321][ T5855]  ? lockdep_hardirqs_on+0x9c/0x150
[  102.104336][ T5855]  task_work_run+0x1d4/0x260
[  102.104352][ T5855]  ? __pfx_task_work_run+0x10/0x10
[  102.104362][ T5855]  ? __x64_sys_umount+0x122/0x160
[  102.104376][ T5855]  ? exit_to_user_mode_loop+0x40/0x130
[  102.104393][ T5855]  exit_to_user_mode_loop+0xe9/0x130
[  102.104407][ T5855]  do_syscall_64+0x2bd/0xfa0
[  102.104418][ T5855]  ? lockdep_hardirqs_on+0x9c/0x150
[  102.104430][ T5855]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.104448][ T5855]  ? exc_page_fault+0xab/0x100
[  102.104462][ T5855]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.104471][ T5855] RIP: 0033:0x7fd48d58ff57
[  102.104482][ T5855] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  102.104490][ T5855] RSP: 002b:00007ffd5568df98 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  102.104503][ T5855] RAX: 0000000000000000 RBX: 00007fd48d611c2d RCX: 00007fd48d58ff57
[  102.104510][ T5855] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd5568e050
[  102.104516][ T5855] RBP: 00007ffd5568e050 R08: 0000000000000000 R09: 0000000000000000
[  102.104522][ T5855] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd5568f0e0
[  102.104529][ T5855] R13: 00007fd48d611c2d R14: 0000000000018e28 R15: 00007ffd5568f120
[  102.104552][ T5855]  </TASK>
[  102.108339][ T5855] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  102.130703][ T7384] x_tables: ip_tables: SNAT target: only valid in nat table, not syz0
[  102.599389][ T7400] netlink: 12 bytes leftover after parsing attributes in process `syz.1.610'.
[  102.778400][    T9] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  102.931838][    T9] usb 4-1: too many configurations: 65, using maximum allowed: 8
[  102.940214][    T9] usb 4-1: config 0 has no interfaces?
[  102.943651][    T9] usb 4-1: config 0 has no interfaces?
[  102.947694][    T9] usb 4-1: config 0 has no interfaces?
[  102.951347][    T9] usb 4-1: config 0 has no interfaces?
[  102.955111][    T9] usb 4-1: config 0 has no interfaces?
[  102.959557][    T9] usb 4-1: config 0 has no interfaces?
[  102.963436][    T9] usb 4-1: config 0 has no interfaces?
[  102.967046][    T9] usb 4-1: config 0 has no interfaces?
[  102.969601][    T9] usb 4-1: New USB device found, idVendor=046d, idProduct=08c1, bcdDevice=ee.8d
[  102.973402][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  102.979429][    T9] usb 4-1: config 0 descriptor??
[  103.153733][ T7417] netlink: 4 bytes leftover after parsing attributes in process `syz.1.626'.
[  103.162847][ T7417] veth1_macvtap: left promiscuous mode
[  103.190549][    T9] usb 4-1: USB disconnect, device number 5
[  103.438214][   T24] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  103.592403][   T24] usb 2-1: Using ep0 maxpacket: 16
[  103.598705][   T24] usb 2-1: unable to get BOS descriptor or descriptor too short
[  103.604209][   T24] usb 2-1: unable to read config index 0 descriptor/start: -71
[  103.610547][   T24] usb 2-1: can't read configurations, error -71
[  103.950301][ T7434] loop3: detected capacity change from 0 to 1024
[  103.963922][ T7434] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.978868][ T7434] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2853: Unable to expand inode 12. Delete some EAs or run e2fsck.
[  104.003489][ T6234] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.482689][ T7455] netlink: 172 bytes leftover after parsing attributes in process `syz.1.642'.
[  104.486240][ T7455] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  104.542573][ T7458] loop3: detected capacity change from 0 to 1024
[  104.746067][ T7465] netlink: 'syz.3.646': attribute type 3 has an invalid length.
