last executing test programs:

1m46.412432854s ago: executing program 0 (id=570):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
close(r0)
setsockopt(0xffffffffffffffff, 0x84, 0x7, 0x0, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
r2 = syz_open_dev$video(&(0x7f0000000440), 0x8, 0x0)
ioctl$VIDIOC_S_SELECTION(r2, 0xc040565f, &(0x7f0000000940)={0xa, 0x0, 0x7, {0x3, 0x1000, 0xfc, 0x4}})
ioctl$vim2m_VIDIOC_S_FMT(r1, 0xc0d05605, &(0x7f0000000100)={0x2, @sdr={0x31435641, 0x3}})

1m46.170042282s ago: executing program 0 (id=571):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xc, 0x16, &(0x7f0000000200)=ANY=[@ANYBLOB="61126300000000006113500000000000bf2000000000000007000000180000003d030100000000009500f000000000006926000000000000bf67000000000000560602000f0200006706000020000000620a00fe0ee60000bf250000000000002d350000000000006507000002080000070700004c0000001f75000000000000bf54000000000000070400000400f9ffcd35"], 0x0}, 0x94)
r0 = syz_usb_connect$cdc_ecm(0x0, 0x56, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000090000102505a1a4400000000101090244000101000000090400001202060000052406000005240000000d240f0100000000000000000009058103400000000009058202600000000009050302"], 0x0)
ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f00000002c0)={@mcast2, @remote, @private2={0xfc, 0x2, '\x00', 0x1}, 0x4, 0x6, 0x0, 0x100, 0x104})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, &(0x7f0000000080)={0x14, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0x48, &(0x7f00000002c0)=ANY=[])

1m42.950690652s ago: executing program 0 (id=584):
syz_mount_image$xfs(&(0x7f0000009600), &(0x7f0000000100)='./file0\x00', 0x200802, &(0x7f0000000180)={[{@lazytime}, {@uqnoenforce}, {@logbufs={'logbufs', 0x3d, 0x6}}, {@prjquota}, {}, {@allocsize={'allocsize', 0x3d, [0x36, 0x39, 0x6d]}}, {@sysvgroups}]}, 0x4, 0x9606, &(0x7f0000012cc0)="$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")
capset(&(0x7f0000000340)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x5f22})
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000640)='./file0\x00', 0x0, &(0x7f0000000680)=ANY=[@ANYBLOB='\x00'], 0x1, 0x5ca, &(0x7f00000006c0)="$eJzs3cFvHFcdB/DvbGLHDlK6SZOmICSscgA1IlnvRiZISEApyEIVqsSlVyvZ1FY2aWRvkdsDCohz+y+Ugzlz4ISClANn/gWjHhHcfUs1s7PeTbJ1ncb1rtvPR5p9782befObn2dGM7OyNsA31uo7mXuUIqtX3tou27s7nd7uTufusJ7kTJJGspCkKGf/PcmnyYMMpnx72DFWPqP4ePXm+sOPLg9aC/VULV8ctN7h7MfSHMRalUc1XvuFxxvt4VKSC3UJU/d46D8Tu1/wvAQAZlmRnJo0v5mcrW/Wy+eAwV3x4B77RHsw7QAAAADgGLy0l71s59y04wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICTpP79/6KeGsP6Uorh7//P1/NS10+0R9MOAAAAAAAAAACOwPf2spftnBu2HxfVd/6vVY2L1ee38n620s1mrmY7a+mnn80sJ2mODTS/vdbvby4fYs32xDXbx7O/AAAAAAAAAPA19aesjr7/BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAWVAkpwZFNV0c1ptpnE6ykGS+XO5B8nBYP8keTTsAAAAAOAYv7WUv2zk3bD8uqmf+V6rn/oW8n3vpZyP99NLNrepdwOCpv7G70+nt7nTultOz4/7i/88VRjViBu8eJm+5VS1xaX+N1fw6v8uVLOXtbGYjv89a+ulmKW9WtbUUadZvL5rDOCfH+/MnWm9/UayvVpEs5nY2qtiu5mbeSy+30qj2oVrm4C3+scxO8bPaIXN0qy7LPfpNXc6GZpWRuf2MtOrcl9k4f3AmnvM4eXpLy2nsv4O6+BXk/Gxdlrl+c6Zz3h47+l45OBNJq/2/++u9e3fWb29dmZ1d+pKezkRnLBOXv1GZmK+zMbiKPt/V8rVq3XPZyG/zXm6lmxtp5UZWcj2drOQnWRnL66VDnGuN5zvXvv/DujKX5Fd1ORvKvJ4fy+v4la5Z9Y3PGWXpwtFfkU5/p66UB+sbM3dFOv/UtXmYiZcPzsRfHpefW717dzbX1+4fcns/qMsyA7+cqUyUx8uF8o9VtZ48Osq+lyf2LVd9F/f7Gs/0Xdrv+6Izdb6+h3t2pHbVd3liX6fqe3Wsb9JdDgAz7+zrZ+cX/7v478VPFv+8uL741sIbZ26c+e585v51+h+n/tb4a+Onxev5JH8YPf8DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABf3tYHH95Z6/W6myoqKir7lWlfmYCv2rX+3fvXtj748Ecbd9fe7b7bvXd9eaV9/Xpr5cc3rt3e6HVbg89phwkAHKHRTf+0IwEAAAAAAAAAAAAAAD7Pcfw78bT3EQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+HpbfSdzj1JkuXW1VbZ3dzq9chrWR0suJCnKyj+TfJo8yGBKc2y44vO2U3y8enP94UeXR2MtDJcvDlrvcJ6IpfFUTC86XvuFxxvt4VKSC3UJU/dZAAAA//94/wNT")
syz_io_uring_setup(0x65f0, 0x0, 0x0, 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
ioctl$XFS_IOC_GET_RESBLKS(r0, 0x80105873, 0x0)

