last executing test programs:

2m8.493237775s ago: executing program 2 (id=1416):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000000100)={0x2, {0x2, 0x13d, 0x0, 0xd6e}})
ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000001900)={0x2, {0x2, 0x300, 0xfffe, 0x101}})

2m8.383407099s ago: executing program 2 (id=1417):
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000040)={@ipv4={'\x00', '\xff\xff', @empty}, 0x1, 0x1, 0xff, 0x5, 0x6, 0xffff}, 0x20)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="100000002d000b02d25a806f8c6394f9101a04", 0x13}], 0x1}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d80000001c0081044e81f782db44b9040a1d08030e000000e8fea4a1180015000600142603600e1208000f1000810401a80016000a0001", 0x37}], 0x1, 0x0, 0x0, 0x7400}, 0x10)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)=@in6={0xa, 0x0, 0x0, @mcast1}, 0x80, 0x0, 0x0, 0x0, 0x5c8}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce620300fe"], 0xfe1b)
r0 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="563f00001800599c6d0eab070004000523"], 0xfe33)

2m8.322804626s ago: executing program 2 (id=1418):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r0, 0x100000000)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
recvmmsg(r1, &(0x7f00000057c0)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000017c0)=""/130, 0x82}], 0x1}, 0xa1}], 0x1, 0x101, 0x0)

2m7.471800761s ago: executing program 2 (id=1432):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x3000046, &(0x7f0000000280)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@resgid}, {@data_err_ignore}, {@jqfmt_vfsv0}, {@nobh}, {@errors_remount}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==")
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x200, 0x400000]})
chdir(&(0x7f0000000140)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x141842, 0x0)
pwritev2(r1, &(0x7f0000000940)=[{&(0x7f0000000340)="be85809842d43cbb78329613b3aa8b78f87e932d0db6f110e00ef09327f497b6c6bc81aa4e792dc9c48a1b9a75cf44ce8ce1b856b626a7e4777204471d63392de989c63d4609ed30dd119be395063fa976cd6b47dca30c5cd4527167ac54b4c966e6bcb00a53800553f6be6fdd09953e7a27734d239151d01e755f9b77787bc4b920357e4168bd9a5727244d820fbc378dc2c68c6b7dd3b7157948eaae089ef145a160fbbc70465127d0280c33ec1bed9bbd9b44ae00acd096045d62b21a35f2c9f2f0b8cfb72f8cbb8f74d48dcc974ba8a74cf23fd7d74d6740f979b90abd2a30c8", 0xe2}, {&(0x7f0000000440)="277426dc8953e40591357b3b4796c05ebd5908edb5c5c8b1692cbe24267a", 0x1e}, {&(0x7f0000000480)="b73bcd7b024c36a2930ce4e51d6069071eb17cc99d19b622e5d06b55373c028c3b5b8d60645ac938563628eb92bc7be1340efb34a003e0c8b7b07898de3783d0f77cf1166bfd922f218dcbacd79f039c4702a1d516f5093a413da2ab7e312ee60527829f408427faa0bbd2a4aeaf6a1e200ddc92ac67a849b3d33952efa2e0d509", 0x81}, {&(0x7f0000001600)="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", 0x277}], 0x4, 0x9, 0x10000, 0x0)

2m7.264435791s ago: executing program 2 (id=1436):
syz_mount_image$exfat(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x0, &(0x7f00000000c0)=ANY=[], 0x1, 0x1513, &(0x7f0000002d00)="$eJzs3Au4TlW3OPAx5pxLm9Cb5D7HHIs3uUySJJeERJIkSZJbQpIkSUhscktCEnJPcg/JLST3+y33kHySJAkJSeb/0df3d77Td0595+sc5zl7/J5nPXuOvd4x1lh77Od911rPs/c37QdWrlulYm1mhn8J/vVLKgCkAEAfALgGACIAKJGlRBbAIZBeY+q/dhDx53poypXuQFxJMv+0Teaftsn80zaZf9om80/bZP5pm8w/bZP5C5GWbZma81rZ0u72P/f8H+T5//868vn/f8jhIqO+WFfk+g7/RIrMP22T+adtMv+0Teaftsn80zaZ//9xEUCF/2S3zD9tk/kLkZZd6efPsl3Z7Ur//gkhhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGESBvOhcsMAPxtfaX7EkIIIYQQQgghxJ8nXHWlOxBCCCGEEEIIIcR/PwQFGgxEkA6ughRIDxngasgImSAzXAMJuBaywHWQFa6HbJAdckBOyAW5IQ9YIHDAEENeyAdJuAHyw41QAApCISgMHopAUbgJisHNUBxugRJwK5SE26AUlIYyUBZuh3JwB5SHClAR7oRKcBdUhipwN1SFe6Aa3AvV4T6oAfdDTXgAasGDUBsegjrwMNSFR6AePAr1oQE0hEbQ+L+U/yJ0hpegC3SFVOgG3eFl6AE9oRf0hj7wCvSFV6EfvAb9YQAMhNdhELwBg+FNGAJDYRi8BcNhBIyEUTAaxsBYeBvGwTswHt6FCTARJsFkmAJTYRq8B9NhBsyE92EWfACzYQ7MhXkwHz6EBbAQFsFHsBg+hiWwFJbBclgBK2EVrIY1sBbWwXrYABthE2yGLfAJbIVtsB12wE7YBbvhU9gDe2EffAb74fN/Mv/sv8vvgICAChUaNJgO02EKpmAGzIAZMSNmxsyYwARmwSyYFbNiNsyGOTAH5sJcmAfzICEhI2NezItJTGJ+zI8FsAAWwkLo0WNRLIrF8GYsjsWxBJbAklgSS2FpLI1lsSyWw3JYHstjRayIlbASVsbKeDfejfdgNayG1REBoAbWxJpYC2thbayNdbAO1sW6WA/rYX2sjw2xITbGxtgEm2BTbIrNsTm2wBbYEltiK2yFrbE1tsE22BbbYjtsh+2xPXbAjtgRX8QX8SV8CbtiJdUNu2N37IE9sBf2xt74CvbFV/FVfA374wAciK/j6/gGDsYzOASH4jAchuXUCByJo5DVGByLY3EcjsPxOB4n4ESciJNxCk7FaTgNp+MMnIHv4yz8AD/AOTgH5+F8nI8LcCEuwkW4GM/iElyKy3A5rsCVuAJX4xpcjetwPa7DjbgRN+Nm/AQ/wW24DXfgDtyFu/BT/BT34l7sj/txPx7AA3gQD+IhPISH8TAewSN4FI/iMTyGx/E4nsCTeApP4mk8jWfwLJ7Dc3gez+MFfD7XV3V2FVzbH9QlRhmVTqVTKSpFZVAZVEaVUWVWmVVCJVQWlUVlVVlVNpVN5VA5VC6VS+VReRQpUqxilVflVUmVVPlVflVAFVCFVCHllVdFVVFVTBVTxVVxVULdqkqq21QpVVo182VVWVVONfflVQVVUVVUldRdqrKqoqqoqqqqqqaqqeqquqqhaqia6gFVS3XDXviQujSZumoA1lMDsb5qoBqqRuoNfEw1UYOxqWqmmqsn1FAcgi1VE99KPa1aq5HYRj2rRuFzqp0ag+3VC6qD6qg6qRdVZ9XUd0n361ugmow9VE/VS/VWmeAudWlildVrqr8aoAaq19U8fEMNVm+qIWqoGqbeUsPVCDVSjVKj1Rg1Vr2txql31Hj1rpqgJqpJarKaoqaqaeo9NV3NUDPV+2qW+kDNVnPUXDVPzVcfqgVqoVqkPlKL1cdqiVqqlqnlaoVaqVap1WqNWqvWqfVqg9qoNqnNaov6RG1V29R2tUPtVLvUbvWp2qP2qn3qM7Vffa4OqL+og+oLdUh9qQ6rr9QR9bU6qr5Rx9S36rj6Tp1QJ9Up9b06rX5QZ9RZdU79qM6rn9QF9bO6qIICjVpprY2OdDp9lU7R6XUGfbXOqDPpzPoandDX6iz6Op1VX6+z6ew6h86pc+ncOo+2mrTTrGOdV+fTSX2Dzq9v1AV0QV1IF9ZeF9FF9U26mL5ZF9e36BL6Vl1S36ZL6dK6jC6rb9fl9B26vK6gK+o7dSV9l66sq+i7dVV9j66m79XV9X26hr5f19QP6Fr6QV1bP6Tr6Id1Xf2Irqcf1fV1A91QN9KN9WO6iX5cN9XNdHP9hG6hn9Qt9VO6lX5at9bP6Db6Wd1WP6fb6ed1e/2C7qA76k76Z31RB91Fd9Wpupvurl/WPXRP3Uv31n30K7qvflX306/p/nqAHqhf14P0G3qwflMP0UP1MP2WHq5H6JF6lB6tx+ix+m09Tr+jx+t39QQ9UU/Sk/UUPVX3+rXSzD+Q/84/yO/3y9E36y36E71Vb9Pb9Q69U+/Su/VuvUfv0fv0Pr1f79cH9AF9UB/Uh/QhfVgf1kf0EX1UH9XH9DF9XB/XJ/RJ/aP+Xp/WP+gz+qw+q3/U5/V5feHXnwEYNMpoY0xk0pmrTIpJbzKYq01Gk8lkNteYhLnWZDHXmazmepPNZDc5TE6Ty+Q2eYw1ZJxhE5u8Jp9JmhtMfnOjKWAKmkKmsPGmiClqbvqX83+vv8amsWlimpimpqlpbpqbFqaFaWlamlamlWltWps2po1pa9qadqadaW/amw6mg+lkOpnOprPpYrqYVJNqupuXTQ/T0/QyvU0f84rpa/qafqaf6W/6m4FmoBlkBpnBZrAZYoaYYWaYGW6Gm5FmpBltRpuxZqwZZ8aZ8Wa8mWAmmElmkplipphpZpqZbqabmWammWVmmdlmtplr5pr5Zr5ZYBaYRWaRWWwWmyVmqVlqlpvlZqVZaVab1WatWWvWm/Vmo9lolpgtZovZaraa7Wa72Wl2mt1mt9lj9ph9Zp/Zb/abA+aAOWgOmkPmkDlsDpsj5og5ao6aY+aYOW6OmxPmhDllTpnT5rQ5Y86Yc+acOW/OmwvmgrloLl667ItUpCITmShdlC5KiVKiDFGGKGOUMcocZY4SUSLKEmWJskbXR9mi7FGOKGeUK8odpYKNKHIRR3GUN8oXJaMbovzRjVGBqGBUKCoc+ahIVDS6KSoW3RwVj26JSkS3RiWj26JSUemoTFQ2uj0qF90RlY8qRBWjO6NK0V1R5ahKdHdUNbonqhbdG1WP7otqRPdHNaMHolrRg1Ht6KGoTvRwVDd6JKoXPRrVjxpEDaNGUeM/tX4IZ7I/7rvYrjbVdrPd7cu2h+1pe9neto99xfa1r9p+9jXb3w6wA+3rdpB9ww62b9ohdqgdZt+yw+0IO9KOsqPtGDvWvm3H2XfsePuunWAn2kl2sp1ip9pp9j073c6wM+37dpb9wM62c+xcO8/Otx/aBXahXWQ/sovtx3aJXWqX2eV2hV1pV9nVdo1da9fZ9XaD3Wg32c12i/3EbrXb7Ha7w+60u+xu+6ndY/faffYzu99+bg/Yv9iD9gt7yH5pD9uv7BH7tT1qv7HH7Lf2uP3OnrAn7Sn7vT1tf7Bn7Fl7zv5oz9uf7AX7s71ow6WL+0sf72TIUDpKRymUQhkoA2WkjJSZMlOCEpSFslBWykrZKBvloByUi3JRHspDlzAx5aW8lKQk5af8VIAKUCEqRJ48FaWiVIyKUXEqTiWoBJWkklSKSlEZKkO30+10B91BFagC3Ul30l10F1WhKlSVqlI1qkbVqTrVoBpUk2pSLapFtak21aE6VJfqUj2qR/WpPjWkhtSYGlMTakJNqSk1p+bUglpQS2pJragVtabW1IbaUFtqS+2oHbWn9tSBOlAn6kSdqTN1oS6USqnUnbpTD+pBvagX9aE+1Jf6Uj/qR/2pPw2kgTSIBtFgGkxDaCgNo7doOI2gkTSKRtMYGktjaRyNo/E0nibQBJpEk2gKTaFpNI2m03SaSTNpFs2i2TSb5tJcmk/zaQEtoEW0iBbTYlpCS2gZLaMVtIJW0SpaQ2toHa2jDbSBNtEm2kJbaCttpe20nXbSTtpNu2kP7aF9tI/20346QAfoIB2kQ3SIDtNhOkJH6CgdpWN0jI7TcTpBJ+gUnaLTdJrO0Bk6R+foPP1EF+hnukiBUpyCDO5ql9FlcpndNS7FpXcZ3F8vmC7FOVxOl8vldnmcddlc9r+LyTlXwBV0hVxh510RV9Td9Ju4lCvtyriy7nZXzt3hyv8mrurucdXcva66u89VcXf/XVzD3e9qukdcLfeoq+0auDqukavrHnH13KOuvmvgGrpGroV70rV0T7lW7mnX2j3zm3iBW+jWuLVunVvv9ri97pz70R1137jz7ifXxXV1fdwrrq971fVzr7n+bsBv4mHuLTfcjXAj3Sg32o35TTzJTXZT3FQ3zb3nprsZv4nnuw/dLLfIzXZz3Fw375f4Uk+L3EdusfvYLXFL3TK33K1wK90qt/r/97rcbXSb3Ga3233qtrptbrvb4Xa6Xb/El85jn/vM7XefuyPua3fQfeEOuWPusPvql/jS+R1z37rj7jt3wp10p9z37rT7wZ1xZ385/0vn/r372V10wQEjK9ZsOOJ0fBWncHrOwFdzRs7EmfkaTvC1nIWv46x8PWfj7JyDc3Iuzs152DKxY+aY83I+TvINnJ9v5AJckAtxYfZchIvyTVyMb+bifAuX4Fu5JN/Gpbg0l+GyfDuX4zu4PFfginwnVwqBK3MVvpur8j1cje/l6nwf1+D7uSY/wLX4Qa7ND3Edfpjr8iNcjx/l+tyAG3IjbsyPcRN+nJtyM27OT3ALfpJb8lPcip/m1vwMt+FnuS0/x+34eW7PL3AH7sid+EXuzC9xF+7KqdyNu/PL3IN7ci/uzX34Fe7Lr3I/fo378wAeyK/zIH6DB/ObPISH8jB+i4fzCB7Jo3g0j+Gx/DaP43d4PL/LE3giT+LJPIWn8jR+j6fzDJ7J7/Ms/oBn8xyey/N4Pn/IC3ghL+KPeDF/zEt4KS/j5byCV/IqXs1reC2v4/W8gTfyJt7MW/gT3srbeDvv4J28i3fzp7yH9/I+/oz38+d8gP/CB/kLPsRf8mH+io/w13yUv+Fj/C0f5+/4BJ/kU/w9n+Yf+Ayf5XP8I5/nn/gC/8wXOTDEGKtYxyaO4nTxVXFKnD7OEF8dZ4wzxZnja+JEfG2cJb4uzhpfH2eLs8c54pxxrjh3nCe2McUu5jiO88b54mR8Q5w/vjEuEBeMC8WFYx8XiYvGN8XF4pvj4vEtcYn41rhkfFtcKi4dP3Jf2fj2uFx8R1w+rhBXjO+MK8V3xZXjKvHdcdX4nrhafG9cPb4vLh7fH9eMH4hrxQ/GteOH4jrxw3Hd+JG4XvxoXD9uEDeMG8WN48fiJvHjcdO4Wdw8fiJuET8Zt4yfilvFT8et42d+d39q3C3uHr8cvxyHcK+em5yXnJ/8MLkguTC5KPlRcnHy4+SS5NLksuTy5IrkyuSq5OrkmuTa5Lrk+uSG5MbkpuTmZAhVrgKPXnntjY98On+VT/HpfQZ/tc/oM/nM/hqf8Nf6LP46n9Vf77P57D6Hz+lz+dw+j7eevPPsY5/X5/NJf4PP72/0BXxBX8gX9t4X8UV9I9/YN/ZN/OO+qW/mm/sn/BP+Sf+kf8o/5Z/2rf0zvo1/1rf1z/l2/nn/vH/Bd/AdfSf/ou/sX/JdfFef6lN9d9/d9/A9fC/fy/fxfXxf39f38/18f9/fD/QD/SA/yA/2g/0QP8QP88P8cD/cj/Qj/Wg/2o/1Y/04P86P9+P9BD/BT/KT/BQ/xU/z0/x0P93P9DP9rAKz/Gw/28/1c/18P98v8Av8Ir/IL/aL/RK/xC/zy/wKv8Kv8qv8Gr/Gr/Pr/Aa/wW/ym/wWv8Vv9Vv9dr/d7/Q7/W6/2+/xe/w+v8/v9/v9AX/AH/QH/SH/pT/sv/JH/Nf+qP/GH/Pf+uP+O3/Cn/Sn/Pf+tP/Bn/Fn/Tn/oz/vf/IX/M/+og9+bOLtxLjEO4nxiXcTExITE5MSkxNTElMT0xLvJaYnZiRmJt5PzEp8kJidmJOYm5iXmJ/4MLEgsTCxKPFRYnHi48SSxNLEssTyxIrEykQIubfGIW/IF5LhhpA/3BgKhIKhUCgcfCgSioabQrFwcygebgklwq2hZLgtlAqlQ5nwaKgfGoSGoVFoHB4LTcLjoWloFpqHJ0KL8GRoGZ4KrcLToXV4JrQJz4a24bnQLjwf2ocXQofQMXQKL4bO4aXQJXQNqaFb6B5eDj1Cz9Ar9A59wiuhb3g19Auvhf5hQBgYXg+DwhthcHgzDAlDw7DwVhgeRoSRYVQYHcaEseHtMC68E8aHd8OEMDFMCpPDlDA1TAvvhelhRpgZ3g+zwgdhdpgT5oZ5YX74MCwIC8Oi8FFYHD4OS8LSsCwsDyvCyrAqrA5rwtqwLqwPG8LGsClsDlvCJ2Fr2Ba2hx1hZ9gVdodPw56wN+wLn4X94fNwIPwlHAxfhEPhy3A4fBWOhK/D0fBNOBa+DcfDd+FEOBlOhe/D6fBDOBPOhnPhx3A+/BQuhJ/DRfmbNSGEEEKIP0T/zv5u/+B76QBA/bruDgCZtuU8/O9rbsj213VPlatFAgCe7tr+ob9tlSqlpqb++tolGqJ8cwAg8ff1/xYvhebwJLSCZlDsH/bXU3U8z79TP3krQIZ/k5MCl+PL9W/+D+o/9sSwBSXjc1n+k/pzAArku5yTHi7Hl+sX/w/qZ2/yO/2n/2IsQNN/k5MRLseX6xeFx+EZaPV3r/wDAxZCCCGEEEIIkSb0VGXa/t7986X781zmcs5VcDn+vftzIYQQQgghhBBCXHnPdez01GOtWjVr+8cW+OtzgX8u609b1Nq299lLh78yR5fFf3mBAPC/oA1Z/PHFFX5jEkIIIYQQQvzpLl/0X+lOhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEKItOt/4t+JXelzFEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIa60/xcAAP//daA1bQ==")
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffed3)

2m6.763456414s ago: executing program 2 (id=1438):
openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000040), 0x2821c0, 0x0)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000600), 0x82d02)
r0 = syz_io_uring_setup(0x66e, &(0x7f0000000240)={0x0, 0x0, 0x10100, 0x0, 0x2e9}, &(0x7f0000000380)=<r1=>0x0, &(0x7f0000000200)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r0, 0x567, 0x0, 0x0, 0x0, 0x0)