[  104.749379][ T7465] netlink: 8 bytes leftover after parsing attributes in process `syz.3.646'.
[  105.028282][    T9] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  105.178135][    T9] usb 4-1: Using ep0 maxpacket: 16
[  105.185675][    T9] usb 4-1: config 0 has an invalid interface number: 41 but max is 0
[  105.189088][    T9] usb 4-1: config 0 has no interface number 0
[  105.192538][    T9] usb 4-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[  105.196729][    T9] usb 4-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  105.201020][    T9] usb 4-1: config 0 interface 41 has no altsetting 0
[  105.206917][    T9] usb 4-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[  105.211429][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  105.214756][    T9] usb 4-1: Product: syz
[  105.216519][    T9] usb 4-1: Manufacturer: syz
[  105.218439][    T9] usb 4-1: SerialNumber: syz
[  105.222887][    T9] usb 4-1: config 0 descriptor??
[  105.225694][ T7467] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  105.228820][ T7467] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  105.441976][ T7467] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  105.445102][ T7467] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  105.708477][   T24] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  105.858164][   T24] usb 2-1: Using ep0 maxpacket: 8
[  105.862674][   T24] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  105.866825][   T24] usb 2-1: config 0 has no interface number 0
[  105.874722][   T24] usb 2-1: config 0 interface 1 has no altsetting 0
[  105.881164][   T24] usb 2-1: New USB device found, idVendor=10c4, idProduct=eac1, bcdDevice=70.1d
[  105.885073][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  105.888928][   T24] usb 2-1: Product: syz
[  105.890718][   T24] usb 2-1: Manufacturer: syz
[  105.892667][   T24] usb 2-1: SerialNumber: syz
[  105.898011][   T24] usb 2-1: config 0 descriptor??
[  106.229455][   T24] i2c-cp2615 2-1:0.1: probe with driver i2c-cp2615 failed with error -71
[  106.275540][    T9] CoreChips 4-1:0.41 (unnamed net_device) (uninitialized): sr_get_phy_addr : Error reading PHYID register:ffffffe0
[  106.286333][   T24] usb 2-1: USB disconnect, device number 8
[  106.623304][    T9] CoreChips 4-1:0.41 (unnamed net_device) (uninitialized): Failed to send software reset:ffffffb9
[  106.632651][    T9] CoreChips 4-1:0.41 (unnamed net_device) (uninitialized): Failed to reset PHY: -71
[  106.636752][    T9] CoreChips 4-1:0.41: probe with driver CoreChips failed with error -71
[  106.643656][    T9] usb 4-1: USB disconnect, device number 6
[  106.896570][ T7510] netlink: 8 bytes leftover after parsing attributes in process `syz.0.666'.
[  106.901142][ T7510] netlink: 52 bytes leftover after parsing attributes in process `syz.0.666'.
[  107.218297][ T7527] JFS: discard option not supported on device
[  107.222453][ T7527] Mount JFS Failure: -22
[  107.224265][ T7527] jfs_mount failed w/return code = -22
[  107.263620][ T7529] loop3: detected capacity change from 0 to 256
[  107.270677][ T7529] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  107.279653][ T7529] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  109.237288][ T7579] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x13
[  110.896279][ T7625] loop3: detected capacity change from 0 to 32768
[  110.916232][ T7625] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  110.972788][ T7625] XFS (loop3): Ending clean mount
[  110.978973][ T7625] XFS (loop3): Quotacheck needed: Please wait.
[  111.003518][ T7625] XFS (loop3): Quotacheck: Done.
[  111.024558][   T33] kauditd_printk_skb: 4 callbacks suppressed
[  111.024571][   T33] audit: type=1800 audit(1759062993.356:18): pid=7625 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.719" name="file1" dev="loop3" ino=9286 res=0 errno=0
[  111.037876][ T6234] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  111.269869][ T7643] netlink: 24 bytes leftover after parsing attributes in process `syz.3.720'.
[  111.440060][ T7661] netlink: 76 bytes leftover after parsing attributes in process `syz.1.733'.