1m40.364305903s ago: executing program 0 (id=603):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f0000000040)={[{@nobh}, {@abort}]}, 0xff, 0x258, &(0x7f0000000780)="$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")
syz_mount_image$ext4(0x0, &(0x7f0000000080)='./file0\x00', 0x18808, 0x0, 0xf7, 0x0, 0x0)
mount$bind(&(0x7f0000000240)='./file0/../file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x111091, 0x0)
chroot(&(0x7f0000000580)='./file0/../file0\x00')
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000008c0)='./file0\x00', 0x0, 0x2a05004, 0x0)
syz_mount_image$fuse(&(0x7f00000000c0), &(0x7f0000000100)='./file0/../file0\x00', 0x80000, &(0x7f0000000380)={{}, 0x2c, {'rootmode', 0x3d, 0xa000}}, 0x1, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)

1m38.064735495s ago: executing program 0 (id=600):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x8002)
r1 = fcntl$dupfd(r0, 0x0, r0)
write$FUSE_INIT(r1, &(0x7f00000000c0)={0x50, 0x0, 0x0, {0x7, 0x2d, 0xff, 0x20000040, 0x700, 0xa88, 0x7, 0x3ff, 0x0, 0x0, 0x4, 0x94}}, 0x50)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0x3, 0xac5)
syz_clone3(&(0x7f0000000900)={0x23800000, &(0x7f0000000040)=<r2=>0xffffffffffffffff, 0x0, 0x0, {0x27}, 0x0, 0x0, 0x0, 0x0}, 0x58)
io_setup(0x8, &(0x7f0000000280)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000001300)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x6, r2, 0x0}])

1m37.486861953s ago: executing program 0 (id=606):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000240), 0x4000000044402, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x11, r0, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401)
r2 = syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0)
r3 = fcntl$dupfd(r1, 0x406, r1)
ioctl$USBDEVFS_SUBMITURB(r3, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x2, 0x3, 0x0, 0x0, 0x7995}, 0xfcb5, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
readv(r2, &(0x7f0000000300)=[{&(0x7f0000000940)=""/4096, 0x1000}], 0x1)

1m36.723983907s ago: executing program 32 (id=606):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000240), 0x4000000044402, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x11, r0, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401)
r2 = syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0)
r3 = fcntl$dupfd(r1, 0x406, r1)
ioctl$USBDEVFS_SUBMITURB(r3, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x2, 0x3, 0x0, 0x0, 0x7995}, 0xfcb5, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
readv(r2, &(0x7f0000000300)=[{&(0x7f0000000940)=""/4096, 0x1000}], 0x1)