2m6.640286752s ago: executing program 32 (id=1438):
openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000040), 0x2821c0, 0x0)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000600), 0x82d02)
r0 = syz_io_uring_setup(0x66e, &(0x7f0000000240)={0x0, 0x0, 0x10100, 0x0, 0x2e9}, &(0x7f0000000380)=<r1=>0x0, &(0x7f0000000200)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r0, 0x567, 0x0, 0x0, 0x0, 0x0)

2.461148461s ago: executing program 3 (id=2714):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x6, 0x4, 0x9}, 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000840)={{r0}, &(0x7f00000007c0), &(0x7f0000000800)='%-5lx  \x00'}, 0x20)

2.380543038s ago: executing program 3 (id=2715):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vxcan0\x00', <r1=>0x0})
connect$can_bcm(r0, &(0x7f00000000c0)={0x1d, r1}, 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000003c0)={0x1, 0x0, 0x2, {}, {0x77359400}, {0x0, 0x0, 0x0, 0x1}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "6ac6acd41ff800"}}, 0x48}}, 0x20000400)
sendmsg$can_bcm(r0, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000600)=ANY=[@ANYBLOB="01000000000100"/16, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYBLOB="0000008001000000000000000900"], 0x48}}, 0x0)

2.269682838s ago: executing program 3 (id=2718):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000040}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0)
syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000300)=@mgmt_frame=@probe_response={{{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val, @void, @void, @void, @void, @void, @void}, 0x2e)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_inet_SIOCSIFFLAGS(r3, 0x8914, &(0x7f0000000000)={'wlan1\x00', 0x2})

2.258893031s ago: executing program 0 (id=2719):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000140)=[@in6={0xa, 0x4e20, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x2}], 0x1c)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$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")
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f00000002c0)={r2, 0xf}, 0x8)

2.190818604s ago: executing program 1 (id=2720):
socket$pppoe(0x18, 0x1, 0x0)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010040000000000002034400000008000300", @ANYRES32=r2, @ANYBLOB="08002600851600000a00180000000000000000001c005a8018000180140002"], 0x4c}}, 0x40000)

2.190404454s ago: executing program 1 (id=2721):
r0 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x2409c8c1, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
sendto$inet6(r0, &(0x7f0000001400)="0d0ad7c36d6617110e434332d6ac582208222cfb7c37ce1148f448455bc37f5f70c92774dcb201629979039d7c8943b207e5bdf9ab8eed9ace110469c51f4f211dd9fad815eb5b273ac04e1edc679bcdf0a0d24482de5454be9003cb80714a95e136bb704ee58e707d1e69b3c3a1c2c37f9c0402e14abdeb32086a49aff25e5c0f0131d59b4783316b9fa2c71c51ce76942d5f519145c9e3bf0d4182b4a62970b2ce81d35a7afc8384b387b8e21f2051d90d92323a710cabe5275d335b64453e759251a140de480541d8dd7662a14296a59eba99b95bfdf5b22992c323865b471d13ad79867e2692fd4eece299a81e2b33336b6801f51c2ae8d73e4df90c9bd70cd535b72cbdf67754acdc44b3780450308d9c5527c3314eb7b2cc38b61e96403a30a8ba0c8a357aa04d3c62bc51bcf55cf214f44a909b29c30c18c3a43c86472612086664a80f2aa8490e58352732acb96eb46deab42895d1957a6029ad86e7a5ced6bde89c158aaee721954beeebe5973059007f7dd5459029af6d3f1d73d35f07d19b7cedfc80d1d7ef37f8b113f564afd0f093202929fef43e788619ca522c7f679dd2f27949d879b4dab46581a0e054b4ed1db37e43f528748b56ec5a54b7af198d4ae551046f7814fe3a5cbc1cc7cb6655fc198939b049f3c02443148c588e34d6ebef81096b4e48f468016d2bde0828664c0874d71e2d88b3bc04079d4a504255a83c3f07a4f1c3e5a4c66f55f36e51e344392487c8299d8d1bfb568780c0d57df48990cb5d6b35c3f7445f80312186d8598faf61072d4eefc961fb5a7e72b971c8f94a8346effd27362cee8d72a98b55e317de280d2d63ee83ca7140b7913122d402c536d914c8510c81d08f0ad1c952f5b7ad5e7ef72d7c58cb4d5bafbea535b381df6ebe94c62cf782cf7ab81c017c296a88ca91d641b45748d230cf5e87e5dbee4764ea4d131ae022e6bbf3ffc3ea7b3f264737d9db44354bfffa63d79bc403d3ac23fb615edc382d18b0daf1bbb2fbd708d1830ddac1c3f098b8cb1ef9a0019d804bf5d953110f12f3b9a8b9b7e0c61cb5d34116add1fc9a92721ffa5fdc83e1488cf88aa6e56ad2dd55e0aadd827cc7b4e7242f01241f49e905e5e7451092c28c3f6560a6a0002e5d91fc253a5a8fd8f27e42f4f02f5849418b7d93df9b0c568022acaff410e797e88d2f8eeadbba66e423335b843df734d203fa62a861b712da8f33d5ea721767871aa2cd53e659e505507de9a54d7e6fa3c20bbfb28cd6dd2b314dabbb59e9ce15c0a94ec3b3efc54eaaa27bd7576a687dcaf58dc182662539943014a02e76dc89f48c9f83cc7199038418f965ad3dc866098b89cabcac8691b0f51ffb71902337e49293309c4480a8f1b32411cc1b55a0ec0fe2c2572fe9d488a25bfc12ba74048e1d7beee93321c7aa49ea17cb9728dc46e5272154b3b995feacbacb8885621b335274af4df9365f8c8121ff323b572d320c8fc46acd6218b9579d43005e7b0506ccb14d9a0dac4cc6efaf5366c44342eaea8b5a11457f5afbea913ce4975ab67e6a85bc46e714ca5741da38a7cceb9e85d77fd03f83f7a5ecc7241e69e2bda327f769b48ba5f13662585c72778d12bd0e9a62a3d0dbe376d1aee81e6845c2cf23f42c458ae5668c8d387bf9ab224bc9703f1c08347be810d2f19278fe8d97560b3c9f1816667d0461a25e778eb1404dcaac1ed0a6a0745f3a5d2dc1b6babf98f5135d531cb26334ef2fec4c78c95b7193935139664fc65f17b047eb3dc39e251ba52ce33f8099719f1a789db1690347355e7b02d4c522692b9597fd31abb90f973ae4eb0bd0d900cdd887ff01d4845d7f0aee39b220a65a5aeee0fd386054070723c841c042d5339cc6325f07f0f733d124c6524f388ef7419f42c06278b8fceaa3a16b202dfb539b129762397e29cdd679ca6240272fa0c3e2e8c0a27aaa407f30", 0x571, 0x6d91fb6102dc910c, 0x0, 0x0)
syz_emit_ethernet(0x66, &(0x7f0000000240)={@multicast, @broadcast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x30, 0x3a, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @mcast2, {[], @dest_unreach={0x1, 0x3, 0x0, 0x7f, '\x00', {0x0, 0x6, "e1f588", 0x7, 0x0, 0xff, @mcast1, @mcast2}}}}}}}, 0x0)
sendmmsg(r0, &(0x7f0000009b40)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000280)="0f86eabc3b111c6b135dde956c8de9f596ad81cf9c1c19d387f036934f94d35f09f6ac1207c1570df55fcaf907398c0c32d2ac9e7fbcda8ed0b9b989", 0x3c}, {0x0}], 0x2}}], 0x1, 0x4061)

2.089936777s ago: executing program 1 (id=2722):
r0 = syz_open_dev$video4linux(&(0x7f0000000080), 0x56209516, 0x0)
ioctl$VIDIOC_SUBDEV_S_FMT(r0, 0xc0585605, &(0x7f00000000c0)={0x1, 0x0, {0x0, 0x0, 0x2018, 0x0, 0x8, 0x8, 0x5, 0x657ef077e46ea00d}})

2.089568027s ago: executing program 1 (id=2723):
r0 = syz_open_dev$vbi(&(0x7f0000000100), 0x3, 0x2)
ioctl$VIDIOC_DQBUF(r0, 0xc0585611, &(0x7f0000000180)=@userptr={0x7, 0x5, 0x4, 0x100, 0x8001, {0x77359400}, {0x0, 0x2, 0x2, 0x6, 0xed, 0xc, "d4775dec"}, 0x10000, 0x2, {0x0}, 0x8e})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x2, 0x200, @loopback, 0x7}, 0x1c)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0xffff, @loopback, 0x3}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000500)="913900d648f49bc11961bae8cf7b0dbab634ea4ca937a1d0853ee2bbb5a886dcb84d0168e37d1665a84fc0b389656d70ad69bb70dfd742b266c239d2a611f70156e89eea309602ce6a30ee15dabf82b6d7b7daaf98d738186b84525a712e58e43668ecec02ac7a7602ffff7e006a6f470570fffffeffffffffff17e08789f489fb6b3f9f5888deb1f1a03e1943457b", 0x8f, 0x40000, 0x0, 0x0)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r3 = accept4(r2, 0x0, 0x0, 0x800)
getsockopt$inet_sctp_SCTP_RTOINFO(r3, 0x84, 0x0, &(0x7f0000000540)={0x0, 0x1, 0xe3}, 0x0)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000240), 0xfffffecc)

1.634183056s ago: executing program 3 (id=2724):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x1400c, &(0x7f0000000680)={[{@test_dummy_encryption}, {@init_itable}, {@noload}]}, 0x3, 0x470, &(0x7f0000001240)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x2081413, 0x0, 0x1, 0x0, &(0x7f0000000080))
chdir(&(0x7f00000000c0)='./bus\x00')
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./bus\x00', 0x3010009, 0x0, 0x1, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mount$overlay(0x0, &(0x7f0000000400)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})

1.591416352s ago: executing program 3 (id=2725):
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/rt_cache\x00')
write$P9_RFLUSH(r0, 0x0, 0x0)

1.341165303s ago: executing program 0 (id=2726):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000001600)=ANY=[@ANYBLOB="e8030000", @ANYRES16=r1, @ANYBLOB="05000000e7f4ffff1b001800000008010300", @ANYRES32=r2], 0x3e8}}, 0x0)

1.290568944s ago: executing program 0 (id=2727):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x800700, &(0x7f0000000580)={[{@grpjquota}, {@stripe={'stripe', 0x3d, 0x3}}, {@norecovery}, {@noinit_itable}, {@init_itable_val={'init_itable', 0x3d, 0x1}}, {@minixdf}, {@usrjquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@errors_continue}, {@dioread_lock}, {@noblock_validity}, {@noquota}]}, 0x3, 0x465, &(0x7f0000000f00)="$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")
mount$overlay(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90)
getdents(r0, &(0x7f0000000040)=""/61, 0x3d)

1.290366889s ago: executing program 3 (id=2728):
r0 = timerfd_create(0x8, 0x800)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
timerfd_settime(r0, 0x3, &(0x7f0000000080)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)

1.116899672s ago: executing program 33 (id=2728):
r0 = timerfd_create(0x8, 0x800)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
timerfd_settime(r0, 0x3, &(0x7f0000000080)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)

1.084460464s ago: executing program 0 (id=2730):
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x8, 0x3, 0x308, 0xf0, 0xffffffff, 0xffffffff, 0xf0, 0xffffffff, 0x390, 0xffffffff, 0xffffffff, 0x390, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00', {}, {}, 0x2f, 0x0, 0x3}, 0x0, 0xa8, 0xf0}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@local, 'nicvf0\x00', {0x3f66}}}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x3d}}, [0xffffffff], [], 'wg1\x00', 'gre0\x00', {}, {0xff}}, 0x0, 0x100, 0x148, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x563e4515, 0x0, 0x7, 0x3fc, 0x20}}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz0\x00', 0x2, 0x5, {0x6}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x368)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r0, 0x0, 0x22, 0x0, &(0x7f0000000380)="f6f4e9a1d78ad62ceef1884386dd78bb3fb7dbfc8180ca8395ccfda2e499b3dcf581", 0x0, 0xa1b, 0x0, 0x2f, 0x0, &(0x7f0000000700)="010a", 0x0}, 0x50)

1.083996749s ago: executing program 1 (id=2731):
r0 = syz_io_uring_setup(0x7440, &(0x7f00000004c0)={0x0, 0xa6e9, 0x10100, 0x2, 0x26}, &(0x7f0000000140)=<r1=>0x0, &(0x7f0000000380)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x10, 0x0, 0x0, 0x0, &(0x7f0000002000/0x2000)=nil, 0x2000, 0x65, 0x1, {0x0, r3}})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r4, &(0x7f00000001c0)=ANY=[@ANYBLOB='.'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_MKDIRAT={0x25, 0x3, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

951.388813ms ago: executing program 1 (id=2732):
syz_usb_connect(0x5, 0x24, &(0x7f0000002040)=ANY=[@ANYBLOB="12010000fe76181004160780a6af011703010902120001000000000904"], 0x0)
r0 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x800)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r0, 0x80dc5521, &(0x7f00000001c0)=""/4096)

951.031988ms ago: executing program 0 (id=2733):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000580)=[@in={0x2, 0x4e21, @local}], 0x10)
sendmsg$inet_sctp(r0, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000380)="c2", 0x1}], 0x1, 0x0, 0x0, 0x804c040}, 0x0)
r1 = dup(r0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x85, &(0x7f00000012c0)={0x0, @in={{0x2, 0x4e21, @local}}, 0x6, 0xfff7}, 0x90)

0s ago: executing program 0 (id=2734):
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
r2 = syz_io_uring_setup(0x1104, &(0x7f0000000300)={0x0, 0x0, 0x80, 0x0, 0x8000021e}, &(0x7f00000001c0)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x200, 0x0, 0x1})
io_uring_enter(r2, 0x47fa, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x20, 0x2, r0, 0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0, 0x0, 0x1})

kernel console output (not intermixed with test programs):