[  111.659455][ T7666] loop3: detected capacity change from 0 to 32768
[  111.673745][ T7666] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  111.716909][ T7666] XFS (loop3): Ending clean mount
[  111.722303][ T7666] XFS (loop3): Quotacheck needed: Please wait.
[  111.741998][ T7666] XFS (loop3): Quotacheck: Done.
[  111.776593][ T6234] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  111.858833][ T7688] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  112.020084][ T7697] loop3: detected capacity change from 0 to 2048
[  112.055200][ T7697] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.074049][   T33] audit: type=1804 audit(1759062994.338:19): pid=7697 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.746" name="/newroot/159/file1/bus" dev="loop3" ino=18 res=1 errno=0
[  112.083352][   T33] audit: type=1800 audit(1759062994.338:20): pid=7697 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.746" name="bus" dev="loop3" ino=18 res=0 errno=0
[  112.116073][ T7697] Invalid ELF header magic: != ELF
[  112.149458][ T6234] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.234250][ T7704] loop3: detected capacity change from 0 to 128
[  112.249767][ T7704] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  112.254573][ T7704] ext4 filesystem being mounted at /161/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  112.279888][ T6234] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  112.568789][ T7711] Attempt to restore checkpoint with obsolete wellknown handles
[  112.974614][ T7717] syz.1.752 uses obsolete (PF_INET,SOCK_PACKET)
[  113.033685][ T7719] netlink: 32 bytes leftover after parsing attributes in process `syz.0.754'.
[  113.170980][ T7729] loop3: detected capacity change from 0 to 4096
[  113.186446][ T7729] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512).
[  113.660532][ T7729] ntfs3(loop3): Failed to initialize MFT zone (-22).
[  113.835524][ T7755] 9pnet_fd: Insufficient options for proto=fd
[  114.721234][ T7772] loop1: detected capacity change from 0 to 512
[  114.732066][ T7772] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  114.742382][ T7772] EXT4-fs (loop1): 1 truncate cleaned up
[  114.748595][ T7772] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.769779][ T5855] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.715074][ T7797] loop3: detected capacity change from 0 to 131072
[  115.731009][ T7797] F2FS-fs (loop3): invalid crc value
[  115.759197][ T7797] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  115.763076][ T7797] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  115.784339][   T33] audit: type=1800 audit(1759062997.809:21): pid=7797 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.785" name="file1" dev="loop3" ino=7 res=0 errno=0
[  116.312388][ T7830] loop1: detected capacity change from 0 to 16
[  116.327636][ T7830] erofs (device loop1): mounted with root inode @ nid 36.
[  116.653990][   T33] audit: type=1800 audit(1759062998.576:22): pid=7832 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.799" name="file1" dev="loop1" ino=86 res=0 errno=0
[  116.971813][ T7846] netlink: 4 bytes leftover after parsing attributes in process `syz.0.805'.
[  116.978035][ T7846] netlink: 156 bytes leftover after parsing attributes in process `syz.0.805'.
[  117.125196][ T7856] loop3: detected capacity change from 0 to 4096
[  117.134409][ T7856] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  117.149188][ T5847] udevd[5847]: incorrect nilfs2 checksum on /dev/loop3
[  117.152204][ T7856] NILFS (loop3): mounting unchecked fs
[  117.174928][ T5847] udevd[5847]: incorrect nilfs2 checksum on /dev/loop3
[  117.194573][ T7856] NILFS (loop3): recovery complete
[  117.198139][ T7861] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  117.714742][ T7876] netlink: 14 bytes leftover after parsing attributes in process `syz.1.819'.
[  117.817692][ T7878] netlink: 'syz.1.820': attribute type 2 has an invalid length.
[  117.820924][ T7878] netlink: 'syz.1.820': attribute type 2 has an invalid length.