cb-9f91-9cb7200a101d
[  226.353468][ T5884] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[  226.393661][ T5310] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  226.519814][ T5884] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  226.523633][ T5884] usb 2-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  226.527083][ T5884] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[  226.530695][ T5884] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[  226.540113][ T5884] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  226.543626][ T5884] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  226.546280][ T5884] usb 2-1: Product: syz
[  226.547720][ T5884] usb 2-1: Manufacturer: syz
[  226.549264][ T5884] usb 2-1: SerialNumber: syz
[  226.552706][ T5884] usb 2-1: config 0 descriptor??
[  226.555603][ T5310] usb 4-1: Using ep0 maxpacket: 8
[  226.560585][ T5310] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  226.566901][ T5884] garmin_gps 2-1:0.0: Garmin GPS usb/tty converter detected
[  226.569518][ T5310] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  226.572736][ T5310] usb 4-1: New USB device found, idVendor=0404, idProduct=c20e, bcdDevice= 0.00
[  226.578755][ T5884] garmin_gps ttyUSB0: garmin_write_bulk - usb_submit_urb(write bulk) failed with status = -8
[  226.582558][ T5310] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  226.585338][ T5884] garmin_gps ttyUSB0: probe with driver garmin_gps failed with error -8
[  226.590891][ T5310] usb 4-1: config 0 descriptor??
[  226.778316][ T7664] usb 2-1: USB disconnect, device number 36
[  226.787571][ T7664] garmin_gps 2-1:0.0: device disconnected
[  226.801888][ T5310] usbhid 4-1:0.0: can't add hid device: -71
[  226.807031][ T5310] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  226.811036][ T5310] usb 4-1: USB disconnect, device number 9
[  226.890585][T10815] veth1_vlan: entered allmulticast mode
[  229.176076][ T2283] usb 1-1: new high-speed USB device number 36 using dummy_hcd
[  229.266325][T10865] IPVS: ip_vs_add_dest(): server weight less than zero
[  229.296434][T10867] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1885'.
[  229.396024][ T2283] usb 1-1: Using ep0 maxpacket: 8
[  229.400501][ T2283] usb 1-1: config index 0 descriptor too short (expected 301, got 45)
[  229.406347][ T2283] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  229.410394][ T2283] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  229.416935][ T2283] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  229.421159][ T2283] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  229.428084][ T2283] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  229.431855][ T2283] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  229.465270][T10873] openvswitch: netlink: Missing key (keys=40, expected=80)
[  229.563099][T10877] overlayfs: upper fs does not support tmpfile.
[  229.653528][ T2283] usb 1-1: usb_control_msg returned -32
[  229.656328][ T2283] usbtmc 1-1:16.0: can't read capabilities
[  229.658695][T10880] delete_channel: no stack
[  229.760944][T10887] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  229.956315][ T2283] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  230.027902][T10894] usbtmc 1-1:16.0: INITIATE_ABORT_BULK_OUT returned 0
[  230.126754][ T2283] usb 4-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  230.131522][ T2283] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  230.134447][ T2283] usb 4-1: Product: syz
[  230.136606][ T2283] usb 4-1: Manufacturer: syz
[  230.138826][ T2283] usb 4-1: SerialNumber: syz
[  230.163019][ T2283] usb 4-1: config 0 descriptor??
[  230.222894][ T5310] usb 1-1: USB disconnect, device number 36
[  230.422554][ T5310] usb 4-1: USB disconnect, device number 10
[  231.132366][T10899] netlink: 'syz.0.1899': attribute type 10 has an invalid length.
[  231.164479][T10899] 8021q: adding VLAN 0 to HW filter on device team0
[  231.180454][T10899] bond0: (slave team0): Enslaving as an active interface with an up link
[  231.198118][ T5912] bond0: (slave team0): interface is now down
[  231.200988][ T5912] bond0: now running without any active interface!
[  231.373863][T10907] loop3: detected capacity change from 0 to 16384
[  231.418171][T10913] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  231.961439][T10940] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  232.044879][T10943] loop3: detected capacity change from 0 to 256
[  232.071051][T10943] FAT-fs (loop3): Directory bread(block 64) failed
[  232.075882][T10943] FAT-fs (loop3): Directory bread(block 65) failed
[  232.078545][T10943] FAT-fs (loop3): Directory bread(block 66) failed
[  232.098033][T10943] FAT-fs (loop3): Directory bread(block 67) failed
[  232.101122][T10943] FAT-fs (loop3): Directory bread(block 68) failed
[  232.127086][T10943] FAT-fs (loop3): Directory bread(block 69) failed
[  232.129777][T10943] FAT-fs (loop3): Directory bread(block 70) failed
[  232.137647][T10943] FAT-fs (loop3): Directory bread(block 71) failed
[  232.140280][T10943] FAT-fs (loop3): Directory bread(block 72) failed
[  232.142891][T10943] FAT-fs (loop3): Directory bread(block 73) failed
[  232.413599][ T5884] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[  232.525015][ T2283] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  232.532709][T10962] loop0: detected capacity change from 0 to 256
[  232.536387][T10962] exfat: Unknown parameter ''
[  232.613352][ T5884] usb 2-1: Using ep0 maxpacket: 8
[  232.674418][ T5884] usb 2-1: config 0 has an invalid interface number: 151 but max is 1
[  232.677075][ T5884] usb 2-1: config 0 has no interface number 1
[  232.679063][ T5884] usb 2-1: config 0 interface 151 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  232.683226][ T5884] usb 2-1: config 0 interface 151 altsetting 0 has an endpoint descriptor with address 0xA3, changing to 0x83
[  232.686427][ T2283] usb 4-1: config 0 has an invalid interface number: 57 but max is 0
[  232.693573][ T2283] usb 4-1: config 0 has no interface number 0
[  232.695651][ T2283] usb 4-1: New USB device found, idVendor=093a, idProduct=010f, bcdDevice=c6.63
[  232.698550][ T2283] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  232.706419][ T2283] usb 4-1: config 0 descriptor??
[  232.712408][ T2283] gspca_main: mr97310a-2.14.0 probing 093a:010f
[  232.719929][ T2283] gspca_mr97310a: reg write [21] error -22
[  232.721970][ T2283] mr97310a 4-1:0.57: probe with driver mr97310a failed with error -22
[  232.917565][ T2283] usb 4-1: USB disconnect, device number 11
[  233.304608][ T5884] usb 2-1: config 0 interface 151 altsetting 0 endpoint 0x83 has invalid maxpacket 64466, setting to 1024
[  233.308170][ T5884] usb 2-1: config 0 interface 151 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 1024
[  233.311244][ T5884] usb 2-1: config 0 interface 151 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  233.315448][ T5884] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xC9, changing to 0x89
[  233.318950][ T5884] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[  233.321810][ T5884] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0
[  233.326882][ T5884] usb 2-1: New USB device found, idVendor=0499, idProduct=500a, bcdDevice=e7.b7
[  233.330005][ T5884] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  233.332466][ T5884] usb 2-1: Product: syz
[  233.334008][ T5884] usb 2-1: Manufacturer: syz
[  233.335467][ T5884] usb 2-1: SerialNumber: syz
[  233.348868][ T5884] usb 2-1: config 0 descriptor??
[  233.351757][T10949] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  233.372707][ T5884] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  233.376669][ T5884] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  233.398558][ T5884] snd-usb-audio 2-1:0.0: probe with driver snd-usb-audio failed with error -12
[  233.576833][ T5884] usb 2-1: USB disconnect, device number 37
[  233.726985][T10984] bridge0: port 2(bridge_slave_1) entered disabled state
[  233.731843][T10984] bridge0: port 1(bridge_slave_0) entered disabled state
[  233.880617][T10992] can0: slcan on ptm0.
[  233.966137][T10990] can0 (unregistered): slcan off ptm0.
[  234.095801][T10998] loop3: detected capacity change from 0 to 512
[  234.139086][T10998] EXT4-fs (loop3): Test dummy encryption mode enabled
[  234.189372][T10998] EXT4-fs (loop3): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  234.231297][T11004] binder: 11000:11004 ioctl c00c6211 0 returned -14
[  234.250455][T10991] loop0: detected capacity change from 0 to 32768
[  234.251907][ T9539] EXT4-fs (loop3): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  234.261172][T10991] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1939 (10991)
[  234.298482][T10991] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  234.337319][T10991] BTRFS info (device loop0): using crc32c (crc32c-lib) checksum algorithm
[  234.343775][T10991] BTRFS info (device loop0): using free-space-tree
[  234.628728][   T33] audit: type=1800 audit(2000000086.810:289): pid=10991 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1939" name="file1" dev="loop0" ino=260 res=0 errno=0
[  234.708549][ T5851] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  234.726471][T11008] loop3: detected capacity change from 0 to 4096
[  234.749940][T11008] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  234.782957][T11008] ntfs3(loop3): Failed to load $Extend (-22).
[  234.827623][T11008] ntfs3(loop3): Failed to initialize $Extend.
[  235.705532][T11035] loop3: detected capacity change from 0 to 40427
[  235.709631][T11035] F2FS-fs (loop3): build fault injection rate: 16
[  235.711986][T11035] F2FS-fs (loop3): build fault injection type: 0x77
[  235.716088][T11035] F2FS-fs (loop3): invalid crc value
[  235.718254][T11035] F2FS-fs (loop3): inject kvmalloc in f2fs_kvmalloc of f2fs_fill_super+0x4429/0x6ff0
[  235.721483][T11035] F2FS-fs (loop3): Failed to initialize F2FS segment manager (-12)
[  236.080528][T11048] loop3: detected capacity change from 0 to 4096
[  236.170938][T11043] loop1: detected capacity change from 0 to 131072
[  236.174623][T11043] F2FS-fs (loop1): Wrong CP boundary, start(512) end(1536) blocks(0)
[  236.177082][T11043] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  236.180791][T11043] F2FS-fs (loop1): invalid crc value
[  236.208510][T11048] ntfs3(loop3): failed to convert "0080" to macgaelic
[  236.212596][T11048] ntfs3(loop3): failed to convert name for inode 1e.
[  236.216203][T11048] ntfs3(loop3): ino=1f, mi_enum_attr
[  236.217159][T11043] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  236.218613][T11048] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  236.228427][T11043] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  236.230696][T11043] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[  236.263646][ T5884] usb 1-1: new high-speed USB device number 37 using dummy_hcd
[  236.416153][ T5884] usb 1-1: Using ep0 maxpacket: 32
[  236.428547][ T5884] usb 1-1: config 0 interface 0 altsetting 128 endpoint 0x2 has invalid wMaxPacketSize 0
[  236.437954][ T5884] usb 1-1: config 0 interface 0 has no altsetting 0
[  236.444603][ T5884] usb 1-1: New USB device found, idVendor=1b1c, idProduct=0c10, bcdDevice= 0.00
[  236.447571][ T5884] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  236.454032][ T5884] usb 1-1: config 0 descriptor??
[  236.609597][T11057] loop3: detected capacity change from 0 to 4096
[  236.669927][T11058] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  236.903070][ T5884] corsair-cpro 0003:1B1C:0C10.0015: unknown main item tag 0x0
[  236.906798][ T5884] corsair-cpro 0003:1B1C:0C10.0015: unknown main item tag 0x0
[  236.909155][ T5884] corsair-cpro 0003:1B1C:0C10.0015: unknown main item tag 0x0
[  236.911756][ T5884] corsair-cpro 0003:1B1C:0C10.0015: unknown main item tag 0x0
[  236.916932][ T5884] corsair-cpro 0003:1B1C:0C10.0015: unknown main item tag 0x0
[  236.969282][ T5884] corsair-cpro 0003:1B1C:0C10.0015: hidraw0: USB HID v4.06 Device [HID 1b1c:0c10] on usb-dummy_hcd.0-1/input0
[  237.064979][ T5884] corsair-cpro 0003:1B1C:0C10.0015: probe with driver corsair-cpro failed with error -38
[  237.281608][ T5884] usb 1-1: USB disconnect, device number 37
[  237.913225][T11068] loop0: detected capacity change from 0 to 256
[  237.916453][T11068] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  237.919891][T11068] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  237.976266][T11068] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  238.411518][T11077] loop0: detected capacity change from 0 to 32768
[  238.414853][T11077] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1960 (11077)
[  238.442645][T11077] BTRFS info (device loop0): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  238.446186][T11077] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  238.448942][T11077] BTRFS info (device loop0): using free-space-tree
[  238.516544][T11098] loop1: detected capacity change from 0 to 512
[  238.525876][T11098] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  238.548368][T11098] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  238.551051][T11098] System zones: 0-2, 18-18, 34-34
[  238.563930][T11098] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  238.568354][T11098] ext4 filesystem being mounted at /740/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  238.579274][T11098] EXT4-fs: Cannot change journaled quota options when quota turned on
[  238.599778][ T5849] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  238.635019][ T5851] BTRFS info (device loop0): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  238.781937][ T2283] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  239.195707][ T2283] usb 4-1: New USB device found, idVendor=041e, idProduct=4053, bcdDevice=e6.56
[  239.198511][ T2283] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  239.202737][ T2283] usb 4-1: config 0 descriptor??
[  239.208592][ T2283] gspca_main: gspca_zc3xx-2.14.0 probing 041e:4053
[  239.221021][T11120] loop0: detected capacity change from 0 to 1024
[  239.246398][T11120] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  239.250197][T11120] ext4 filesystem being mounted at /628/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  239.282029][ T5851] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.409480][ T2283] gspca_zc3xx: reg_w_i err -71
[  239.411060][ T2283] gspca_zc3xx 4-1:0.0: probe with driver gspca_zc3xx failed with error -71
[  239.421476][ T2283] usb 4-1: USB disconnect, device number 12
[  240.044494][ T5911] usb 2-1: new high-speed USB device number 38 using dummy_hcd
[  240.193485][ T5911] usb 2-1: Using ep0 maxpacket: 32
[  240.198205][ T5911] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  240.202348][ T5911] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  240.208945][T11147] loop3: detected capacity change from 0 to 32768
[  240.209000][ T5911] usb 2-1: New USB device found, idVendor=258a, idProduct=0033, bcdDevice= 0.00
[  240.220804][ T5911] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  240.224387][T11147] jfs_strtoUCS: char2uni returned -22.
[  240.226132][T11147] charset = euc-jp, char = 0xd4
[  240.239116][ T5911] usb 2-1: config 0 descriptor??
[  240.265501][T11149] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1982'.
[  240.499540][T11159] loop0: detected capacity change from 0 to 512
[  240.512647][T11159] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  240.531189][T11159] EXT4-fs (loop0): 1 truncate cleaned up
[  240.537610][T11159] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  240.626364][ T5851] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  240.652897][T11167] loop3: detected capacity change from 0 to 512
[  240.670911][T11167] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.1991: casefold flag without casefold feature
[  240.676669][ T5911] glorious 0003:258A:0033.0016: unknown main item tag 0x2
[  240.686644][T11167] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1991: couldn't read orphan inode 15 (err -117)
[  240.693975][ T5911] glorious 0003:258A:0033.0016: hidraw0: USB HID v0.00 Device [Glorious Model D] on usb-dummy_hcd.1-1/input0
[  240.708428][T11167] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  240.757375][T11172] loop0: detected capacity change from 0 to 128
[  240.780494][ T9539] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  240.781181][T11172] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  240.798295][T11172] ext4 filesystem being mounted at /637/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  240.852916][ T5851] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  240.883695][T11179] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1996'.
[  240.906054][ T5310] usb 2-1: USB disconnect, device number 38
[  240.962044][T11183] loop3: detected capacity change from 0 to 4096
[  240.968887][T11183] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512).
[  241.080403][ T5233] Bluetooth: hci0: ACL packet too small
[  241.199457][T11193] loop3: detected capacity change from 0 to 4096
[  241.232926][T11193] ntfs3(loop3): ino=0, "file0" failed to extend initialized size to 8fecc.
[  241.453700][T11197] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2004'.
[  241.457371][T11197] bridge_slave_1: left allmulticast mode
[  241.459667][T11197] bridge_slave_1: left promiscuous mode
[  241.462254][T11197] bridge0: port 2(bridge_slave_1) entered disabled state
[  241.469109][T11197] bridge_slave_0: left allmulticast mode
[  241.471409][T11197] bridge_slave_0: left promiscuous mode
[  241.477378][T11197] bridge0: port 1(bridge_slave_0) entered disabled state
[  241.544017][ T7664] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  241.695466][ T7664] usb 4-1: config 0 interface 0 altsetting 185 endpoint 0x81 has invalid wMaxPacketSize 0
[  241.699491][ T7664] usb 4-1: config 0 interface 0 has no altsetting 0
[  241.701674][ T7664] usb 4-1: New USB device found, idVendor=056e, idProduct=010c, bcdDevice= 0.00
[  241.705328][ T7664] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  241.710117][ T7664] usb 4-1: config 0 descriptor??
[  241.803361][ T5911] usb 2-1: new high-speed USB device number 39 using dummy_hcd
[  241.973464][ T5911] usb 2-1: Using ep0 maxpacket: 16
[  241.978080][ T5911] usb 2-1: config 0 has an invalid interface number: 63 but max is 0
[  241.980793][ T5911] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  241.984177][ T5911] usb 2-1: config 0 has no interface number 0
[  241.986235][ T5911] usb 2-1: config 0 interface 63 altsetting 0 endpoint 0x6 has invalid wMaxPacketSize 0
[  241.989290][ T5911] usb 2-1: config 0 interface 63 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  241.993518][ T5911] usb 2-1: New USB device found, idVendor=0644, idProduct=800e, bcdDevice=41.e6
[  241.996755][ T5911] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  242.002089][ T5911] usb 2-1: config 0 descriptor??
[  242.138521][ T7664] elecom 0003:056E:010C.0017: hidraw0: USB HID v8.00 Device [HID 056e:010c] on usb-dummy_hcd.3-1/input0
[  242.225101][ T5310] usb 2-1: USB disconnect, device number 39
[  242.257039][T11211] loop0: detected capacity change from 0 to 4096
[  242.260451][T11211] ntfs3(loop0): Different NTFS sector size (2048) and media sector size (512).
[  242.267491][T11211] ntfs3(loop0): ino=0, mi_enum_attr
[  242.281239][T11211] ntfs3(loop0): mft corrupted
[  242.283211][T11211] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  242.288716][T11211] ntfs3(loop0): Failed to load $MFT (-22).
[  242.331290][ T5884] usb 4-1: USB disconnect, device number 13
[  242.337772][T11213] loop0: detected capacity change from 0 to 8
[  242.446203][T11217] tipc: New replicast peer: 0.0.0.0
[  242.449468][T11217] tipc: Enabled bearer <udp:syz2>, priority 10
[  242.451931][T11217] tipc: New replicast peer: 10.1.1.0
[  242.953555][ T5233] Bluetooth: hci2: command tx timeout
[  243.289678][T11230] loop3: detected capacity change from 0 to 32768
[  243.303615][T11230] add_index: next_index = 0.  Resetting!
[  243.305770][T11230] find_entry called with index >= next_index
[  243.307577][T11230] find_entry called with index >= next_index
[  243.309669][T11230] find_entry called with index >= next_index
[  243.311895][T11230] find_entry called with index >= next_index
[  243.317106][T11230] non-latin1 character 0x3ff found in JFS file name
[  243.320594][T11230] mount with iocharset=utf8 to access
[  243.481254][T11235] dlm: plock device version mismatch: kernel (1.2.0), user (1.4.8)
[  243.515755][T11237] loop0: detected capacity change from 0 to 128
[  243.527183][T11237] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  243.531032][T11237] ext4 filesystem being mounted at /647/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  243.606823][T11237] EXT4-fs (loop0): shut down requested (1)
[  243.636443][ T5851] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  243.927660][T11260] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2031'.
[  243.931361][T11260] openvswitch: netlink: Invalid MD length 0 for MD type 0
[  243.935478][T11260] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  244.155837][T11278] loop3: detected capacity change from 0 to 1764
[  244.227508][T11282] netlink: 180 bytes leftover after parsing attributes in process `syz.0.2041'.
[  244.358991][T11294] loop0: detected capacity change from 0 to 1024
[  244.459412][ T5884] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[  244.462156][ T5884] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[  244.467533][ T5884] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[  244.470179][ T5884] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[  244.472610][ T5884] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[  244.477244][ T5884] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[  244.480052][ T5884] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[  244.482447][ T5884] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[  244.491795][ T5884] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[  244.494508][ T5884] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[  244.502803][ T5884] hid-generic 0000:0000:0000.0018: hidraw0: <UNKNOWN> HID v0.03 Device [syz1] on syz1
[  244.561267][T11309] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2054'.
[  244.956662][ T5233] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  244.959550][ T5233] Bluetooth: hci2: Injecting HCI hardware error event
[  244.965414][   T55] Bluetooth: hci2: hardware error 0x00
[  245.377608][T11319] loop0: detected capacity change from 0 to 32768
[  245.588720][T11319] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,checksum_err_retry_nr=12,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,degraded=yes,nojournal_transaction_names
[  245.588747][T11319]   allowing incompatible features above 0.0: (unknown version)
[  245.588756][T11319]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  245.616604][T11319] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0
[  245.619087][T11319] bcachefs (loop0): initializing new filesystem
[  245.631509][T11319] bcachefs (loop0): going read-write
[  245.641917][T11319] bcachefs (loop0): marking superblocks
[  245.664455][T11319] bcachefs (loop0): initializing freespace
[  245.672296][T11319] bcachefs (loop0): done initializing freespace
[  245.681958][T11319] bcachefs (loop0): reading snapshots table
[  245.686252][T11319] bcachefs (loop0): reading snapshots done
[  245.713155][T11319] bcachefs (loop0): done starting filesystem
[  245.764950][ T5851] bcachefs (loop0): shutting down
[  245.767012][ T5851] bcachefs (loop0): going read-only
[  245.769066][ T5851] bcachefs (loop0): finished waiting for writes to stop
[  245.772659][ T5851] bcachefs (loop0): flushing journal and stopping allocators, journal seq 2
[  245.804970][ T5851] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 3
[  245.808472][ T5851] bcachefs (loop0): clean shutdown complete, journal seq 4
[  245.811248][ T5851] bcachefs (loop0): marking filesystem clean
[  245.831670][ T5851] bcachefs (loop0): shutdown complete
[  245.853712][ T5911] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  246.003531][ T5911] usb 4-1: Using ep0 maxpacket: 8
[  246.008464][ T5911] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xAD, changing to 0x8D
[  246.013109][ T5911] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8D has invalid wMaxPacketSize 0
[  246.022877][ T5911] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8D has invalid maxpacket 0
[  246.027887][ T5911] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  246.035093][ T5911] usb 4-1: New USB device found, idVendor=0bfd, idProduct=0124, bcdDevice=3a.9f
[  246.038946][ T5911] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  246.042059][ T5911] usb 4-1: Product: syz
[  246.044091][ T5911] usb 4-1: Manufacturer: syz
[  246.045930][ T5911] usb 4-1: SerialNumber: syz
[  246.050455][ T5911] usb 4-1: config 0 descriptor??
[  246.059411][ T5911] kvaser_usb 4-1:0.0: error -ENODEV: Cannot get usb endpoint(s)
[  246.261495][ T5310] usb 4-1: USB disconnect, device number 14
[  246.340447][T11333] MTD: Couldn't look up './cgroup': -15
[  247.033541][   T55] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  247.253444][T11348] netlink: 'syz.0.2065': attribute type 5 has an invalid length.
[  247.501528][T11361] loop1: detected capacity change from 0 to 1024
[  247.602846][T11361] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  247.640144][ T5849] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  247.984046][T11370] loop0: detected capacity change from 0 to 32768
[  248.009289][T11370] (syz.0.2074,11370,0):ocfs2_load_local_alloc:339 ERROR: inconsistent detected, clean journal with unrecovered local alloc, please run fsck.ocfs2!
[  248.009289][T11370] found = 1, set = 0, taken = 0, off = 0
[  248.016856][T11370] (syz.0.2074,11370,0):ocfs2_load_local_alloc:356 ERROR: status = -22
[  248.019854][T11370] (syz.0.2074,11370,0):ocfs2_check_volume:2404 ERROR: status = -22
[  248.022553][T11370] (syz.0.2074,11370,0):ocfs2_check_volume:2432 ERROR: status = -22
[  248.025725][T11370] (syz.0.2074,11370,0):ocfs2_mount_volume:1764 ERROR: status = -22
[  248.028968][T11370] (syz.0.2074,11370,0):ocfs2_inode_is_valid_to_delete:928 ERROR: Skipping delete of root inode.
[  248.036103][T11370] (syz.0.2074,11370,0):ocfs2_fill_super:1177 ERROR: status = -22
[  248.143736][ T7664] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[  248.237950][T11383] JFS: charset not found
[  248.286110][   T33] audit: type=1326 audit(2000000100.470:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11385 comm="syz.0.2080" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c92f8ebe9 code=0x7ffc0000
[  248.307701][ T7664] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  248.311537][ T7664] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  248.316741][   T33] audit: type=1326 audit(2000000100.480:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11385 comm="syz.0.2080" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c92f8ebe9 code=0x7ffc0000
[  248.347559][ T7664] usb 2-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  248.351382][   T33] audit: type=1326 audit(2000000100.480:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11385 comm="syz.0.2080" exe="/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f9c92f8ebe9 code=0x7ffc0000
[  248.361523][ T7664] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  248.363769][   T33] audit: type=1326 audit(2000000100.480:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11385 comm="syz.0.2080" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c92f8ebe9 code=0x7ffc0000
[  248.368971][ T7664] usb 2-1: Product: syz
[  248.384483][   T33] audit: type=1326 audit(2000000100.480:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11385 comm="syz.0.2080" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c92f8ebe9 code=0x7ffc0000
[  248.387630][ T7664] usb 2-1: Manufacturer: syz
[  248.392946][   T33] audit: type=1326 audit(2000000100.480:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11385 comm="syz.0.2080" exe="/syz-executor" sig=0 arch=c000003e syscall=312 compat=0 ip=0x7f9c92f8ebe9 code=0x7ffc0000
[  248.404889][   T33] audit: type=1326 audit(2000000100.480:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11385 comm="syz.0.2080" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c92f8ebe9 code=0x7ffc0000
[  248.415099][   T33] audit: type=1326 audit(2000000100.480:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11385 comm="syz.0.2080" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c92f8ebe9 code=0x7ffc0000
[  248.427169][ T7664] usb 2-1: SerialNumber: syz
[  248.431659][ T7664] usb 2-1: config 0 descriptor??
[  248.441261][T11375] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  248.447331][T11375] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  248.828328][T11375] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  248.830663][T11375] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  249.213407][T11413] loop0: detected capacity change from 0 to 32768
[  249.217104][T11413] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.2092 (11413)
[  249.224711][T11413] BTRFS info (device loop0): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  249.228427][T11413] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm
[  249.232462][T11413] BTRFS info (device loop0): using free-space-tree
[  249.243159][ T7664] dm9601: No valid MAC address in EEPROM, using 00:00:00:00:00:00
[  249.269769][   T27] BTRFS warning (device loop0): checksum verify failed on logical 5337088 mirror 1 wanted 0x324c5e2d0cac2dc8f61cbfdfc8cd69d9816061b1498b9e1bff7d10a59610160b found 0xf8bb6bdef03b64ff3b11a2a87ba7a2aeacfdb41cc49a87adad5cc1644d216b29 level 0
[  249.284070][T11413] BTRFS error (device loop0): failed to load root extent
[  249.288890][ T6841] BTRFS warning (device loop0 state C): checksum verify failed on logical 5341184 mirror 1 wanted 0xc53d3c5bb04ba5dfc01f4c277f0b81815915cb99da5074f609a3f7f617cf284a found 0xd34891a64d32c06b063fbbf3d26e09cb4d5acf5ade8dc51c4cd532bb53f895d0 level 0
[  249.314081][T11413] BTRFS error (device loop0 state C): failed to load root free space
[  249.318225][ T6841] BTRFS warning (device loop0 state C): checksum verify failed on logical 5287936 mirror 1 wanted 0x31987782e3a542b4b1826f4a60605b79838e23bf27075900db4b92202c72b2fd found 0xceda3bc49047826ec4468b88ec74a14d6cd3232f25b2c41331ed48993507590e level 0
[  249.334461][   T27] BTRFS warning (device loop0 state C): checksum verify failed on logical 5292032 mirror 1 wanted 0xcbbb23d5b53a3b4892a5068ee5011732ffcd94742b434497e3f11d7ca86a6d23 found 0x6ab87e71a537053373402d980abd70276b583e303a68e0dd0a46bb41cfc306c8 level 0
[  249.411525][ T5851] BTRFS info (device loop0 state C): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  249.445771][ T7664] dm9601 2-1:0.0 (unnamed net_device) (uninitialized): Error reading chip ID
[  249.467718][ T7664] usb 2-1: USB disconnect, device number 40
[  249.640393][T11440] loop0: detected capacity change from 0 to 8
[  249.648701][T11440] SQUASHFS error: zlib decompression failed, data probably corrupt
[  249.656715][T11440] SQUASHFS error: Failed to read block 0x9b: -5
[  249.658802][T11440] SQUASHFS error: Unable to read metadata cache entry [99]
[  249.661374][T11440] SQUASHFS error: Unable to read inode 0x127
[  249.711495][T11431] loop3: detected capacity change from 0 to 32768
[  249.769341][T11431] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  249.785799][T11431] (syz.3.2093,11431,1):ocfs2_find_entry:1094 ERROR: status = -117
[  249.793126][T11431] (syz.3.2093,11431,1):ocfs2_find_entry:1094 ERROR: status = -117
[  249.797958][T11431] (syz.3.2093,11431,1):ocfs2_symlink:2080 ERROR: status = -117
[  249.819415][ T9539] (syz-executor,9539,0):ocfs2_inode_is_valid_to_delete:948 ERROR: Skipping delete of system file 76
[  249.840133][ T9539] ocfs2: Unmounting device (7,3) on (node local)
[  249.937317][T11453] input: syz1 as /devices/virtual/input/input13
[  250.390766][T11487] loop1: detected capacity change from 0 to 256
[  250.403159][T11487] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  250.414556][T11487] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=512, location=512
[  250.417808][T11487] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  250.420235][T11487] UDF-fs: Scanning with blocksize 512 failed
[  250.423044][T11487] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  250.430426][T11487] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  250.436840][T11489] binder: 11488:11489 ioctl c0306201 200000000280 returned -14
[  250.438762][T11477] loop3: detected capacity change from 0 to 32768
[  250.448621][T11477] XFS: attr2 mount option is deprecated.
[  250.448975][   T33] audit: type=1800 audit(2000000102.630:298): pid=11487 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2117" name="file2" dev="loop1" ino=66 res=0 errno=0
[  250.453710][T11477] XFS: attr2 mount option is deprecated.
[  250.523937][T11477] XFS (loop3): Mounting V5 filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 in no-recovery mode. Filesystem will be inconsistent.
[  250.556573][T11477] XFS (loop3): ro->rw transition prohibited on norecovery mount
[  250.622630][ T9539] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  251.113953][T11519] loop3: detected capacity change from 0 to 40427
[  251.122663][T11519] F2FS-fs (loop3): invalid crc value
[  251.160566][T11519] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  251.165192][T11519] F2FS-fs (loop3): Start checkpoint disabled!
[  251.168452][T11519] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  251.187678][   T26] kworker/u9:0: attempt to access beyond end of device
[  251.187678][   T26] loop3: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  251.192618][   T26] CPU: 0 UID: 0 PID: 26 Comm: kworker/u9:0 Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895-dirty #0 PREEMPT(full) 
[  251.192633][   T26] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  251.192638][   T26] Workqueue: writeback wb_workfn (flush-7:3)
[  251.192655][   T26] Call Trace:
[  251.192659][   T26]  <TASK>
[  251.192664][   T26]  dump_stack_lvl+0x189/0x250
[  251.192677][   T26]  ? __pfx_dump_stack_lvl+0x10/0x10
[  251.192687][   T26]  ? __pfx_queue_work_on+0x10/0x10
[  251.192695][   T26]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  251.192705][   T26]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  251.192719][   T26]  f2fs_handle_critical_error+0x37c/0x540
[  251.192734][   T26]  f2fs_write_end_io+0x886/0xb60
[  251.192755][   T26]  __submit_merged_bio+0x27a/0x6a0
[  251.192764][   T26]  ? up_write+0x1c4/0x420
[  251.192776][   T26]  __submit_merged_write_cond+0x44c/0x530
[  251.192789][   T26]  f2fs_sync_node_pages+0x1479/0x15e0
[  251.192809][   T26]  ? __pfx_f2fs_sync_node_pages+0x10/0x10
[  251.192818][   T26]  ? __percpu_counter_sum+0x1c2/0x1e0
[  251.192842][   T26]  ? do_raw_spin_lock+0x121/0x290
[  251.192853][   T26]  ? rcu_is_watching+0x15/0xb0
[  251.192862][   T26]  ? blk_start_plug+0x52/0x1b0
[  251.192874][   T26]  f2fs_write_node_pages+0x303/0x6e0
[  251.192893][   T26]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  251.192910][   T26]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  251.192920][   T26]  do_writepages+0x32e/0x550
[  251.192934][   T26]  ? reacquire_held_locks+0x127/0x1d0
[  251.192941][   T26]  ? writeback_sb_inodes+0x384/0x1010
[  251.192957][   T26]  __writeback_single_inode+0x145/0xff0
[  251.192967][   T26]  ? do_raw_spin_unlock+0x4d/0x240
[  251.192978][   T26]  writeback_sb_inodes+0x6c7/0x1010
[  251.193003][   T26]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  251.193035][   T26]  ? rcu_is_watching+0x15/0xb0
[  251.193048][   T26]  wb_writeback+0x43b/0xaf0
[  251.193062][   T26]  ? queue_io+0x391/0x590
[  251.193074][   T26]  ? __pfx_wb_writeback+0x10/0x10
[  251.193088][   T26]  ? _raw_spin_unlock_irq+0x23/0x50
[  251.193099][   T26]  wb_workfn+0x409/0xef0
[  251.193140][   T26]  ? __pfx_wb_workfn+0x10/0x10
[  251.193153][   T26]  ? __lock_acquire+0xab9/0xd20
[  251.193170][   T26]  ? process_scheduled_works+0x9ef/0x17b0
[  251.193182][   T26]  ? _raw_spin_unlock_irq+0x23/0x50
[  251.193189][   T26]  ? process_scheduled_works+0x9ef/0x17b0
[  251.193196][   T26]  ? process_scheduled_works+0x9ef/0x17b0
[  251.193205][   T26]  process_scheduled_works+0xae1/0x17b0
[  251.193229][   T26]  ? __pfx_process_scheduled_works+0x10/0x10
[  251.193266][   T26]  worker_thread+0x8a0/0xda0
[  251.193291][   T26]  kthread+0x711/0x8a0
[  251.193304][   T26]  ? __pfx_worker_thread+0x10/0x10
[  251.193312][   T26]  ? __pfx_kthread+0x10/0x10
[  251.193322][   T26]  ? _raw_spin_unlock_irq+0x23/0x50
[  251.193331][   T26]  ? lockdep_hardirqs_on+0x9c/0x150
[  251.193339][   T26]  ? __pfx_kthread+0x10/0x10
[  251.193350][   T26]  ret_from_fork+0x3fc/0x770
[  251.193360][   T26]  ? __pfx_ret_from_fork+0x10/0x10
[  251.193372][   T26]  ? __switch_to_asm+0x39/0x70
[  251.193381][   T26]  ? __switch_to_asm+0x33/0x70
[  251.193390][   T26]  ? __pfx_kthread+0x10/0x10
[  251.193401][   T26]  ret_from_fork_asm+0x1a/0x30
[  251.193420][   T26]  </TASK>
[  251.293051][   T26] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  251.295548][   T26] CPU: 0 UID: 0 PID: 26 Comm: kworker/u9:0 Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895-dirty #0 PREEMPT(full) 
[  251.295569][   T26] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  251.295575][   T26] Workqueue: writeback wb_workfn (flush-7:3)
[  251.295590][   T26] Call Trace:
[  251.295594][   T26]  <TASK>
[  251.295598][   T26]  dump_stack_lvl+0x189/0x250
[  251.295612][   T26]  ? __pfx_dump_stack_lvl+0x10/0x10
[  251.295621][   T26]  ? __pfx_queue_work_on+0x10/0x10
[  251.295630][   T26]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  251.295639][   T26]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  251.295654][   T26]  f2fs_handle_critical_error+0x37c/0x540
[  251.295669][   T26]  f2fs_write_end_io+0x886/0xb60
[  251.295689][   T26]  __submit_merged_bio+0x27a/0x6a0
[  251.295698][   T26]  ? up_write+0x1c4/0x420
[  251.295710][   T26]  __submit_merged_write_cond+0x44c/0x530
[  251.295724][   T26]  f2fs_sync_node_pages+0x1479/0x15e0
[  251.295744][   T26]  ? __pfx_f2fs_sync_node_pages+0x10/0x10
[  251.295753][   T26]  ? __percpu_counter_sum+0x1c2/0x1e0
[  251.295777][   T26]  ? do_raw_spin_lock+0x121/0x290
[  251.295787][   T26]  ? rcu_is_watching+0x15/0xb0
[  251.295796][   T26]  ? blk_start_plug+0x52/0x1b0
[  251.295808][   T26]  f2fs_write_node_pages+0x303/0x6e0
[  251.295821][   T26]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  251.295838][   T26]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  251.295847][   T26]  do_writepages+0x32e/0x550
[  251.295861][   T26]  ? reacquire_held_locks+0x127/0x1d0
[  251.295869][   T26]  ? writeback_sb_inodes+0x384/0x1010
[  251.295883][   T26]  __writeback_single_inode+0x145/0xff0
[  251.295893][   T26]  ? do_raw_spin_unlock+0x4d/0x240
[  251.295905][   T26]  writeback_sb_inodes+0x6c7/0x1010
[  251.295930][   T26]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  251.295962][   T26]  ? rcu_is_watching+0x15/0xb0
[  251.295975][   T26]  wb_writeback+0x43b/0xaf0
[  251.295989][   T26]  ? queue_io+0x391/0x590
[  251.296000][   T26]  ? __pfx_wb_writeback+0x10/0x10
[  251.296015][   T26]  ? _raw_spin_unlock_irq+0x23/0x50
[  251.296026][   T26]  wb_workfn+0x409/0xef0
[  251.296043][   T26]  ? __pfx_wb_workfn+0x10/0x10
[  251.296053][   T26]  ? __lock_acquire+0xab9/0xd20
[  251.296071][   T26]  ? process_scheduled_works+0x9ef/0x17b0
[  251.296082][   T26]  ? _raw_spin_unlock_irq+0x23/0x50
[  251.296089][   T26]  ? process_scheduled_works+0x9ef/0x17b0
[  251.296096][   T26]  ? process_scheduled_works+0x9ef/0x17b0
[  251.296129][   T26]  process_scheduled_works+0xae1/0x17b0
[  251.296154][   T26]  ? __pfx_process_scheduled_works+0x10/0x10
[  251.296177][   T26]  worker_thread+0x8a0/0xda0
[  251.296199][   T26]  kthread+0x711/0x8a0
[  251.296211][   T26]  ? __pfx_worker_thread+0x10/0x10
[  251.296218][   T26]  ? __pfx_kthread+0x10/0x10
[  251.296229][   T26]  ? _raw_spin_unlock_irq+0x23/0x50
[  251.296236][   T26]  ? lockdep_hardirqs_on+0x9c/0x150
[  251.296245][   T26]  ? __pfx_kthread+0x10/0x10
[  251.296255][   T26]  ret_from_fork+0x3fc/0x770
[  251.296265][   T26]  ? __pfx_ret_from_fork+0x10/0x10
[  251.296277][   T26]  ? __switch_to_asm+0x39/0x70
[  251.296286][   T26]  ? __switch_to_asm+0x33/0x70
[  251.296294][   T26]  ? __pfx_kthread+0x10/0x10
[  251.296304][   T26]  ret_from_fork_asm+0x1a/0x30
[  251.296323][   T26]  </TASK>
[  251.296327][   T26] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  251.323431][   T24] usb 1-1: new high-speed USB device number 38 using dummy_hcd
[  251.563586][   T24] usb 1-1: Using ep0 maxpacket: 8
[  251.572340][   T24] usb 1-1: New USB device found, idVendor=093b, idProduct=a102, bcdDevice= 0.01
[  251.581527][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  251.585912][T11542] netlink: 'syz.3.2137': attribute type 11 has an invalid length.
[  251.588915][T11542] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2137'.
[  251.589452][   T24] usb 1-1: Product: syz
[  251.601528][   T24] usb 1-1: Manufacturer: syz
[  251.605044][   T24] usb 1-1: SerialNumber: syz
[  251.608892][   T24] usb 1-1: config 0 descriptor??
[  251.613169][   T24] go7007 1-1:0.0: probe with driver go7007 failed with error -12
[  251.852656][ T7664] usb 1-1: USB disconnect, device number 38
[  252.502619][T11573] loop1: detected capacity change from 0 to 40427
[  252.507743][T11573] F2FS-fs (loop1): build fault injection rate: 690
[  252.514596][T11573] F2FS-fs (loop1): invalid crc value
[  252.550224][T11573] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  252.555089][T11573] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  252.851034][T11586] loop0: detected capacity change from 0 to 2048
[  252.896922][T11589] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  252.966559][T11586] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  252.979881][T11586] Remounting filesystem read-only
[  253.078651][ T5851] NILFS (loop0): disposed unprocessed dirty file(s) when detaching log writer
[  253.168755][T11598] loop0: detected capacity change from 0 to 128
[  253.302328][T11604] netlink: 'syz.1.2163': attribute type 1 has an invalid length.
[  255.438341][ T1361] ieee802154 phy0 wpan0: encryption failed: -22
[  255.440533][ T1361] ieee802154 phy1 wpan1: encryption failed: -22
[  255.675626][T11643] loop0: detected capacity change from 0 to 256
[  255.689303][T11643] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  255.724298][T11643] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  255.728505][T11645] netlink: 'syz.3.2179': attribute type 8 has an invalid length.
[  255.852430][T11647] netlink: 'syz.3.2180': attribute type 2 has an invalid length.
[  255.856510][T11647] netlink: 'syz.3.2180': attribute type 1 has an invalid length.
[  255.859058][T11647] netlink: 152 bytes leftover after parsing attributes in process `syz.3.2180'.
[  255.967739][T11653] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2183'.
[  256.120635][T11651] loop3: detected capacity change from 0 to 32768
[  256.504427][ T5310] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  256.653559][ T5310] usb 4-1: Using ep0 maxpacket: 16
[  256.657564][ T5310] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  256.661791][ T5310] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  256.666403][ T5310] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  256.670255][ T5310] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  256.676713][ T5310] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  256.683792][ T5310] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  256.689312][ T5310] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  256.692715][ T5310] usb 4-1: Manufacturer: syz
[  256.717958][ T5310] usb 4-1: config 0 descriptor??
[  257.114366][ T5310] rc_core: IR keymap rc-hauppauge not found
[  257.114819][ T5310] Registered IR keymap rc-empty
[  257.121063][ T5310] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  257.133904][ T5310] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  257.174120][ T5310] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  257.209179][ T5310] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input15
[  257.269330][ T5310] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  257.293958][ T5310] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  257.313736][ T5310] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  257.340823][ T5310] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  257.364565][ T5310] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  257.383899][ T5310] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  257.404107][ T5310] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  257.424073][ T5310] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  257.444553][ T5310] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  257.464347][ T5310] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  257.523706][ T5310] mceusb 4-1:0.0: Registered  with mce emulator interface version 1
[  257.525741][ T5911] usb 1-1: new full-speed USB device number 39 using dummy_hcd
[  257.527340][ T5310] mceusb 4-1:0.0: 2 tx ports (0x1 cabled) and 2 rx sensors (0x0 active)
[  257.548377][ T5310] usb 4-1: USB disconnect, device number 15
[  257.736319][ T5911] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  257.749800][ T5911] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBE, changing to 0x8E
[  257.760282][ T5911] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 10
[  257.773438][ T5911] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  257.779276][ T5911] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  257.815209][ T5911] usb 1-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46
[  257.818328][ T5911] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35
[  257.821788][ T5911] usb 1-1: Product: syz
[  257.823097][ T5911] usb 1-1: Manufacturer: syz
[  257.825795][ T5911] usb 1-1: SerialNumber: syz
[  257.833208][ T5911] usb 1-1: config 0 descriptor??
[  258.050524][ T5911] radio-si470x 1-1:0.0: DeviceID=0x0000 ChipID=0x0000
[  258.056117][ T5911] radio-si470x 1-1:0.0: This driver is known to work with firmware version 12, but the device has firmware version 0.
[  258.251292][ T5911] radio-si470x 1-1:0.0: software version 0, hardware version 0
[  258.261209][ T5911] radio-si470x 1-1:0.0: This driver is known to work with hardware version 1, but the device has hardware version 0.
[  258.266056][ T5911] radio-si470x 1-1:0.0: If you have some trouble using this driver, please report to V4L ML at linux-media@vger.kernel.org
[  258.417814][T11684] loop3: detected capacity change from 0 to 32768
[  258.433536][T11684] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  258.452289][ T5911] radio-si470x 1-1:0.0: submitting int urb failed (-90)
[  258.469688][T11684] XFS (loop3): Ending clean mount
[  258.480109][T11684] XFS (loop3): Quotacheck needed: Please wait.
[  258.520681][T11684] XFS (loop3): Quotacheck: Done.
[  258.566765][ T9539] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  258.853757][T11702] loop1: detected capacity change from 0 to 32768
[  258.861428][T11702] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.2201 (11702)
[  258.889258][T11702] BTRFS info (device loop1): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  258.893224][T11702] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  258.913461][T11702] BTRFS info (device loop1): using free-space-tree
[  259.115755][ T5849] BTRFS info (device loop1): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  259.256377][ T5911] radio-si470x 1-1:0.0: si470x_get_report: usb_control_msg returned -71
[  259.272519][ T5911] radio-si470x 1-1:0.0: probe with driver radio-si470x failed with error -22
[  259.288815][ T5911] usb 1-1: USB disconnect, device number 39
[  259.355635][T11739] vimc link validate: Sensor B:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 1:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  259.433954][ T5884] usb 4-1: new full-speed USB device number 16 using dummy_hcd
[  259.665408][ T5884] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  259.678083][ T5884] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2
[  259.698077][ T5884] usb 4-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  259.711487][ T5884] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  259.829412][ T5884] usb 4-1: config 0 descriptor??
[  259.845401][ T5884] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  259.850133][ T5884] dvb-usb: bulk message failed: -22 (3/0)
[  259.863778][ T5884] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  259.867829][ T5884] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  259.870340][ T5884] usb 4-1: media controller created
[  259.876457][ T5884] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  259.887395][ T5884] dvb-usb: bulk message failed: -22 (6/0)
[  259.890641][ T5884] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  259.895857][ T5884] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.3/usb4/4-1/input/input17
[  259.903183][ T5884] dvb-usb: schedule remote query interval to 150 msecs.
[  259.907353][ T5884] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  260.077526][ T5884] dvb-usb: bulk message failed: -22 (1/0)
[  260.081347][ T5884] dvb-usb: error while querying for an remote control event.
[  260.221093][ T5884] usb 4-1: USB disconnect, device number 16
[  260.269587][ T5884] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  260.529672][T11766] loop1: detected capacity change from 0 to 40427
[  260.546050][T11766] F2FS-fs (loop1): invalid crc value
[  260.576414][T11766] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  260.579763][T11766] F2FS-fs (loop1): Start checkpoint disabled!
[  260.583010][T11766] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  261.065037][ T7664] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  261.223718][ T7664] usb 4-1: Using ep0 maxpacket: 32
[  261.230038][ T7664] usb 4-1: config 0 has an invalid interface number: 67 but max is 0
[  261.233357][ T7664] usb 4-1: config 0 has no interface number 0
[  261.246270][ T7664] usb 4-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  261.249706][ T7664] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  261.252587][ T7664] usb 4-1: Product: syz
[  261.254540][ T7664] usb 4-1: Manufacturer: syz