[  117.847705][    T9] usb 4-1: new full-speed USB device number 7 using dummy_hcd
[  117.915495][ T7882] IPv6: NLM_F_CREATE should be specified when creating new route
[  117.968933][ T7886] netlink: 1180 bytes leftover after parsing attributes in process `syz.0.824'.
[  117.973836][ T7886] openvswitch: netlink: Message has 5 unknown bytes.
[  118.017961][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  118.022451][    T9] usb 4-1: New USB device found, idVendor=0e8f, idProduct=0012, bcdDevice= 0.00
[  118.026365][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  118.040163][    T9] usb 4-1: config 0 descriptor??
[  118.064434][ T7888] loop1: detected capacity change from 0 to 4096
[  118.519463][    T9] greenasia 0003:0E8F:0012.0003: collection stack underflow
[  118.540335][    T9] greenasia 0003:0E8F:0012.0003: item 0 1 0 12 parsing failed
[  118.551405][    T9] greenasia 0003:0E8F:0012.0003: parse failed
[  118.554163][    T9] greenasia 0003:0E8F:0012.0003: probe with driver greenasia failed with error -22
[  118.745477][   T47] usb 4-1: USB disconnect, device number 7
[  119.904768][ T7910] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  119.926291][ T7910] comedi comedi3: 8255: I/O port conflict (0x2,4)
[  119.929433][ T7910] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  119.932304][ T7910] comedi comedi3: 8255: I/O port conflict (0x5c952399,4)
[  119.935247][ T7910] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  119.968900][ T7910] comedi comedi3: 8255: I/O port conflict (0x3ff,4)
[  120.077384][ T7924] netlink: 4 bytes leftover after parsing attributes in process `syz.3.841'.
[  120.204644][ T7936] overlayfs: failed to clone upperpath
[  120.375802][ T7948] netlink: 'syz.0.853': attribute type 4 has an invalid length.
[  120.386947][ T7948] netlink: 'syz.0.853': attribute type 4 has an invalid length.
[  120.596319][ T7959] netlink: 4 bytes leftover after parsing attributes in process `syz.3.858'.
[  120.601650][ T2206] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  120.772704][ T2206] usb 2-1: Using ep0 maxpacket: 8
[  120.776596][ T2206] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  120.780993][ T2206] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBE, changing to 0x8E
[  120.786873][ T2206] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 7
[  120.791439][ T2206] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  120.796660][ T2206] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  120.804238][ T2206] usb 2-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46
[  120.808145][ T2206] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35
[  120.811572][ T2206] usb 2-1: Product: syz
[  120.813304][ T2206] usb 2-1: Manufacturer: syz
[  120.815242][ T2206] usb 2-1: SerialNumber: syz
[  120.820322][ T2206] usb 2-1: config 0 descriptor??
[  120.943743][   T47] usb 4-1: new full-speed USB device number 8 using dummy_hcd
[  121.040301][ T2206] radio-si470x 2-1:0.0: DeviceID=0x0000 ChipID=0x0000
[  121.043225][ T2206] radio-si470x 2-1:0.0: This driver is known to work with firmware version 12, but the device has firmware version 0.
[  121.086575][ T7964] netlink: 'syz.0.860': attribute type 1 has an invalid length.
[  121.089922][ T7964] netlink: 'syz.0.860': attribute type 2 has an invalid length.
[  121.093207][ T7964] netlink: 'syz.0.860': attribute type 8 has an invalid length.
[  121.120617][   T47] usb 4-1: unable to get BOS descriptor or descriptor too short
[  121.126156][   T47] usb 4-1: not running at top speed; connect to a high speed hub
[  121.128460][ T7966] netlink: 33912 bytes leftover after parsing attributes in process `syz.0.861'.
[  121.131230][   T47] usb 4-1: config 5 has 1 interface, different from the descriptor's value: 2
[  121.137351][   T47] usb 4-1: config 5 interface 0 has no altsetting 1
[  121.143708][   T47] usb 4-1: New USB device found, idVendor=0582, idProduct=0074, bcdDevice=2a.70
[  121.149597][   T47] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  121.153158][   T47] usb 4-1: Product: syz
[  121.157850][   T47] usb 4-1: Manufacturer: syz
[  121.159850][   T47] usb 4-1: SerialNumber: syz
[  121.248693][   T33] audit: type=1326 audit(1759063002.916:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7971 comm="syz.0.864" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb28638ec29 code=0x0
[  121.259053][ T2206] radio-si470x 2-1:0.0: software version 128, hardware version 248
[  121.261965][ T2206] radio-si470x 2-1:0.0: If you have some trouble using this driver, please report to V4L ML at linux-media@vger.kernel.org
[  121.334826][ T7973] delete_channel: no stack
[  121.413485][   T47] usb 4-1: USB disconnect, device number 8
[  121.443710][ T6014] udevd[6014]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:5.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  121.473257][ T2206] radio-si470x 2-1:0.0: si470x_set_report: usb_control_msg returned -71
[  121.478665][ T2206] radio-si470x 2-1:0.0: submitting int urb failed (-90)
[  121.482453][ T2206] radio-si470x 2-1:0.0: si470x_set_report: usb_control_msg returned -71
[  121.485883][ T2206] radio-si470x 2-1:0.0: probe with driver radio-si470x failed with error -22
[  121.492809][ T2206] usb 2-1: USB disconnect, device number 9
[  122.147409][ T7978] loop3: detected capacity change from 0 to 32768
[  122.156868][ T7978] (syz.3.867,7978,1):ocfs2_check_set_options:1252 ERROR: User quotas were requested, but this filesystem does not have the feature enabled.
[  122.177544][ T7978] (syz.3.867,7978,1):ocfs2_fill_super:1177 ERROR: status = -22
[  122.295999][ T7983] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 3946
[  123.450003][ T8009] netlink: 4 bytes leftover after parsing attributes in process `syz.3.877'.
[  123.457169][ T8008] netlink: 8 bytes leftover after parsing attributes in process `syz.0.878'.
[  123.638124][   T33] audit: type=1326 audit(1759063005.142:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8010 comm="syz.3.879" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1bd18ec29 code=0x7ffc0000
[  123.655419][   T33] audit: type=1326 audit(1759063005.152:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8010 comm="syz.3.879" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1bd18ec29 code=0x7ffc0000
[  123.685524][   T33] audit: type=1326 audit(1759063005.152:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8010 comm="syz.3.879" exe="/syz-executor" sig=0 arch=c000003e syscall=155 compat=0 ip=0x7ff1bd18ec29 code=0x7ffc0000
[  123.998919][   T33] audit: type=1326 audit(1759063005.152:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8010 comm="syz.3.879" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1bd18ec29 code=0x7ffc0000
[  124.008679][   T33] audit: type=1326 audit(1759063005.152:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8010 comm="syz.3.879" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1bd18ec29 code=0x7ffc0000
[  124.017712][   T33] audit: type=1326 audit(1759063005.152:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8010 comm="syz.3.879" exe="/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7ff1bd18ec29 code=0x7ffc0000
[  124.026838][   T33] audit: type=1326 audit(1759063005.488:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8010 comm="syz.3.879" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1bd18ec29 code=0x7ffc0000
[  124.056704][   T33] audit: type=1326 audit(1759063005.488:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8010 comm="syz.3.879" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1bd18ec29 code=0x7ffc0000
[  124.779559][ T8039] netlink: 64 bytes leftover after parsing attributes in process `syz.3.891'.
[  125.126010][ T8046] autofs: Unknown parameter '0x0000000000000000'
[  125.792078][ T8051] No source specified
[  127.762325][ T8103] netlink: 'syz.1.916': attribute type 5 has an invalid length.
[  128.015677][ T8123] netlink: 92 bytes leftover after parsing attributes in process `syz.0.928'.