[  261.257039][ T7664] usb 4-1: SerialNumber: syz
[  261.261534][ T7664] usb 4-1: config 0 descriptor??
[  261.267902][   T24] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[  261.274669][ T7664] smsc95xx v2.0.0
[  261.427333][   T24] usb 2-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  261.430832][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  261.436124][   T24] usb 2-1: Product: syz
[  261.437944][   T24] usb 2-1: Manufacturer: syz
[  261.439715][   T24] usb 2-1: SerialNumber: syz
[  261.444763][   T24] usb 2-1: config 0 descriptor??
[  261.450078][   T24] ch341 2-1:0.0: ch341-uart converter detected
[  261.679303][ T7664] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[  261.683411][ T7664] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  262.198092][T11782] program syz.0.2229 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  262.560391][T11784] loop0: detected capacity change from 0 to 40427
[  262.565738][T11784] F2FS-fs: heap/no_heap options were deprecated
[  262.568753][T11784] F2FS-fs (loop0): build fault injection rate: 19
[  262.570842][T11784] F2FS-fs (loop0): build fault injection type: 0x77e8c
[  262.577193][T11784] F2FS-fs (loop0): invalid crc value
[  262.586218][T11784] F2FS-fs (loop0): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_ra_meta_pages+0x1cb/0x970
[  262.597748][T11784] F2FS-fs (loop0): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_bio+0x18f/0xaa0
[  262.605954][    C0] F2FS-fs (loop0): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[  262.660583][   T24] ch341-uart ttyUSB0: break control not supported, using simulated break
[  262.667056][   T24] usb 2-1: ch341-uart converter now attached to ttyUSB0
[  262.671132][   T24] usb 2-1: USB disconnect, device number 41
[  262.675742][   T24] ch341-uart ttyUSB0: ch341-uart converter now disconnected from ttyUSB0
[  262.678948][   T24] ch341 2-1:0.0: device disconnected
[  262.705838][T11784] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  262.710912][T11784] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  262.736914][T11784] F2FS-fs (loop0): inject page alloc in f2fs_grab_cache_folio of f2fs_new_node_folio+0x131/0xa40
[  262.751208][T11784] F2FS-fs (loop0): inject dquot initialize in f2fs_dquot_initialize of f2fs_new_inode+0x509/0x1050
[  262.758201][   T33] audit: type=1800 audit(2000000114.940:299): pid=11784 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2230" name="file1" dev="loop0" ino=17 res=0 errno=0
[  262.806289][ T5851] F2FS-fs (loop0): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_write+0x585/0x21b0
[  262.812127][ T5851] F2FS-fs (loop0): invalid blkaddr: 5637, type: 7, run fsck to fix.
[  262.816121][ T5851] syz-executor: attempt to access beyond end of device
[  262.816121][ T5851] loop0: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  262.822036][ T5851] CPU: 0 UID: 0 PID: 5851 Comm: syz-executor Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895-dirty #0 PREEMPT(full) 
[  262.822057][ T5851] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  262.822084][ T5851] Call Trace:
[  262.822090][ T5851]  <TASK>
[  262.822098][ T5851]  dump_stack_lvl+0x189/0x250
[  262.822124][ T5851]  ? __pfx_dump_stack_lvl+0x10/0x10
[  262.822142][ T5851]  ? __pfx_queue_work_on+0x10/0x10
[  262.822156][ T5851]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  262.822173][ T5851]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  262.822199][ T5851]  f2fs_handle_critical_error+0x37c/0x540
[  262.822224][ T5851]  f2fs_write_end_io+0x886/0xb60
[  262.822261][ T5851]  __submit_merged_bio+0x27a/0x6a0
[  262.822283][ T5851]  __submit_merged_write_cond+0x255/0x530
[  262.822304][ T5851]  f2fs_write_data_pages+0x261d/0x3000
[  262.822349][ T5851]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  262.822414][ T5851]  ? lockdep_hardirqs_on+0x9c/0x150
[  262.822459][ T5851]  ? folios_put_refs+0x560/0x640
[  262.822487][ T5851]  ? __lock_acquire+0xab9/0xd20
[  262.822515][ T5851]  ? do_raw_spin_lock+0x121/0x290
[  262.822542][ T5851]  ? do_raw_spin_unlock+0x4d/0x240
[  262.822560][ T5851]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  262.822580][ T5851]  do_writepages+0x32e/0x550
[  262.822610][ T5851]  ? do_raw_spin_unlock+0x4d/0x240
[  262.822629][ T5851]  filemap_fdatawrite+0x199/0x240
[  262.822648][ T5851]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  262.822701][ T5851]  ? do_raw_spin_unlock+0x4d/0x240
[  262.822720][ T5851]  f2fs_sync_dirty_inodes+0x31f/0x830
[  262.822755][ T5851]  f2fs_write_checkpoint+0x95a/0x1df0
[  262.822794][ T5851]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  262.822848][ T5851]  ? kill_f2fs_super+0x298/0x6c0
[  262.822874][ T5851]  kill_f2fs_super+0x2c3/0x6c0
[  262.822899][ T5851]  ? __pfx_kill_f2fs_super+0x10/0x10
[  262.822917][ T5851]  ? radix_tree_delete_item+0x2b6/0x400
[  262.822940][ T5851]  ? shrinker_free+0x2ce/0x3e0
[  262.822958][ T5851]  deactivate_locked_super+0xbc/0x130
[  262.822978][ T5851]  cleanup_mnt+0x425/0x4c0
[  262.822994][ T5851]  ? lockdep_hardirqs_on+0x9c/0x150
[  262.823047][ T5851]  task_work_run+0x1d4/0x260
[  262.823069][ T5851]  ? __pfx_task_work_run+0x10/0x10
[  262.823085][ T5851]  ? __x64_sys_umount+0x122/0x160
[  262.823109][ T5851]  ? exit_to_user_mode_loop+0x40/0x110
[  262.823132][ T5851]  exit_to_user_mode_loop+0xec/0x110
[  262.823152][ T5851]  do_syscall_64+0x2bd/0x3b0
[  262.823168][ T5851]  ? lockdep_hardirqs_on+0x9c/0x150
[  262.823183][ T5851]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.823197][ T5851]  ? exc_page_fault+0x9f/0xf0
[  262.823214][ T5851]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.823227][ T5851] RIP: 0033:0x7f9c92f8ff17
[  262.823242][ T5851] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  262.823255][ T5851] RSP: 002b:00007ffc748eed18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  262.823271][ T5851] RAX: 0000000000000000 RBX: 00007f9c93011c05 RCX: 00007f9c92f8ff17
[  262.823280][ T5851] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc748eedd0
[  262.823288][ T5851] RBP: 00007ffc748eedd0 R08: 0000000000000000 R09: 0000000000000000
[  262.823296][ T5851] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc748efe60
[  262.823305][ T5851] R13: 00007f9c93011c05 R14: 0000000000040214 R15: 00007ffc748efea0
[  262.823331][ T5851]  </TASK>
[  262.960856][ T5851] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  262.964575][ T5851] CPU: 0 UID: 0 PID: 5851 Comm: syz-executor Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895-dirty #0 PREEMPT(full) 
[  262.964595][ T5851] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  262.964603][ T5851] Call Trace:
[  262.964609][ T5851]  <TASK>
[  262.964615][ T5851]  dump_stack_lvl+0x189/0x250
[  262.964660][ T5851]  ? __pfx_dump_stack_lvl+0x10/0x10
[  262.964677][ T5851]  ? __pfx_queue_work_on+0x10/0x10
[  262.964691][ T5851]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  262.964707][ T5851]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  262.964732][ T5851]  f2fs_handle_critical_error+0x37c/0x540
[  262.964758][ T5851]  f2fs_write_end_io+0x886/0xb60
[  262.964793][ T5851]  __submit_merged_bio+0x27a/0x6a0
[  262.964817][ T5851]  __submit_merged_write_cond+0x255/0x530
[  262.964841][ T5851]  f2fs_write_data_pages+0x261d/0x3000
[  262.964890][ T5851]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  262.964948][ T5851]  ? lockdep_hardirqs_on+0x9c/0x150
[  262.964975][ T5851]  ? folios_put_refs+0x560/0x640
[  262.965032][ T5851]  ? __lock_acquire+0xab9/0xd20
[  262.965061][ T5851]  ? do_raw_spin_lock+0x121/0x290
[  262.965086][ T5851]  ? do_raw_spin_unlock+0x4d/0x240
[  262.965103][ T5851]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  262.965121][ T5851]  do_writepages+0x32e/0x550
[  262.965151][ T5851]  ? do_raw_spin_unlock+0x4d/0x240
[  262.965172][ T5851]  filemap_fdatawrite+0x199/0x240
[  262.965191][ T5851]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  262.965249][ T5851]  ? do_raw_spin_unlock+0x4d/0x240
[  262.965270][ T5851]  f2fs_sync_dirty_inodes+0x31f/0x830
[  262.965306][ T5851]  f2fs_write_checkpoint+0x95a/0x1df0
[  262.965344][ T5851]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  262.965413][ T5851]  ? kill_f2fs_super+0x298/0x6c0
[  262.965440][ T5851]  kill_f2fs_super+0x2c3/0x6c0
[  262.965464][ T5851]  ? __pfx_kill_f2fs_super+0x10/0x10
[  262.965481][ T5851]  ? radix_tree_delete_item+0x2b6/0x400
[  262.965502][ T5851]  ? shrinker_free+0x2ce/0x3e0
[  262.965520][ T5851]  deactivate_locked_super+0xbc/0x130
[  262.965540][ T5851]  cleanup_mnt+0x425/0x4c0
[  262.965557][ T5851]  ? lockdep_hardirqs_on+0x9c/0x150
[  262.965577][ T5851]  task_work_run+0x1d4/0x260
[  262.965598][ T5851]  ? __pfx_task_work_run+0x10/0x10
[  262.965615][ T5851]  ? __x64_sys_umount+0x122/0x160
[  262.965638][ T5851]  ? exit_to_user_mode_loop+0x40/0x110
[  262.965661][ T5851]  exit_to_user_mode_loop+0xec/0x110
[  262.965680][ T5851]  do_syscall_64+0x2bd/0x3b0
[  262.965697][ T5851]  ? lockdep_hardirqs_on+0x9c/0x150
[  262.965712][ T5851]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.965726][ T5851]  ? exc_page_fault+0x9f/0xf0
[  262.965745][ T5851]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.965758][ T5851] RIP: 0033:0x7f9c92f8ff17
[  262.965774][ T5851] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  262.965786][ T5851] RSP: 002b:00007ffc748eed18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  262.965801][ T5851] RAX: 0000000000000000 RBX: 00007f9c93011c05 RCX: 00007f9c92f8ff17
[  262.965811][ T5851] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc748eedd0
[  262.965818][ T5851] RBP: 00007ffc748eedd0 R08: 0000000000000000 R09: 0000000000000000
[  262.965827][ T5851] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc748efe60
[  262.965836][ T5851] R13: 00007f9c93011c05 R14: 0000000000040214 R15: 00007ffc748efea0
[  262.965862][ T5851]  </TASK>
[  262.967289][ T5851] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  263.358096][T11793] binder: BINDER_SET_CONTEXT_MGR bad uid 60929 != 0
[  263.365838][T11793] binder: 11792:11793 ioctl 4018620d 200000004a80 returned -1
[  263.471505][T11799] loop0: detected capacity change from 0 to 1024
[  263.510900][   T40] hfsplus: b-tree write err: -5, ino 4
[  263.798994][T11797] loop1: detected capacity change from 0 to 40427
[  263.805892][T11797] F2FS-fs (loop1): Wrong segment_count / block_count (31 > 0)
[  263.808431][T11797] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock
[  263.834520][T11797] F2FS-fs (loop1): invalid crc value
[  264.031831][T11797] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  264.041503][T11797] F2FS-fs (loop1): Try to recover 2th superblock, ret: 0
[  264.046345][T11797] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  264.168385][ T7664] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[  264.174840][ T7664] smsc95xx 4-1:0.67: probe with driver smsc95xx failed with error -71
[  264.181610][ T7664] usb 4-1: USB disconnect, device number 17
[  264.197460][   T33] audit: type=1804 audit(2000000116.380:300): pid=11797 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2234" name="/newroot/814/file1/file1" dev="loop1" ino=10 res=1 errno=0
[  264.277514][ T5849] syz-executor: attempt to access beyond end of device
[  264.277514][ T5849] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  264.284026][ T5849] CPU: 0 UID: 0 PID: 5849 Comm: syz-executor Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895-dirty #0 PREEMPT(full) 
[  264.284050][ T5849] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  264.284058][ T5849] Call Trace:
[  264.284065][ T5849]  <TASK>
[  264.284071][ T5849]  dump_stack_lvl+0x189/0x250
[  264.284119][ T5849]  ? __pfx_dump_stack_lvl+0x10/0x10
[  264.284138][ T5849]  ? __pfx_queue_work_on+0x10/0x10
[  264.284153][ T5849]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  264.284170][ T5849]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  264.284196][ T5849]  f2fs_handle_critical_error+0x37c/0x540
[  264.284231][ T5849]  f2fs_write_end_io+0x886/0xb60
[  264.284267][ T5849]  __submit_merged_bio+0x27a/0x6a0
[  264.284292][ T5849]  __submit_merged_write_cond+0x255/0x530
[  264.284316][ T5849]  f2fs_write_data_pages+0x261d/0x3000
[  264.284364][ T5849]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  264.284422][ T5849]  ? kernel_text_address+0xa5/0xe0
[  264.284444][ T5849]  ? __kernel_text_address+0xd/0x40
[  264.284463][ T5849]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  264.284496][ T5849]  ? stack_trace_save+0x9c/0xe0
[  264.284520][ T5849]  ? rcu_is_watching+0x15/0xb0
[  264.284572][ T5849]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  264.284595][ T5849]  do_writepages+0x32e/0x550
[  264.284634][ T5849]  filemap_fdatawrite+0x199/0x240
[  264.284657][ T5849]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  264.284719][ T5849]  ? do_raw_spin_unlock+0x4d/0x240
[  264.284742][ T5849]  f2fs_sync_dirty_inodes+0x31f/0x830
[  264.284779][ T5849]  f2fs_write_checkpoint+0x95a/0x1df0
[  264.284822][ T5849]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  264.284919][ T5849]  kill_f2fs_super+0x2c3/0x6c0
[  264.284948][ T5849]  ? __pfx_kill_f2fs_super+0x10/0x10
[  264.284967][ T5849]  ? radix_tree_delete_item+0x2b6/0x400
[  264.284991][ T5849]  ? shrinker_free+0x2ce/0x3e0
[  264.285012][ T5849]  deactivate_locked_super+0xbc/0x130
[  264.285033][ T5849]  cleanup_mnt+0x425/0x4c0
[  264.285051][ T5849]  ? lockdep_hardirqs_on+0x9c/0x150
[  264.285072][ T5849]  task_work_run+0x1d4/0x260
[  264.285095][ T5849]  ? __pfx_task_work_run+0x10/0x10
[  264.285112][ T5849]  ? __x64_sys_umount+0x122/0x160
[  264.285137][ T5849]  ? exit_to_user_mode_loop+0x40/0x110
[  264.285161][ T5849]  exit_to_user_mode_loop+0xec/0x110
[  264.285183][ T5849]  do_syscall_64+0x2bd/0x3b0
[  264.285201][ T5849]  ? lockdep_hardirqs_on+0x9c/0x150
[  264.285226][ T5849]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.285241][ T5849]  ? exc_page_fault+0x9f/0xf0
[  264.285259][ T5849]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.285275][ T5849] RIP: 0033:0x7f1dd6d8ff17
[  264.285291][ T5849] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  264.285305][ T5849] RSP: 002b:00007ffeb12681b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  264.285323][ T5849] RAX: 0000000000000000 RBX: 00007f1dd6e11c05 RCX: 00007f1dd6d8ff17
[  264.285333][ T5849] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffeb1268270
[  264.285343][ T5849] RBP: 00007ffeb1268270 R08: 0000000000000000 R09: 0000000000000000
[  264.285353][ T5849] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffeb1269300
[  264.285362][ T5849] R13: 00007f1dd6e11c05 R14: 00000000000407aa R15: 00007ffeb1269340
[  264.285389][ T5849]  </TASK>
[  264.292822][ T5849] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  265.265412][T11824] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2246'.
[  265.388091][T11820] loop3: detected capacity change from 0 to 32768
[  265.400036][T11820] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.2245 (11820)
[  265.536545][T11820] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  265.540885][T11820] BTRFS info (device loop3): using crc32c (crc32c-lib) checksum algorithm
[  265.593460][T11820] BTRFS info (device loop3): using free-space-tree
[  266.083673][ T9539] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  266.405907][T11852] loop1: detected capacity change from 0 to 40427
[  266.422693][T11852] F2FS-fs (loop1): Invalid log sectors per block(0) log sectorsize(9)
[  266.443393][T11852] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  266.459513][T11852] F2FS-fs (loop1): invalid crc value
[  266.629435][T11852] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  266.652002][T11852] F2FS-fs (loop1): Start checkpoint disabled!
[  266.668466][T11852] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  266.672537][T11852] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  266.673028][T11874] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  266.713680][T11876] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  266.727656][T11876] batadv_slave_0: entered promiscuous mode
[  267.261976][T11882] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2261'.
[  267.567814][T11888] loop1: detected capacity change from 0 to 256
[  268.413579][ T5884] usb 4-1: new full-speed USB device number 18 using dummy_hcd
[  268.565325][ T5884] usb 4-1: not running at top speed; connect to a high speed hub
[  268.570623][ T5884] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  268.578061][ T5884] usb 4-1: config 1 has no interface number 1
[  268.580143][ T5884] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  268.587512][ T5884] usb 4-1: string descriptor 0 read error: -22
[  268.589528][ T5884] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  268.592544][ T5884] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  268.606889][ T5884] usb 4-1: 2:1 : no UAC_FORMAT_TYPE desc
[  268.853820][ T5884] usb 4-1: USB disconnect, device number 18
[  269.405432][T11930] loop3: detected capacity change from 0 to 512
[  269.434173][T11930] EXT4-fs: Ignoring removed bh option
[  269.447857][T11925] loop1: detected capacity change from 0 to 32768
[  269.454079][T11930] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  269.468014][T11925] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  269.474037][T11930] EXT4-fs (loop3): 1 truncate cleaned up
[  269.477973][T11930] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  269.487523][T11930] EXT4-fs warning (device loop3): ext4_group_add:1736: No reserved GDT blocks, can't resize
[  269.511220][ T9539] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  269.532617][T11925] XFS (loop1): Ending clean mount
[  269.548264][T11925] XFS (loop1): Quotacheck needed: Please wait.
[  269.553599][ T5310] usb 1-1: new high-speed USB device number 40 using dummy_hcd
[  269.630685][T11925] XFS (loop1): Quotacheck: Done.
[  269.666202][ T5849] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  269.732169][ T5310] usb 1-1: Using ep0 maxpacket: 8
[  269.754784][ T5310] usb 1-1: config 162 has an invalid interface number: 97 but max is 0
[  269.757306][ T5310] usb 1-1: config 162 has no interface number 0
[  269.759400][ T5310] usb 1-1: config 162 interface 97 has no altsetting 0
[  269.765753][ T5310] usb 1-1: New USB device found, idVendor=0c2e, idProduct=0700, bcdDevice=e1.3b
[  269.768439][ T5310] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  269.771023][ T5310] usb 1-1: Product: syz
[  269.772436][ T5310] usb 1-1: Manufacturer: syz
[  269.774480][ T5310] usb 1-1: SerialNumber: syz
[  269.918510][T11956] program syz.1.2289 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  269.986137][ T5310] metro_usb 1-1:162.97: Metrologic USB to Serial converter detected
[  269.997361][ T5310] usb 1-1: Metrologic USB to Serial converter now attached to ttyUSB0
[  270.014815][ T5310] usb 1-1: USB disconnect, device number 40
[  270.034402][ T5310] metro-usb ttyUSB0: Metrologic USB to Serial converter now disconnected from ttyUSB0
[  270.038186][ T5310] metro_usb 1-1:162.97: device disconnected
[  270.079034][T11964] 9p: Unknown access argument 18446744073709551615: -34
[  271.015049][T11984] loop3: detected capacity change from 0 to 32768
[  271.040760][T11984] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  271.056078][T11984] XFS (loop3): Ending clean mount
[  271.059523][T11984] XFS (loop3): Quotacheck needed: Please wait.
[  271.097500][T11984] XFS (loop3): Quotacheck: Done.
[  271.144577][ T9539] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  271.306580][ T5310] usb 1-1: new high-speed USB device number 41 using dummy_hcd
[  271.453399][ T5310] usb 1-1: Using ep0 maxpacket: 8
[  271.457657][ T5310] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xE has invalid wMaxPacketSize 0
[  271.461580][ T5310] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xB3, changing to 0x83
[  271.473373][ T5310] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  271.479737][ T5310] usb 1-1: New USB device found, idVendor=077d, idProduct=627a, bcdDevice= 0.01
[  271.485625][ T5310] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  271.488876][ T5310] usb 1-1: Product: syz
[  271.490590][ T5310] usb 1-1: Manufacturer: syz
[  271.492485][ T5310] usb 1-1: SerialNumber: syz
[  271.497338][ T5310] usb 1-1: config 0 descriptor??
[  271.505734][ T5310] radioshark 1-1:0.0: Invalid radioSHARK device
[  271.508477][ T5310] radioshark 1-1:0.0: probe with driver radioshark failed with error -22
[  271.512467][ T5310] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  271.706745][ T5310] usb 1-1: USB disconnect, device number 41
[  272.309334][T12020] loop1: detected capacity change from 0 to 1024
[  272.312345][T12020] EXT4-fs: inline encryption not supported
[  272.329897][T12020] EXT4-fs: Ignoring removed bh option
[  272.361760][T12020] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  272.423631][T12020] EXT4-fs error (device loop1): mb_free_blocks:2017: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[  272.432956][T12020] EXT4-fs (loop1): Remounting filesystem read-only
[  272.604287][ T5849] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  272.946409][   T24] usb 2-1: new high-speed USB device number 42 using dummy_hcd
[  273.106420][   T24] usb 2-1: Using ep0 maxpacket: 8
[  273.113412][   T24] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  273.117724][   T24] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  273.132041][   T24] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[  273.137126][   T24] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  273.151844][   T24] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice= 0.40
[  273.155718][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  273.159198][   T24] usb 2-1: Product: syz
[  273.160939][   T24] usb 2-1: Manufacturer: syz
[  273.162869][   T24] usb 2-1: SerialNumber: syz
[  273.179941][   T24] cdc_ether 2-1:1.0: probe with driver cdc_ether failed with error -22
[  273.192536][   T24] usbtest 2-1:1.0: Linux user mode ISO test driver
[  273.199538][   T24] usbtest 2-1:1.0: high-speed {control bulk-out iso-in} tests (+alt)
[  273.237166][T12054] netlink: 'syz.0.2333': attribute type 6 has an invalid length.
[  273.399451][ T2283] usb 2-1: USB disconnect, device number 42
[  273.435367][   T55] Bluetooth: hci0: command tx timeout
[  273.783511][ T5310] usb 1-1: new high-speed USB device number 42 using dummy_hcd
[  273.963399][ T5310] usb 1-1: Using ep0 maxpacket: 32
[  273.970021][ T5310] usb 1-1: config 0 has an invalid interface number: 216 but max is 0
[  273.973239][ T5310] usb 1-1: config 0 has no interface number 0
[  273.978554][ T5310] usb 1-1: New USB device found, idVendor=0545, idProduct=8080, bcdDevice= 0.02
[  273.982297][ T5310] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  273.992043][ T5310] usb 1-1: Product: syz
[  273.994079][ T5310] usb 1-1: Manufacturer: syz
[  273.996658][ T5310] usb 1-1: SerialNumber: syz
[  274.005643][ T5310] usb 1-1: config 0 descriptor??
[  274.227022][ T5310] usb 1-1: USB disconnect, device number 42
[  274.393678][ T2283] usb 2-1: new high-speed USB device number 43 using dummy_hcd
[  274.553574][ T2283] usb 2-1: Using ep0 maxpacket: 32
[  274.557833][ T2283] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  274.562140][ T2283] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  274.573924][ T2283] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2ced, bcdDevice= 0.00
[  274.577426][ T2283] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  274.586343][ T2283] usb 2-1: config 0 descriptor??
[  274.853625][T12084] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2345'.
[  274.988090][T12088] netlink: 'syz.0.2347': attribute type 11 has an invalid length.
[  275.008628][ T2283] hid_parser_main: 73 callbacks suppressed
[  275.008652][ T2283] kone 0003:1E7D:2CED.0019: unknown main item tag 0x1
[  275.022485][ T2283] kone 0003:1E7D:2CED.0019: collection stack underflow
[  275.025664][ T2283] kone 0003:1E7D:2CED.0019: item 0 1 0 12 parsing failed
[  275.035285][ T2283] kone 0003:1E7D:2CED.0019: parse failed
[  275.037645][ T2283] kone 0003:1E7D:2CED.0019: probe with driver kone failed with error -22
[  275.211899][ T5310] usb 2-1: USB disconnect, device number 43
[  275.401464][T12099] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2352'.
[  275.405561][T12099] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2352'.
[  277.593668][T12109] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  277.674668][   T55] Bluetooth: hci1: command 0x0406 tx timeout
[  277.674826][T12112] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[  277.681042][T12112] Bluetooth: hci1: Opcode 0x0406 failed: -110
[  278.602736][T12112] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  278.890263][T12145] netlink: 180 bytes leftover after parsing attributes in process `syz.1.2372'.
[  278.903536][ T5310] usb 4-1: new full-speed USB device number 19 using dummy_hcd
[  279.008989][T12154] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2376'.
[  279.012998][T12154] (unnamed net_device) (uninitialized): Invalid ad_actor_system MAC address.
[  279.018286][T12154] (unnamed net_device) (uninitialized): option ad_actor_system: invalid value (7)
[  279.049845][T12156] loop1: detected capacity change from 0 to 512