[  128.104973][ T8135] syzkaller1: entered promiscuous mode
[  128.107871][ T8135] syzkaller1: entered allmulticast mode
[  128.365142][ T8163] TCP: tcp_parse_options: Illegal window scaling value 94 > 14 received
[  128.407692][ T8164] comedi comedi1: c6xdigio: I/O port conflict (0x401,3)
[  128.411053][ T8164] ------------[ cut here ]------------
[  128.413860][ T8164] Unexpected driver unregister!
[  128.417495][ T8164] WARNING: drivers/base/driver.c:273 at driver_unregister+0x94/0xb0, CPU#1: syz.1.947/8164
[  128.421635][ T8164] Modules linked in:
[  128.424115][ T8164] CPU: 1 UID: 0 PID: 8164 Comm: syz.1.947 Not tainted syzkaller #0 PREEMPT(full) 
[  128.428023][ T8164] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  128.431473][ T8164] RIP: 0010:driver_unregister+0x94/0xb0
[  128.433245][ T8164] Code: e6 58 fc 48 89 df 5b 41 5e 41 5f e9 56 55 ff ff e8 a1 3b b7 fb eb 05 e8 9a 3b b7 fb 90 48 c7 c7 e0 33 2a 8c e8 ad ab 7a fb 90 <0f> 0b 90 90 5b 41 5e 41 5f e9 fe 64 79 05 cc cc cc cc cc cc cc cc
[  128.440646][ T8164] RSP: 0018:ffffc90002b67a20 EFLAGS: 00010246
[  128.443042][ T8164] RAX: ddb1be0313e1ac00 RBX: ffffffff8f5fc520 RCX: 0000000000080000
[  128.445645][ T8164] RDX: ffffc90021005000 RSI: 0000000000000f66 RDI: 0000000000000f67
[  128.448316][ T8164] RBP: 0000000000000001 R08: 0000000000000003 R09: 0000000000000004
[  128.451016][ T8164] R10: dffffc0000000000 R11: fffffbfff1c3a65c R12: ffff88801df81038
[  128.453714][ T8164] R13: ffffffff8f5fc470 R14: 0000000000000000 R15: dffffc0000000000
[  128.456333][ T8164] FS:  00007fd48e3806c0(0000) GS:ffff8881a39fc000(0000) knlGS:0000000000000000
[  128.459361][ T8164] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  128.461524][ T8164] CR2: 00007fd48e37ffc8 CR3: 000000010f3a8000 CR4: 00000000000006f0
[  128.463944][ T8164] Call Trace:
[  128.465307][ T8164]  <TASK>
[  128.466380][ T8164]  comedi_device_detach_locked+0x178/0x750
[  128.468313][ T8164]  comedi_device_attach+0x5d4/0x720
[  128.470129][ T8164]  comedi_unlocked_ioctl+0x5ff/0x1020
[  128.471877][ T8164]  ? kasan_quarantine_put+0xdd/0x220
[  128.473702][ T8164]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  128.475946][ T8164]  ? __fget_files+0x2a/0x420
[  128.477847][ T8164]  ? __fget_files+0x3a0/0x420
[  128.479786][ T8164]  ? __fget_files+0x2a/0x420
[  128.481639][ T8164]  ? bpf_lsm_file_ioctl+0x9/0x20
[  128.483388][ T8164]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  128.485555][ T8164]  __se_sys_ioctl+0xfc/0x170
[  128.487037][ T8164]  do_syscall_64+0xfa/0xfa0
[  128.488520][ T8164]  ? lockdep_hardirqs_on+0x9c/0x150
[  128.490251][ T8164]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.492584][ T8164]  ? exc_page_fault+0xab/0x100
[  128.494204][ T8164]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.496164][ T8164] RIP: 0033:0x7fd48d58ec29
[  128.497655][ T8164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  128.504575][ T8164] RSP: 002b:00007fd48e380038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  128.507732][ T8164] RAX: ffffffffffffffda RBX: 00007fd48d7d6090 RCX: 00007fd48d58ec29
[  128.510629][ T8164] RDX: 0000200000000080 RSI: 0000000040946400 RDI: 0000000000000003
[  128.514004][ T8164] RBP: 00007fd48d611e41 R08: 0000000000000000 R09: 0000000000000000
[  128.517334][ T8164] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  128.520558][ T8164] R13: 00007fd48d7d6128 R14: 00007fd48d7d6090 R15: 00007ffd5568ed08
[  128.524022][ T8164]  </TASK>
[  128.525357][ T8164] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  128.528428][ T8164] CPU: 1 UID: 0 PID: 8164 Comm: syz.1.947 Not tainted syzkaller #0 PREEMPT(full) 
[  128.531533][ T8164] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  128.535799][ T8164] Call Trace:
[  128.537186][ T8164]  <TASK>
[  128.538459][ T8164]  dump_stack_lvl+0x99/0x250
[  128.540447][ T8164]  ? __asan_memcpy+0x40/0x70
[  128.542448][ T8164]  ? __pfx_dump_stack_lvl+0x10/0x10
[  128.544656][ T8164]  ? __pfx__printk+0x10/0x10
[  128.546658][ T8164]  vpanic+0x237/0x6d0
[  128.548394][ T8164]  ? __pfx_vpanic+0x10/0x10
[  128.550327][ T8164]  ? is_bpf_text_address+0x292/0x2b0
[  128.552567][ T8164]  ? is_bpf_text_address+0x26/0x2b0
[  128.554794][ T8164]  panic+0xb9/0xc0
[  128.556443][ T8164]  ? __pfx_panic+0x10/0x10
[  128.558337][ T8164]  __warn+0x334/0x4c0
[  128.560044][ T8164]  ? driver_unregister+0x94/0xb0
[  128.562157][ T8164]  ? driver_unregister+0x94/0xb0
[  128.564268][ T8164]  report_bug+0x2be/0x4f0
[  128.566115][ T8164]  ? driver_unregister+0x94/0xb0
[  128.568230][ T8164]  ? driver_unregister+0x94/0xb0
[  128.570318][ T8164]  ? driver_unregister+0x96/0xb0
[  128.572413][ T8164]  handle_bug+0x84/0x160
[  128.574239][ T8164]  exc_invalid_op+0x1a/0x50
[  128.576221][ T8164]  asm_exc_invalid_op+0x1a/0x20
[  128.578327][ T8164] RIP: 0010:driver_unregister+0x94/0xb0
[  128.580662][ T8164] Code: e6 58 fc 48 89 df 5b 41 5e 41 5f e9 56 55 ff ff e8 a1 3b b7 fb eb 05 e8 9a 3b b7 fb 90 48 c7 c7 e0 33 2a 8c e8 ad ab 7a fb 90 <0f> 0b 90 90 5b 41 5e 41 5f e9 fe 64 79 05 cc cc cc cc cc cc cc cc
[  128.588511][ T8164] RSP: 0018:ffffc90002b67a20 EFLAGS: 00010246
[  128.591019][ T8164] RAX: ddb1be0313e1ac00 RBX: ffffffff8f5fc520 RCX: 0000000000080000
[  128.594265][ T8164] RDX: ffffc90021005000 RSI: 0000000000000f66 RDI: 0000000000000f67
[  128.597467][ T8164] RBP: 0000000000000001 R08: 0000000000000003 R09: 0000000000000004
[  128.600763][ T8164] R10: dffffc0000000000 R11: fffffbfff1c3a65c R12: ffff88801df81038
[  128.604041][ T8164] R13: ffffffff8f5fc470 R14: 0000000000000000 R15: dffffc0000000000
[  128.607312][ T8164]  comedi_device_detach_locked+0x178/0x750
[  128.609748][ T8164]  comedi_device_attach+0x5d4/0x720
[  128.611899][ T8164]  comedi_unlocked_ioctl+0x5ff/0x1020
[  128.614091][ T8164]  ? kasan_quarantine_put+0xdd/0x220
[  128.616346][ T8164]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  128.618738][ T8164]  ? __fget_files+0x2a/0x420
[  128.620593][ T8164]  ? __fget_files+0x3a0/0x420
[  128.622394][ T8164]  ? __fget_files+0x2a/0x420
[  128.624284][ T8164]  ? bpf_lsm_file_ioctl+0x9/0x20
[  128.626259][ T8164]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  128.628624][ T8164]  __se_sys_ioctl+0xfc/0x170