[  279.074796][ T5310] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  279.078573][T12156] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  279.078634][T12156] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  279.085825][ T5310] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 1023, setting to 64
[  279.087754][T12156] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended
[  279.089422][ T5310] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  279.094994][ T5310] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  279.098191][T12156] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  279.100411][ T5310] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  279.103626][T12156] System zones: 0-2, 18-18, 34-35
[  279.108810][ T5310] usb 4-1: SerialNumber: syz
[  279.114400][T12125] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  279.117183][T12125] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  279.121480][ T5310] cdc_acm 4-1:1.0: Control and data interfaces are not separated!
[  279.123154][T12156] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  279.127215][ T5310] cdc_acm 4-1:1.0: probe with driver cdc_acm failed with error -12
[  279.171349][ T5849] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  279.335660][ T5310] usb 4-1: USB disconnect, device number 19
[  279.463436][  T792] usb 2-1: new high-speed USB device number 44 using dummy_hcd
[  279.615379][  T792] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[  279.619463][  T792] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 0
[  279.623461][  T792] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  279.627108][  T792] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  279.633775][  T792] usb 2-1: New USB device found, idVendor=0451, idProduct=3410, bcdDevice=ef.1e
[  279.637428][  T792] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  279.640574][  T792] usb 2-1: Product: syz
[  279.642446][  T792] usb 2-1: Manufacturer: syz
[  279.644474][  T792] usb 2-1: SerialNumber: syz
[  279.648826][  T792] usb 2-1: config 0 descriptor??
[  279.656865][  T792] ti_usb_3410_5052 2-1:0.0: TI USB 3410 1 port adapter converter detected
[  279.662960][  T792] usb 2-1: TI USB 3410 1 port adapter converter now attached to ttyUSB0
[  279.763528][   T55] Bluetooth: hci1: command 0x0406 tx timeout
[  279.863208][   T24] usb 2-1: USB disconnect, device number 44
[  279.897578][   T24] ti_usb_3410_5052_1 ttyUSB0: TI USB 3410 1 port adapter converter now disconnected from ttyUSB0
[  279.902313][   T24] ti_usb_3410_5052 2-1:0.0: device disconnected
[  279.989465][T12170] "syz.0.2383" (12170) uses obsolete ecb(arc4) skcipher
[  280.114900][T12168] loop3: detected capacity change from 0 to 32768
[  280.266393][T12177] loop0: detected capacity change from 0 to 32768
[  280.471841][T12188] loop3: detected capacity change from 0 to 512
[  280.477074][T12188] EXT4-fs (loop3): Test dummy encryption mode enabled
[  280.479776][T12188] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  280.497677][T12188] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.2389: bad orphan inode 131083
[  280.503618][T12188] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  280.512184][T12188] fscrypt: AES-256-CBC-CTS using implementation "cts(cbc(ecb(aes-fixed-time)))"
[  280.686437][  T792] usb 2-1: new high-speed USB device number 45 using dummy_hcd
[  280.737429][T12192] fscrypt: AES-256-XTS using implementation "xts(ecb(aes-fixed-time))"
[  280.803929][   T33] audit: type=1800 audit(2000000132.930:301): pid=12192 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2389" name="file1" dev="loop3" ino=19 res=0 errno=0
[  280.844378][  T792] usb 2-1: Using ep0 maxpacket: 16
[  280.847506][  T792] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  280.850724][  T792] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  280.864488][  T792] usb 2-1: New USB device found, idVendor=0f30, idProduct=0111, bcdDevice= 0.00
[  280.867396][  T792] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  280.890224][  T792] usb 2-1: config 0 descriptor??
[  281.311686][  T792] pantherlord 0003:0F30:0111.001A: unknown main item tag 0x0
[  281.318093][  T792] pantherlord 0003:0F30:0111.001A: unknown main item tag 0x0
[  281.320628][  T792] pantherlord 0003:0F30:0111.001A: unknown main item tag 0x0
[  281.324868][  T792] pantherlord 0003:0F30:0111.001A: unknown main item tag 0x0
[  281.327305][  T792] pantherlord 0003:0F30:0111.001A: unknown main item tag 0x0
[  281.336577][  T792] pantherlord 0003:0F30:0111.001A: hidraw0: USB HID vff.fd Device [HID 0f30:0111] on usb-dummy_hcd.1-1/input0
[  281.342483][  T792] pantherlord 0003:0F30:0111.001A: no output reports found
[  281.429930][ T9539] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  281.522618][ T2283] usb 2-1: USB disconnect, device number 45
[  281.743423][  T792] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  281.893396][  T792] usb 4-1: Using ep0 maxpacket: 16
[  281.898355][  T792] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 11
[  281.902051][  T792] usb 4-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0
[  281.906463][  T792] usb 4-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0
[  281.910278][  T792] usb 4-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0
[  281.914759][  T792] usb 4-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0
[  281.918792][  T792] usb 4-1: config 1 interface 0 has no altsetting 0
[  281.921514][  T792] usb 4-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[  281.925642][  T792] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  281.942410][  T792] ums-sddr09 4-1:1.0: USB Mass Storage device detected
[  282.191803][  T792] ums-sddr09 4-1:1.0: probe with driver ums-sddr09 failed with error -22
[  282.202133][  T792] usb 4-1: USB disconnect, device number 20
[  282.249864][T12215] loop1: detected capacity change from 0 to 32768
[  282.260494][T12215] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.2397 (12215)
[  282.269116][T12215] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  282.272866][T12215] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[  282.276309][T12215] BTRFS info (device loop1): using free-space-tree
[  282.341921][ T5849] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  282.362040][ T2283] usb 1-1: new full-speed USB device number 43 using dummy_hcd
[  282.519010][ T2283] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  282.523232][ T2283] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  282.526893][ T2283] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  282.529740][ T2283] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  282.534389][ T2283] usb 1-1: config 0 descriptor??
[  282.801372][T12244] loop1: detected capacity change from 0 to 4096
[  282.807287][T12244] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[  282.822152][T12246] loop3: detected capacity change from 0 to 512
[  282.828279][T12246] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  282.842237][T12246] EXT4-fs error (device loop3): ext4_quota_enable:7120: comm syz.3.2404: Bad quota inum: 29696, type: 1
[  282.843678][T12244] ntfs3(loop1): ino=19, mi_enum_attr
[  282.847708][T12244] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  282.849895][T12246] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=29696). Please run e2fsck to fix.
[  282.852903][T12244] ntfs3(loop1): ino=19, mi_enum_attr
[  282.856526][T12244] ntfs3(loop1): Failed to initialize $Extend/$ObjId.
[  282.856715][T12246] EXT4-fs (loop3): mount failed
[  282.959715][T12252] loop3: detected capacity change from 0 to 47
[  282.978802][ T2283] savu 0003:1E7D:2D5A.001B: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.0-1/input0
[  283.149228][T12251] binfmt_misc: register: failed to install interpreter file ./file0
[  283.208925][T12256] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2407'.
[  283.212382][T12256] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2407'.
[  283.216509][ T2283] usb 1-1: USB disconnect, device number 43
[  283.244231][   T24] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  283.394776][   T24] usb 4-1: Using ep0 maxpacket: 8
[  283.401329][   T24] usb 4-1: config 0 has an invalid interface number: 38 but max is 0
[  283.409344][   T24] usb 4-1: config 0 has no interface number 0
[  283.411799][   T24] usb 4-1: config 0 interface 38 has no altsetting 0
[  283.424433][   T24] usb 4-1: New USB device found, idVendor=04e6, idProduct=0009, bcdDevice= 2.00
[  283.427889][   T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  283.438278][   T24] usb 4-1: Product: syz
[  283.440051][   T24] usb 4-1: Manufacturer: syz
[  283.441900][   T24] usb 4-1: SerialNumber: syz
[  283.448421][   T24] usb 4-1: config 0 descriptor??
[  283.454641][   T24] usb-storage 4-1:0.38: USB Mass Storage device detected
[  283.943845][   T24] usb 2-1: new high-speed USB device number 46 using dummy_hcd
[  284.229722][   T24] usb 2-1: New USB device found, idVendor=08fd, idProduct=0002, bcdDevice=ca.fd
[  284.233477][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  284.236515][   T24] usb 2-1: Product: syz
[  284.237852][   T24] usb 2-1: Manufacturer: syz
[  284.239401][   T24] usb 2-1: SerialNumber: syz
[  284.242639][   T24] usb 2-1: config 0 descriptor??
[  284.268444][   T55] Bluetooth: hci3: urb ffff888108f9eb00 submission failed (2)
[  284.375278][T12280] loop0: detected capacity change from 0 to 32768
[  284.382508][T12280] bcachefs (/dev/loop0): error validating superblock: Invalid superblock: optional field extends past end of superblock (type 1)
[  284.394968][T12280] bcachefs: bch2_fs_get_tree() error: invalid_sb_field_size
[  284.457495][ T2283] usb 2-1: USB disconnect, device number 46
[  285.293454][ T2283] usb 2-1: new high-speed USB device number 47 using dummy_hcd
[  285.448176][ T2283] usb 2-1: too many endpoints for config 4 interface 0 altsetting 0: 101, using maximum allowed: 30
[  285.458308][T12298] mkiss: ax0: crc mode is auto.
[  285.462686][ T2283] usb 2-1: config 4 interface 0 altsetting 0 has an endpoint descriptor with address 0x31, changing to 0x1
[  285.477292][ T2283] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  285.485929][ T2283] usb 2-1: config 4 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 101
[  285.491694][ T2283] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  285.498081][ T2283] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  285.585077][T12301] netlink: 'syz.0.2425': attribute type 1 has an invalid length.
[  285.588191][T12301] netlink: 224 bytes leftover after parsing attributes in process `syz.0.2425'.
[  285.723745][ T2283] ath6kl: Failed to submit usb control message: -71
[  285.731027][ T2283] ath6kl: unable to send the bmi data to the device: -71
[  285.739684][ T2283] ath6kl: Unable to send get target info: -71
[  285.751046][ T2283] ath6kl: Failed to init ath6kl core: -71
[  285.766286][ T2283] ath6kl_usb 2-1:4.0: probe with driver ath6kl_usb failed with error -71
[  285.786109][ T2283] usb 2-1: USB disconnect, device number 47
[  286.046893][  T792] usb 4-1: USB disconnect, device number 21
[  286.538831][T12329] netlink: 256 bytes leftover after parsing attributes in process `syz.3.2438'.
[  286.719702][T12326] loop1: detected capacity change from 0 to 40427
[  286.726928][T12326] F2FS-fs (loop1): Image doesn't support compression
[  286.737440][T12326] F2FS-fs (loop1): invalid crc value
[  286.791870][T12326] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  286.807090][T12326] F2FS-fs (loop1): Start checkpoint disabled!
[  286.812785][T12326] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  286.844637][T12343] loop3: detected capacity change from 0 to 1024
[  286.852011][T12343] EXT4-fs: Ignoring removed bh option
[  286.863230][T12326] F2FS-fs (loop1): Image doesn't support compression
[  286.864746][T12343] EXT4-fs: inline encryption not supported
[  286.873741][T12343] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  286.881364][T12343] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce028, mo2=0000]
[  286.892470][T12343] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 2: comm syz.3.2444: lblock 2 mapped to illegal pblock 2 (length 1)
[  286.897905][T12343] EXT4-fs (loop3): Remounting filesystem read-only
[  286.904208][T12343] Quota error (device loop3): qtree_write_dquot: dquota write failed
[  286.906678][T12343] Quota error (device loop3): v2_write_file_info: Can't write info structure
[  286.909951][T12343] EXT4-fs (loop3): 1 orphan inode deleted
[  286.912508][T12343] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  286.924489][T12343] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  286.951139][T12349] loop0: detected capacity change from 0 to 256
[  286.962942][T12349] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  286.981832][T12349] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  287.010162][T12349] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d)
[  287.538228][T12373] overlayfs: failed to resolve './file1': -2
[  287.540867][   T24] usb 2-1: new high-speed USB device number 48 using dummy_hcd
[  287.713809][   T24] usb 2-1: Using ep0 maxpacket: 32
[  287.743016][   T24] usb 2-1: config 0 has an invalid interface number: 12 but max is 0
[  287.755891][   T24] usb 2-1: config 0 has no interface number 0
[  287.766699][   T24] usb 2-1: config 0 interface 12 has no altsetting 0
[  287.794381][   T24] usb 2-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  287.800920][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  287.807274][   T24] usb 2-1: Product: syz
[  287.811451][   T24] usb 2-1: Manufacturer: syz
[  287.813104][   T24] usb 2-1: SerialNumber: syz
[  287.850991][   T24] usb 2-1: config 0 descriptor??
[  287.875560][T12375] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2458'.
[  287.969259][T12379] cifs: Bad value for 'port'
[  288.325206][T12399] syzkaller1: entered promiscuous mode
[  288.338852][T12399] syzkaller1: entered allmulticast mode
[  288.472206][   T24] f81534 2-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  288.475032][   T24] f81534 2-1:0.12: f81534_find_config_idx: read failed: -71
[  288.477383][   T24] f81534 2-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  288.479782][   T24] f81534 2-1:0.12: probe with driver f81534 failed with error -71
[  288.489839][   T24] usb 2-1: USB disconnect, device number 48
[  288.753576][ T5310] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  288.923369][ T5310] usb 4-1: Using ep0 maxpacket: 32
[  288.926838][ T5310] usb 4-1: config 4 has an invalid interface number: 128 but max is 0
[  288.929440][ T5310] usb 4-1: config 4 has no interface number 0
[  288.931525][ T5310] usb 4-1: config 4 interface 128 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  288.935095][ T5310] usb 4-1: config 4 interface 128 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  288.938622][ T5310] usb 4-1: New USB device found, idVendor=016d, idProduct=c314, bcdDevice= 0.00
[  288.941481][ T5310] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  288.948987][ T5310] hub 4-1:4.128: USB hub found
[  289.153022][ T5310] hub 4-1:4.128: 2 ports detected
[  289.155858][ T5310] hub 4-1:4.128: Using single TT (err -22)
[  289.353859][ T5310] hub 4-1:4.128: hub_hub_status failed (err = -71)
[  289.362656][ T5310] hub 4-1:4.128: config failed, can't get hub status (err -71)
[  289.411811][ T5310] usb 4-1: USB disconnect, device number 22
[  289.501233][T12423] loop0: detected capacity change from 0 to 32768
[  289.530675][T12423] (syz.0.2480,12423,1):ocfs2_verify_userspace_stack:858 ERROR: cluster stack passed to mount, but this filesystem does not support it
[  289.551411][T12423] (syz.0.2480,12423,1):ocfs2_fill_super:1177 ERROR: status = -22
[  289.663986][T12427] loop1: detected capacity change from 0 to 40427
[  289.674339][T12427] F2FS-fs (loop1): Image doesn't support compression
[  289.676941][T12427] F2FS-fs (loop1): LFS is not compatible with ATGC
[  289.850899][T12441] loop0: detected capacity change from 0 to 1024
[  289.963602][ T2283] usb 2-1: new high-speed USB device number 49 using dummy_hcd
[  290.115762][ T2283] usb 2-1: config 0 has an invalid interface number: 48 but max is 0
[  290.118592][ T2283] usb 2-1: config 0 has no interface number 0
[  290.120553][ T2283] usb 2-1: too many endpoints for config 0 interface 48 altsetting 48: 48, using maximum allowed: 30
[  290.124694][ T2283] usb 2-1: config 0 interface 48 altsetting 48 has 0 endpoint descriptors, different from the interface descriptor's value: 48
[  290.129031][ T2283] usb 2-1: config 0 interface 48 has no altsetting 0
[  290.134825][ T2283] usb 2-1: New USB device found, idVendor=08fd, idProduct=0002, bcdDevice=ca.fd
[  290.137736][ T2283] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  290.140251][ T2283] usb 2-1: Product: syz
[  290.141603][ T2283] usb 2-1: Manufacturer: syz
[  290.143012][ T2283] usb 2-1: SerialNumber: syz
[  290.150945][ T2283] usb 2-1: config 0 descriptor??
[  290.178095][  T792] usb 4-1: new full-speed USB device number 23 using dummy_hcd
[  290.345693][  T792] usb 4-1: config 3 has an invalid interface number: 61 but max is 0
[  290.349079][  T792] usb 4-1: config 3 has no interface number 0
[  290.351108][  T792] usb 4-1: config 3 interface 61 has no altsetting 0
[  290.356930][  T792] usb 4-1: string descriptor 0 read error: -22
[  290.358986][  T792] usb 4-1: New USB device found, idVendor=0499, idProduct=101a, bcdDevice=44.26
[  290.361802][  T792] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  290.370058][ T2283] usb 2-1: USB disconnect, device number 49
[  290.386685][  T792] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  290.406757][  T792] snd-usb-audio 4-1:3.61: probe with driver snd-usb-audio failed with error -2
[  290.590372][ T5884] usb 4-1: USB disconnect, device number 23
[  290.906765][T12457] loop1: detected capacity change from 0 to 16
[  290.921231][T12457] erofs (device loop1): mounted with root inode @ nid 36.
[  291.059163][T12462] erofs (device loop1): readahead error at folio 2 @ nid 89
[  291.100054][ T7285] erofs (device loop1): failed to decompress 6887 in[4096, 0] out[8192]
[  291.222299][T12462] erofs (device loop1): failed to decompress 6887 in[4096, 0] out[8192]
[  291.234449][T12462] erofs (device loop1): read error -117 @ 1 of nid 89
[  291.252499][   T33] audit: type=1800 audit(2000000143.430:302): pid=12462 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2496" name="file3" dev="loop1" ino=89 res=0 errno=0
[  291.823651][ T5884] usb 1-1: new high-speed USB device number 44 using dummy_hcd
[  292.000092][ T5884] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  292.006223][ T5884] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  292.017935][ T5884] usb 1-1: config 0 descriptor??
[  292.041119][ T5884] cp210x 1-1:0.0: cp210x converter detected
[  292.492263][T12479] netlink: 'syz.1.2504': attribute type 29 has an invalid length.
[  292.501261][T12479] netlink: 'syz.1.2504': attribute type 29 has an invalid length.
[  292.893941][ T5884] cp210x 1-1:0.0: failed to get vendor val 0x3711 size 2: -71
[  292.896483][ T5884] cp210x 1-1:0.0: GPIO initialisation failed: -71
[  292.900496][ T5884] usb 1-1: cp210x converter now attached to ttyUSB0
[  292.911804][ T5884] usb 1-1: USB disconnect, device number 44
[  292.921683][ T5884] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  292.925053][ T5884] cp210x 1-1:0.0: device disconnected
[  292.952236][T12489] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  293.534085][T12493] overlayfs: failed to create directory ./bus/work (errno: 22); mounting read-only
[  294.198563][T12504] loop3: detected capacity change from 0 to 2048
[  294.264350][T12504] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  294.301340][T12504] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2515: bg 0: block 234: padding at end of block bitmap is not set
[  294.312118][T12504] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 117
[  294.321046][T12504] EXT4-fs (loop3): This should not happen!! Data will be lost
[  294.321046][T12504] 
[  294.347606][   T40] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 1 with error 28
[  294.355180][   T40] EXT4-fs (loop3): This should not happen!! Data will be lost
[  294.355180][   T40] 
[  294.359151][   T40] EXT4-fs (loop3): Total free blocks count 0
[  294.361729][   T40] EXT4-fs (loop3): Free/Dirty block details
[  294.364387][   T40] EXT4-fs (loop3): free_blocks=0
[  294.371238][   T40] EXT4-fs (loop3): dirty_blocks=16
[  294.375231][   T40] EXT4-fs (loop3): Block reservation details
[  294.481217][T12522] netlink: 'syz.0.2521': attribute type 10 has an invalid length.
[  294.742479][T12542] netdevsim netdevsim0: Firmware load for './cgroup/../file0' refused, path contains '..' component
[  294.969901][T12556] input: syz1 as /devices/virtual/input/input18
[  295.153432][ T2283] usb 4-1: new full-speed USB device number 24 using dummy_hcd
[  295.325465][ T2283] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xC6, changing to 0x86
[  295.330010][ T2283] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x86 has invalid wMaxPacketSize 0
[  295.334465][ T2283] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  295.341158][ T2283] usb 4-1: New USB device found, idVendor=054c, idProduct=06c1, bcdDevice=c2.87
[  295.344939][ T2283] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  295.348071][ T2283] usb 4-1: Product: syz
[  295.349655][ T2283] usb 4-1: Manufacturer: syz
[  295.351442][ T2283] usb 4-1: SerialNumber: syz
[  295.356066][ T2283] usb 4-1: config 0 descriptor??
[  295.365591][ T2283] port100 4-1:0.0: NFC: Could not find bulk-in or bulk-out endpoint
[  295.410383][T12570] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2545'.
[  295.503603][ T5884] usb 1-1: new high-speed USB device number 45 using dummy_hcd
[  295.575767][ T5310] usb 4-1: USB disconnect, device number 24
[  295.653452][ T5884] usb 1-1: Using ep0 maxpacket: 8
[  295.657535][ T5884] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 13
[  295.664998][ T5884] usb 1-1: New USB device found, idVendor=046d, idProduct=08ae, bcdDevice=11.58
[  295.667916][ T5884] usb 1-1: New USB device strings: Mfr=241, Product=1, SerialNumber=3
[  295.670310][ T5884] usb 1-1: Product: syz
[  295.671585][ T5884] usb 1-1: Manufacturer: syz
[  295.673172][ T5884] usb 1-1: SerialNumber: syz
[  295.677338][ T5884] usb 1-1: config 0 descriptor??
[  295.685362][ T5884] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08ae
[  295.815554][T12589] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2554'.
[  295.818247][T12589] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2554'.
[  295.821082][T12589] netlink: 'syz.1.2554': attribute type 7 has an invalid length.
[  296.213215][T12606] loop3: detected capacity change from 0 to 2048
[  296.218948][T12606] UDF-fs: error (device loop3): udf_process_sequence: Primary Volume Descriptor not found!
[  296.229587][T12606] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  296.295493][ T5884] gspca_zc3xx: reg_w_i err -71
[  296.399008][T12612] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2565'.
[  296.453655][ T7664] usb 2-1: new high-speed USB device number 50 using dummy_hcd
[  296.464882][T12614] loop3: detected capacity change from 0 to 4096
[  296.478427][T12614] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  296.486625][T12614] ntfs3(loop3): Failed to load $Extend (-22).
[  296.488794][T12614] ntfs3(loop3): Failed to initialize $Extend.
[  296.606059][ T7664] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  296.610115][ T7664] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  296.614365][ T7664] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  296.617892][ T7664] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  296.623996][ T7664] usb 2-1: config 0 descriptor??
[  296.883408][ T5884] gspca_zc3xx: Unknown sensor - set to TAS5130C
[  296.885977][ T5884] gspca_zc3xx 1-1:0.0: probe with driver gspca_zc3xx failed with error -71
[  296.891319][ T5884] usb 1-1: USB disconnect, device number 45
[  297.034689][ T7664] keytouch 0003:0926:3333.001C: fixing up Keytouch IEC report descriptor
[  297.057140][ T7664] input: HID 0926:3333 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0926:3333.001C/input/input19
[  297.197361][ T7664] keytouch 0003:0926:3333.001C: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.1-1/input0
[  297.443126][T12625] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2570'.
[  297.447852][ T7664] usb 2-1: USB disconnect, device number 50
[  297.498776][T12627] tipc: Started in network mode
[  297.504324][T12627] tipc: Node identity aaaaaaaaaa3a, cluster identity 4711
[  297.516815][T12627] tipc: Enabled bearer <eth:macvtap0>, priority 10
[  297.672391][T12639] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2576'.
[  298.233697][ T7664] usb 2-1: new high-speed USB device number 51 using dummy_hcd
[  298.395494][ T7664] usb 2-1: config 17 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  298.400346][ T7664] usb 2-1: config 17 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  298.404910][ T7664] usb 2-1: config 17 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  298.409380][ T7664] usb 2-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  298.413049][ T7664] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  298.425443][T12658] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  298.523502][ T5310] tipc: Node number set to 9480874
[  298.581706][T12667] loop3: detected capacity change from 0 to 8
[  298.605049][T12667] Filesystem uses "unknown" compression. This is not supported
[  299.073518][ T5310] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  299.223440][ T5310] usb 4-1: Using ep0 maxpacket: 16
[  299.227677][ T5310] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  299.231506][ T5310] usb 4-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  299.234397][ T5310] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  299.239121][ T5310] usb 4-1: config 0 descriptor??
[  299.455850][ T7664] aiptek 2-1:17.0: Aiptek using 400 ms programming speed
[  299.460263][ T7664] input: Aiptek as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:17.0/input/input20
[  299.529680][ T7664] usb 2-1: USB disconnect, device number 51
[  299.531681][    C0] aiptek 2-1:17.0: aiptek_irq - usb_submit_urb failed with result -19
[  299.656024][ T5310] mcp2221 0003:04D8:00DD.001D: unknown main item tag 0x0
[  299.658854][ T5310] mcp2221 0003:04D8:00DD.001D: unknown main item tag 0x0
[  299.661836][ T5310] mcp2221 0003:04D8:00DD.001D: unknown main item tag 0x0
[  299.664798][ T5310] mcp2221 0003:04D8:00DD.001D: unknown main item tag 0x0
[  299.667883][ T5310] mcp2221 0003:04D8:00DD.001D: unknown main item tag 0x0
[  299.671675][ T5310] mcp2221 0003:04D8:00DD.001D: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.3-1/input0
[  299.703884][T12664] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  299.857484][    C1] usb 4-1: input irq status -75 received
[  300.033425][ T7664] usb 1-1: new high-speed USB device number 46 using dummy_hcd
[  300.048956][T12683] loop1: detected capacity change from 0 to 64
[  300.063131][ T2283] usb 4-1: USB disconnect, device number 25
[  300.184875][ T7664] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  300.193684][ T7664] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  300.201117][ T7664] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d50, bcdDevice= 0.00
[  300.211237][ T7664] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  300.219914][ T7664] usb 1-1: config 0 descriptor??
[  300.573599][ T5310] usb 2-1: new high-speed USB device number 52 using dummy_hcd
[  300.631261][ T7664] kovaplus 0003:1E7D:2D50.001E: item fetching failed at offset 2/5
[  300.639979][ T7664] kovaplus 0003:1E7D:2D50.001E: parse failed
[  300.646783][ T7664] kovaplus 0003:1E7D:2D50.001E: probe with driver kovaplus failed with error -22
[  300.715935][T12701] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2605'.
[  300.723465][ T5310] usb 2-1: Using ep0 maxpacket: 16
[  300.736441][ T5310] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  300.741214][ T5310] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  300.748991][ T5310] usb 2-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  300.752740][ T5310] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  300.757295][ T5310] usb 2-1: Product: syz
[  300.759082][ T5310] usb 2-1: Manufacturer: syz
[  300.760986][ T5310] usb 2-1: SerialNumber: syz
[  300.766395][ T5310] usb 2-1: config 0 descriptor??
[  300.771784][ T5310] em28xx 2-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  300.777433][ T5310] em28xx 2-1:0.0: Audio interface 0 found (Vendor Class)
[  300.841925][   T24] usb 1-1: USB disconnect, device number 46
[  301.093486][ T7664] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  301.243445][ T7664] usb 4-1: Using ep0 maxpacket: 16
[  301.247992][ T7664] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  301.251243][ T7664] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x33, changing to 0x3
[  301.256111][ T7664] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  301.259570][ T7664] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  301.264371][ T7664] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  301.268587][ T7664] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  301.275020][ T7664] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  301.278507][ T7664] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  301.281798][ T7664] usb 4-1: Manufacturer: syz
[  301.288664][ T7664] usb 4-1: config 0 descriptor??
[  301.374119][ T5310] em28xx 2-1:0.0: unknown em28xx chip ID (0)
[  301.377236][ T5310] em28xx 2-1:0.0: Config register raw data: 0x41
[  301.497056][ T7664] usb 4-1: USB disconnect, device number 26
[  301.582196][ T2283] usb 2-1: USB disconnect, device number 52
[  301.585977][ T2283] em28xx 2-1:0.0: Disconnecting em28xx
[  301.596259][ T2283] em28xx 2-1:0.0: Freeing device
[  302.075763][   T33] audit: type=1326 audit(2000000154.260:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12715 comm="syz.3.2612" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f399478ebe9 code=0x0
[  302.237252][T12727] loop1: detected capacity change from 0 to 1024
[  302.240119][T12727] ext4: Unknown parameter 'fsmagic'
[  302.501600][T12737] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2620'.
[  302.505640][T12737] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2620'.
[  302.920511][T12743] loop3: detected capacity change from 0 to 512
[  302.931318][T12743] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  302.952068][T12743] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.2623: bg 0: block 4: invalid block bitmap
[  302.967332][T12743] EXT4-fs (loop3): Remounting filesystem read-only
[  302.970585][T12743] EXT4-fs (loop3): 1 truncate cleaned up
[  302.975570][T12743] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  303.005507][ T9539] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  303.033628][ T2283] usb 1-1: new high-speed USB device number 47 using dummy_hcd
[  303.185673][ T2283] usb 1-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  303.192299][ T2283] usb 1-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[  303.197879][ T2283] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  303.200010][T12757] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2629'.
[  303.205015][ T2283] gspca_main: stv0680-2.14.0 probing 041e:4007
[  303.354811][ T7664] usb 2-1: new high-speed USB device number 53 using dummy_hcd
[  303.507400][ T7664] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  303.510605][ T7664] usb 2-1: config 0 has no interfaces?
[  303.512384][ T7664] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  303.516069][ T7664] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  303.520781][ T7664] usb 2-1: config 0 descriptor??
[  303.623494][   T24] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  303.733649][T12752] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  303.741494][T12752] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  303.749744][   T55] Bluetooth: hci1: adv larger than maximum supported
[  303.749792][   T55] Bluetooth: hci1: Malformed LE Event: 0x0d
[  303.775895][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  303.780040][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  303.793718][   T24] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00
[  303.797317][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  303.814416][   T24] usb 4-1: config 0 descriptor??
[  303.822767][ T5310] usb 2-1: USB disconnect, device number 53
[  304.225438][   T24] pyra 0003:1E7D:2CF6.001F: ignoring exceeding usage max
[  304.229347][   T24] pyra 0003:1E7D:2CF6.001F: ignoring exceeding usage max
[  304.231981][   T24] pyra 0003:1E7D:2CF6.001F: usage index exceeded
[  304.234676][   T24] pyra 0003:1E7D:2CF6.001F: item 0 1 2 2 parsing failed
[  304.237872][   T24] pyra 0003:1E7D:2CF6.001F: parse failed
[  304.240170][   T24] pyra 0003:1E7D:2CF6.001F: probe with driver pyra failed with error -22
[  304.246504][ T2283] stv0680 1-1:4.0: STV(e): camera ping failed!!
[  304.430735][ T7664] usb 4-1: USB disconnect, device number 27
[  304.450390][ T2283] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71
[  304.456265][ T2283] stv0680 1-1:4.0: last error: 0,  command = 0x0
[  304.484947][ T2283] usb 1-1: USB disconnect, device number 47
[  304.765029][T12788] dummy0: Caught tx_queue_len zero misconfig
[  305.189320][T12812] netlink: 'syz.1.2656': attribute type 12 has an invalid length.
[  305.191791][T12812] netlink: 'syz.1.2656': attribute type 29 has an invalid length.
[  305.198080][T12812] netlink: 148 bytes leftover after parsing attributes in process `syz.1.2656'.
[  305.201137][T12812] netlink: 'syz.1.2656': attribute type 2 has an invalid length.
[  305.204049][T12812] netlink: 23 bytes leftover after parsing attributes in process `syz.1.2656'.
[  305.420345][T12818] loop1: detected capacity change from 0 to 32768
[  305.438194][T12818] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  305.452329][T12818] XFS (loop1): Ending clean mount
[  305.455903][T12818] XFS (loop1): Quotacheck needed: Please wait.
[  305.487547][T12818] XFS (loop1): Quotacheck: Done.
[  305.535212][ T5849] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  305.688515][T12838] loop1: detected capacity change from 0 to 256
[  305.705510][T12838] FAT-fs (loop1): Directory bread(block 64) failed
[  305.708282][T12838] FAT-fs (loop1): Directory bread(block 65) failed
[  305.710437][T12838] FAT-fs (loop1): Directory bread(block 66) failed
[  305.712494][T12838] FAT-fs (loop1): Directory bread(block 67) failed
[  305.714976][T12838] FAT-fs (loop1): Directory bread(block 68) failed
[  305.717179][T12838] FAT-fs (loop1): Directory bread(block 69) failed
[  305.719359][T12838] FAT-fs (loop1): Directory bread(block 70) failed
[  305.721821][T12838] FAT-fs (loop1): Directory bread(block 71) failed
[  305.728841][T12838] FAT-fs (loop1): Directory bread(block 72) failed
[  305.730986][T12838] FAT-fs (loop1): Directory bread(block 73) failed
[  305.891229][T12850] loop1: detected capacity change from 0 to 128
[  306.288717][T12862] loop3: detected capacity change from 0 to 512
[  306.301261][T12862] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  306.324186][T12862] EXT4-fs (loop3): 1 truncate cleaned up
[  306.335141][T12862] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  306.368081][ T9539] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  306.500598][T12874] overlayfs: failed lookup in lower (/, name='file0', err=-66): unsupported object type
[  306.563733][ T5310] usb 2-1: new high-speed USB device number 54 using dummy_hcd
[  306.717300][ T5310] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  306.720478][ T5310] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  306.725186][ T5310] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  306.730423][ T5310] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  306.733985][ T5310] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  306.736504][ T5310] usb 2-1: Product: syz
[  306.738056][ T5310] usb 2-1: Manufacturer: syz
[  306.748211][ T5310] usb 2-1: SerialNumber: syz
[  306.772578][ T5310] usb 2-1: bad CDC descriptors
[  307.048684][ T2283] usb 2-1: USB disconnect, device number 54
[  307.053862][ T7664] usb 1-1: new high-speed USB device number 48 using dummy_hcd
[  307.216106][ T7664] usb 1-1: New USB device found, idVendor=050d, idProduct=0121, bcdDevice=6f.3b
[  307.219929][ T7664] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  307.439843][ T7664] pegasus 1-1:254.0: probe with driver pegasus failed with error -71
[  307.455267][ T7664] usb 1-1: USB disconnect, device number 48
[  307.617981][T12894] loop1: detected capacity change from 0 to 64
[  307.734320][T12901] A link change request failed with some changes committed already. Interface veth1_to_team may have been left with an inconsistent configuration, please check.
[  308.084917][ T7664] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  308.239177][ T7664] usb 4-1: New USB device found, idVendor=0856, idProduct=ac31, bcdDevice=93.1e
[  308.243085][ T7664] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  308.248361][ T7664] usb 4-1: Product: syz
[  308.250092][ T7664] usb 4-1: Manufacturer: syz
[  308.251953][ T7664] usb 4-1: SerialNumber: syz
[  308.257449][ T7664] usb 4-1: config 0 descriptor??
[  308.363536][ T2283] usb 2-1: new high-speed USB device number 55 using dummy_hcd
[  308.474491][ T7664] mos7840 4-1:0.0: required endpoints missing
[  308.533527][ T2283] usb 2-1: Using ep0 maxpacket: 32
[  308.538980][ T2283] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  308.543992][ T2283] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  308.548109][ T2283] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  308.557891][ T2283] usb 2-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[  308.561376][ T2283] usb 2-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[  308.564763][ T2283] usb 2-1: Product: syz
[  308.566190][ T2283] usb 2-1: Manufacturer: syz
[  308.568043][ T2283] usb 2-1: SerialNumber: syz
[  308.587988][ T2283] input: appletouch as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/input/input21
[  308.676679][ T2283] usb 4-1: USB disconnect, device number 28
[  308.780786][ T7664] usb 2-1: USB disconnect, device number 55
[  308.799427][ T7664] appletouch 2-1:1.0: input: appletouch disconnected
[  308.819761][T12932] netlink: 'syz.0.2705': attribute type 12 has an invalid length.
[  309.458799][T12961] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  310.047094][T12976] loop3: detected capacity change from 0 to 512
[  310.050161][T12976] EXT4-fs (loop3): Test dummy encryption mode enabled
[  310.050174][T12976] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  310.053588][T12976] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.2724: bad orphan inode 131083
[  310.064943][T12976] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  310.085568][T12976] overlayfs: upper fs needs to support d_type.
[  310.108842][ T9539] EXT4-fs error (device loop3): ext4_readdir:264: inode #2: block 13: comm syz-executor: path /368/bus: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[  310.341405][T12980] netlink: 'syz.0.2726': attribute type 3 has an invalid length.
[  310.341427][T12980] netlink: 716 bytes leftover after parsing attributes in process `syz.0.2726'.
[  310.346930][T12717] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  310.492011][   T13] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  310.558498][   T13] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  310.665040][   T13] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  310.761255][   T13] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  310.883130][ T5233] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  310.890452][ T5233] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  310.896897][ T5233] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  310.900892][ T5233] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  310.910567][ T5233] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  310.963974][  T791] usb 2-1: new high-speed USB device number 56 using dummy_hcd
[  310.970894][   T13] bridge_slave_1: left allmulticast mode
[  310.974046][   T13] bridge_slave_1: left promiscuous mode
[  310.975937][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  310.982627][   T13] bridge_slave_0: left allmulticast mode
[  310.985128][   T13] bridge_slave_0: left promiscuous mode
[  310.987086][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  311.113539][  T791] usb 2-1: Using ep0 maxpacket: 16
[  311.119570][  T791] usb 2-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  311.123027][  T791] usb 2-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  311.125806][  T791] usb 2-1: Product: syz
[  311.127192][  T791] usb 2-1: Manufacturer: syz
[  311.128740][  T791] usb 2-1: SerialNumber: syz
[  311.134622][  T791] usb 2-1: config 0 descriptor??
[  311.364799][ T7664] usb 2-1: USB disconnect, device number 56
[  311.587169][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  311.591848][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  311.598779][   T13] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  311.602461][   T13] bond0 (unregistering): Released all slaves
[  311.705797][   T13] tipc: Disabling bearer <eth:macvtap0>
[  311.733396][   T13] tipc: Left network mode
[  311.802189][   T13] ------------[ cut here ]------------
[  311.804684][   T13] wlan1: Failed check-sdata-in-driver check, flags: 0x0
[  311.807582][   T13] WARNING: CPU: 1 PID: 13 at net/mac80211/driver-ops.c:366 drv_unassign_vif_chanctx+0x50b/0x7e0
[  311.811682][   T13] Modules linked in:
[  311.814193][   T13] CPU: 1 UID: 0 PID: 13 Comm: kworker/u8:1 Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895-dirty #0 PREEMPT(full) 
[  311.819934][   T13] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  311.824729][   T13] Workqueue: netns cleanup_net
[  311.826638][   T13] RIP: 0010:drv_unassign_vif_chanctx+0x50b/0x7e0
[  311.829071][   T13] Code: 8d 8d b8 09 00 00 48 85 c0 48 0f 44 f1 43 0f b6 04 3e 84 c0 0f 85 6b 02 00 00 8b 55 00 48 c7 c7 60 13 b0 8c e8 c6 75 9c f6 90 <0f> 0b 90 90 e9 ee fc ff ff e8 37 d7 d8 f6 90 0f 0b 90 42 80 7c 3d
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  311.836722][   T13] RSP: 0018:ffffc900001072a0 EFLAGS: 00010246
[  311.839902][   T13] RAX: 9eb7232d37314400 RBX: 0000000000000000 RCX: ffff88801c2f8000
[  311.842906][   T13] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[  311.846099][   T13] RBP: ffff888032115728 R08: ffff888136624253 R09: 1ffff11026cc484a
[  311.849245][   T13] R10: dffffc0000000000 R11: ffffed1026cc484b R12: ffff8880321169d0
[  311.852283][   T13] R13: ffff888032114d80 R14: 1ffff11006422ae5 R15: dffffc0000000000
[  311.855461][   T13] FS:  0000000000000000(0000) GS:ffff8881a3c24000(0000) knlGS:0000000000000000
[  311.859114][   T13] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  311.861626][   T13] CR2: 00007ffd3f88e058 CR3: 0000000032a44000 CR4: 00000000000006f0
[  311.865434][   T13] Call Trace:
[  311.866764][   T13]  <TASK>
[  311.867936][   T13]  ieee80211_assign_link_chanctx+0x1ec/0xd70
[  311.870290][   T13]  __ieee80211_link_release_channel+0x33b/0x4a0
[  311.872807][   T13]  ? __pfx_ieee80211_uninit+0x10/0x10
[  311.876165][   T13]  unregister_netdevice_many_notify+0x1953/0x1ff0
[  311.878787][   T13]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  311.881493][   T13]  ? __pfx_call_rcu+0x10/0x10
[  311.883608][   T13]  unregister_netdevice_queue+0x33c/0x380
[  311.885893][   T13]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  311.888329][   T13]  _cfg80211_unregister_wdev+0x165/0x590
[  311.890468][   T13]  ieee80211_remove_interfaces+0x49a/0x6e0
[  311.892748][   T13]  ? __pfx_synchronize_rcu+0x10/0x10
[  311.894982][   T13]  ? __pfx_ieee80211_remove_interfaces+0x10/0x10
[  311.897493][   T13]  ? rcu_is_watching+0x15/0xb0
[  311.899384][   T13]  ieee80211_unregister_hw+0x5d/0x2c0
[  311.901712][   T13]  mac80211_hwsim_del_radio+0x275/0x460
[  311.903977][   T13]  ? __pfx_mac80211_hwsim_del_radio+0x10/0x10
[  311.906344][   T13]  hwsim_exit_net+0x584/0x640
[  311.908320][   T13]  ? __pfx_hwsim_exit_net+0x10/0x10
[  311.910288][   T13]  ? __ip_vs_dev_cleanup_batch+0x238/0x260
[  311.912626][   T13]  ops_undo_list+0x49a/0x990
[  311.914644][   T13]  ? __pfx_ops_undo_list+0x10/0x10
[  311.916712][   T13]  ? do_raw_spin_unlock+0x4d/0x240
[  311.918779][   T13]  cleanup_net+0x4c5/0x800
[  311.920528][   T13]  ? __pfx_cleanup_net+0x10/0x10
[  311.922533][   T13]  ? _raw_spin_unlock_irq+0x23/0x50
[  311.925182][   T13]  ? process_scheduled_works+0x9ef/0x17b0
[  311.927423][   T13]  ? process_scheduled_works+0x9ef/0x17b0
[  311.929634][   T13]  process_scheduled_works+0xae1/0x17b0
[  311.931790][   T13]  ? __pfx_process_scheduled_works+0x10/0x10
[  311.934517][   T13]  worker_thread+0x8a0/0xda0
[  311.936347][   T13]  kthread+0x711/0x8a0
[  311.937992][   T13]  ? __pfx_worker_thread+0x10/0x10
[  311.940046][   T13]  ? __pfx_kthread+0x10/0x10
[  311.941837][   T13]  ? _raw_spin_unlock_irq+0x23/0x50
[  311.943947][   T13]  ? lockdep_hardirqs_on+0x9c/0x150
[  311.945977][   T13]  ? __pfx_kthread+0x10/0x10
[  311.947840][   T13]  ret_from_fork+0x3fc/0x770
[  311.949681][   T13]  ? __pfx_ret_from_fork+0x10/0x10
[  311.951649][   T13]  ? __switch_to_asm+0x39/0x70
[  311.953689][   T13]  ? __switch_to_asm+0x33/0x70
[  311.955453][   T13]  ? __pfx_kthread+0x10/0x10
[  311.957229][   T13]  ret_from_fork_asm+0x1a/0x30
[  311.959374][   T13]  </TASK>
[  311.960595][   T13] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  311.963356][   T13] CPU: 1 UID: 0 PID: 13 Comm: kworker/u8:1 Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895-dirty #0 PREEMPT(full) 
[  311.967878][   T13] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  311.971465][   T13] Workqueue: netns cleanup_net
[  311.973326][   T13] Call Trace:
[  311.974610][   T13]  <TASK>
[  311.975740][   T13]  dump_stack_lvl+0x99/0x250
[  311.977598][   T13]  ? __asan_memcpy+0x40/0x70
[  311.979406][   T13]  ? __pfx_dump_stack_lvl+0x10/0x10
[  311.981421][   T13]  ? __pfx__printk+0x10/0x10
[  311.983279][   T13]  vpanic+0x281/0x750
[  311.984895][   T13]  ? __pfx__printk+0x10/0x10
[  311.986770][   T13]  ? __pfx_vpanic+0x10/0x10
[  311.988605][   T13]  ? is_bpf_text_address+0x26/0x2b0
[  311.990684][   T13]  panic+0xb9/0xc0
[  311.992190][   T13]  ? __pfx_panic+0x10/0x10
[  311.994019][   T13]  __warn+0x31b/0x4b0
[  311.995642][   T13]  ? drv_unassign_vif_chanctx+0x50b/0x7e0
[  311.997878][   T13]  ? drv_unassign_vif_chanctx+0x50b/0x7e0
[  312.000026][   T13]  report_bug+0x2be/0x4f0
[  312.001710][   T13]  ? drv_unassign_vif_chanctx+0x50b/0x7e0
[  312.003941][   T13]  ? drv_unassign_vif_chanctx+0x50b/0x7e0
[  312.006116][   T13]  ? drv_unassign_vif_chanctx+0x50d/0x7e0
[  312.008304][   T13]  handle_bug+0x84/0x160
[  312.009898][   T13]  exc_invalid_op+0x1a/0x50
[  312.011591][   T13]  asm_exc_invalid_op+0x1a/0x20
[  312.013484][   T13] RIP: 0010:drv_unassign_vif_chanctx+0x50b/0x7e0
[  312.015927][   T13] Code: 8d 8d b8 09 00 00 48 85 c0 48 0f 44 f1 43 0f b6 04 3e 84 c0 0f 85 6b 02 00 00 8b 55 00 48 c7 c7 60 13 b0 8c e8 c6 75 9c f6 90 <0f> 0b 90 90 e9 ee fc ff ff e8 37 d7 d8 f6 90 0f 0b 90 42 80 7c 3d
[  312.023259][   T13] RSP: 0018:ffffc900001072a0 EFLAGS: 00010246
[  312.025662][   T13] RAX: 9eb7232d37314400 RBX: 0000000000000000 RCX: ffff88801c2f8000
[  312.028807][   T13] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[  312.031950][   T13] RBP: ffff888032115728 R08: ffff888136624253 R09: 1ffff11026cc484a
[  312.035123][   T13] R10: dffffc0000000000 R11: ffffed1026cc484b R12: ffff8880321169d0
[  312.038191][   T13] R13: ffff888032114d80 R14: 1ffff11006422ae5 R15: dffffc0000000000
[  312.041343][   T13]  ieee80211_assign_link_chanctx+0x1ec/0xd70
[  312.043691][   T13]  __ieee80211_link_release_channel+0x33b/0x4a0
[  312.046180][   T13]  ? __pfx_ieee80211_uninit+0x10/0x10
[  312.048315][   T13]  unregister_netdevice_many_notify+0x1953/0x1ff0
[  312.050821][   T13]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  312.053520][   T13]  ? __pfx_call_rcu+0x10/0x10
[  312.055431][   T13]  unregister_netdevice_queue+0x33c/0x380
[  312.057712][   T13]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  312.060222][   T13]  _cfg80211_unregister_wdev+0x165/0x590
[  312.062500][   T13]  ieee80211_remove_interfaces+0x49a/0x6e0
[  312.064843][   T13]  ? __pfx_synchronize_rcu+0x10/0x10
[  312.066933][   T13]  ? __pfx_ieee80211_remove_interfaces+0x10/0x10
[  312.069409][   T13]  ? rcu_is_watching+0x15/0xb0
[  312.071325][   T13]  ieee80211_unregister_hw+0x5d/0x2c0
[  312.073453][   T13]  mac80211_hwsim_del_radio+0x275/0x460
[  312.075602][   T13]  ? __pfx_mac80211_hwsim_del_radio+0x10/0x10
[  312.078099][   T13]  hwsim_exit_net+0x584/0x640
[  312.080023][   T13]  ? __pfx_hwsim_exit_net+0x10/0x10
[  312.082082][   T13]  ? __ip_vs_dev_cleanup_batch+0x238/0x260
[  312.084396][   T13]  ops_undo_list+0x49a/0x990
[  312.086245][   T13]  ? __pfx_ops_undo_list+0x10/0x10
[  312.088255][   T13]  ? do_raw_spin_unlock+0x4d/0x240
[  312.090259][   T13]  cleanup_net+0x4c5/0x800
[  312.091997][   T13]  ? __pfx_cleanup_net+0x10/0x10
[  312.093956][   T13]  ? _raw_spin_unlock_irq+0x23/0x50
[  312.095830][   T13]  ? process_scheduled_works+0x9ef/0x17b0
[  312.097990][   T13]  ? process_scheduled_works+0x9ef/0x17b0
[  312.100209][   T13]  process_scheduled_works+0xae1/0x17b0
[  312.102408][   T13]  ? __pfx_process_scheduled_works+0x10/0x10
[  312.104795][   T13]  worker_thread+0x8a0/0xda0
[  312.106671][   T13]  kthread+0x711/0x8a0
[  312.108340][   T13]  ? __pfx_worker_thread+0x10/0x10
[  312.110389][   T13]  ? __pfx_kthread+0x10/0x10
[  312.112199][   T13]  ? _raw_spin_unlock_irq+0x23/0x50
[  312.114228][   T13]  ? lockdep_hardirqs_on+0x9c/0x150
[  312.116264][   T13]  ? __pfx_kthread+0x10/0x10
[  312.118114][   T13]  ret_from_fork+0x3fc/0x770
[  312.119909][   T13]  ? __pfx_ret_from_fork+0x10/0x10
[  312.121538][   T13]  ? __switch_to_asm+0x39/0x70
[  312.122986][   T13]  ? __switch_to_asm+0x33/0x70
[  312.124442][   T13]  ? __pfx_kthread+0x10/0x10
[  312.126044][   T13]  ret_from_fork_asm+0x1a/0x30
[  312.127984][   T13]  </TASK>
[  312.129967][   T13] Kernel Offset: disabled
[  312.131729][   T13] Rebooting in 86400 seconds..