[  128.630410][ T8164]  do_syscall_64+0xfa/0xfa0
[  128.632164][ T8164]  ? lockdep_hardirqs_on+0x9c/0x150
[  128.634351][ T8164]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.636861][ T8164]  ? exc_page_fault+0xab/0x100
[  128.638795][ T8164]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.641177][ T8164] RIP: 0033:0x7fd48d58ec29
[  128.643066][ T8164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  128.651003][ T8164] RSP: 002b:00007fd48e380038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  128.654409][ T8164] RAX: ffffffffffffffda RBX: 00007fd48d7d6090 RCX: 00007fd48d58ec29
[  128.657625][ T8164] RDX: 0000200000000080 RSI: 0000000040946400 RDI: 0000000000000003
[  128.660884][ T8164] RBP: 00007fd48d611e41 R08: 0000000000000000 R09: 0000000000000000
[  128.664093][ T8164] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  128.667277][ T8164] R13: 00007fd48d7d6128 R14: 00007fd48d7d6090 R15: 00007ffd5568ed08
[  128.670506][ T8164]  </TASK>
[  128.672448][ T8164] Kernel Offset: disabled
[  128.674228][ T8164] Rebooting in 86400 seconds..

VM DIAGNOSIS:
12:36:51  Registers:
info registers vcpu 0

CPU#0
RAX=ffffffff823cd6a5 RBX=ffff888028ae4400 RCX=ffff8880274f0000 RDX=0000000000000000
RSI=ffff888028ae4400 RDI=ffffc900030b7c90 RBP=ffffc900030b7df0 RSP=ffffc900030b7840
R8 =ffff888021beac03 R9 =1ffff1100437d580 R10=dffffc0000000000 R11=ffffed100437d581
R12=0000000000000019 R13=ffffffff89630790 R14=dffffc0000000000 R15=ffff888028ae4400
RIP=ffffffff823cd6a5 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f93832d3800 ffffffff 00c00000
GS =0000 ffff8880b83fc000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00002000000012c0 CR3=0000000028a80000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=2525252525252525 2525252525252525
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 00000000000000ff XMM05=7712c53e93b9f1e8 728370bf3cb3486e
XMM06=63e772d7f3a22482 dabb339f3c035440 XMM07=bd0dad416e16bee6 46815929601aad29
XMM08=0000000000000000 00007fd48d612f0f XMM09=0000000000000000 00007fd48d612fed
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000031 RBX=0000000000000031 RCX=0000000000000000 RDX=00000000000003f8
RSI=000000000000c1eb RDI=000000000000c1ec RBP=00000000000003f8 RSP=ffffc90002b671d0
R8 =ffff888021730237 R9 =1ffff110042e6046 R10=dffffc0000000000 R11=ffffffff8556d2d0
R12=dffffc0000000000 R13=ffffffff99d198ec R14=ffffffff9a00f5a0 R15=0000000000000000
RIP=ffffffff8556d34c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fd48e3806c0 ffffffff 00c00000
GS =0000 ffff8881a39fc000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fd48e37ffc8 CR3=000000010f3a8000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=ffffffff8133d6ae ffffffff8133d6ae
XMM02=ffffffff8133d6ae ffffffff8133d6ae XMM03=ffffffff8133d6ae ffffffff8133d6ae
XMM04=ffffffff8133d6ae ffffffff8133d6ae XMM05=ffffffff8133d6ae ffffffff8133d6ae
XMM06=ffffffff8133d6ae ffffffff8133d6ae XMM07=ffffffff8133d6ae ffffffff8133d6ae
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007fb286412fed
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