VM DIAGNOSIS:
17:02:10  Registers:
info registers vcpu 0

CPU#0
RAX=000000005dd82e3d RBX=00007f57929a1500 RCX=00000000000003ff RDX=00007f579272eb74
RSI=0000000000009301 RDI=0000000000000002 RBP=00000000bac24e6a RSP=00007ffda9f6e4b0
R8 =00007ffda9f6e5d8 R9 =00007f57929db560 R10=00007f57926f7eb0 R11=0000000000000007
R12=00007f57927309e8 R13=00007ffda9f6e504 R14=00007ffda9f6e5c8 R15=00007f57926fa2b8
RIP=00007f57929b3809 RFL=00000206 [-----P-] CPL=3 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0033 0000000000000000 ffffffff 00a0fb00 DPL=3 CS64 [-RA]
SS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f57926a0380 ffffffff 00c00000
GS =0000 0000000000000000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f579280afe4 CR3=000000002f187000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000ff0000000000 XMM01=0000ffffffffffff ffff00ffffffffff
XMM02=2e322e325f434249 4c4700352e322e32 XMM03=0000000000004249 4c4700352e322e32
XMM04=2e325f4342494c47 00362e322e325f43 XMM05=0000000000000000 0000000000000000
XMM06=0000000000000000 0000000000000000 XMM07=0000000000000000 0000000000000000
XMM08=0000000000000000 0000000000000000 XMM09=0000000000000000 0000000000000000
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000074 RBX=0000000000000074 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc90000106a50
R8 =ffff888107720237 R9 =1ffff11020ee4046 R10=dffffc0000000000 R11=ffffffff854e72a0
R12=dffffc0000000000 R13=ffffffff99af1909 R14=ffffffff99de64e0 R15=0000000000000000
RIP=ffffffff854e731c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8881a3c24000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffd3f88e058 CR3=0000000032a44000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=ffffffff8167983b ffffffff812c8955
XMM02=ffffffff8167983b ffffffff8167983b XMM03=ffffffff8167983b ffffffff8167983b
XMM04=ffffffff81748632 ffffffff81748632 XMM05=ffffffff81748632 ffffffff8174859b
XMM06=ffffffff8174859b ffffffff8174859b XMM07=ffffffff8168893f ffffffff816888ad
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007f1dd6e12fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