4.627445225s ago: executing program 4 (id=1196):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20940, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x74, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TIOCSLCKTRMIOS(r0, 0x80047456, &(0x7f00000010c0))

4.390833172s ago: executing program 4 (id=1198):
syz_usb_connect(0x3, 0x348, 0x0, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x8000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ff0000/0x2000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ff8000/0x2000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r0 = io_uring_setup(0x1195, &(0x7f0000000040)={0x0, 0x100c8a2, 0xc000, 0x3, 0x348})
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x13, 0x21cd, 0x0, &(0x7f0000000680)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x76, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000000)={0x0, &(0x7f0000000100)}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB=')'], 0x50)
io_uring_enter(r0, 0x221d, 0xcb75, 0x1f, 0x0, 0x0)

4.058755543s ago: executing program 3 (id=1201):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0300002e"], 0x35c}}, 0x4000000)
connect$inet6(r0, &(0x7f0000000300)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000400)=0x1, 0x4)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000140)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x20008041}, 0xc000041)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000e80)=@ccm_128={{0x304}, '\x00', "c463fd384f8545dda351f3013725f452", "ad308f99", "cacfdb8cad1f6b2a"}, 0x28)

3.50215976s ago: executing program 3 (id=1203):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000100), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102400, 0x19000)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000080)={&(0x7f0000000480)={0x2, 0x1, 0x0, 0x2, 0xc, 0x0, 0x4070bd2c, 0x25dfdbfc, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x4e23, 0x7, @mcast1, 0x80000001}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x4e23, 0xff, @local, 0x1ff}}]}, 0x60}, 0x1, 0x7}, 0x0)

2.582439089s ago: executing program 1 (id=1208):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000072"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r0)
r1 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$inet(r1, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x30004081)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000100)={{r2, <r3=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
recvmsg(r1, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e00)=[{&(0x7f0000000a80)=""/20, 0x14}], 0x1}, 0x0)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000480)={r3, &(0x7f0000000440)}, 0x20)

1.830799022s ago: executing program 3 (id=1211):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x5, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x1, 0x20}, 0xc)
setsockopt$inet_sctp6_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f0000000100)=0x7f, 0x4)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0xfffc, 0x0, @empty}}, 0x0, 0x800, 0x0, 0x0, 0x8a, 0xfffffffd}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000a00)={0x0, @in6={{0xa, 0x4e23, 0x0, @loopback}}, 0x100, 0x0, 0x0, 0x0, 0x54, 0x4, 0x73}, 0x9c)

1.717294746s ago: executing program 1 (id=1212):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e21, @broadcast}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000001200)=0xd0, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1f}}, 0x10)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000000)=0x3, 0x4)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000100)=[{0x6, 0x7, 0x0, 0x101}]}, 0x10)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)

1.373488317s ago: executing program 4 (id=1213):
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0xfd8b, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r0 = fsopen(&(0x7f0000000080)='autofs\x00', 0x0)
unshare(0x20000400)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)

1.146774724s ago: executing program 4 (id=1214):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x40741, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000bfe000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$x86(r2, &(0x7f0000000100)={0x0, 0x0})
ioctl$KVM_CLEAR_DIRTY_LOG(0xffffffffffffffff, 0xc018aec0, &(0x7f0000000140)={0x0, 0x240, 0x400, &(0x7f0000000180)=[0x6bd1a30f, 0xec66, 0xace, 0x8, 0xfffffffffffffffa, 0x8, 0x7, 0x4, 0x10000, 0x7, 0x0, 0x9, 0x6, 0x9, 0x5, 0x3f2, 0x3ff, 0x5, 0x2, 0x4000000001, 0x8, 0x1, 0xc1, 0x1, 0x2, 0x2, 0x800000006, 0x1000000000, 0x96, 0xffffffff, 0xffffffff00000000, 0x3, 0x5, 0x7, 0x4, 0x3541, 0x9, 0x888f, 0x1000, 0x8, 0x46, 0x6, 0x10000000000003, 0xa3df, 0x20000000006, 0x0, 0x8, 0x3fe, 0x0, 0xfffffffffffffff7, 0xd, 0x2, 0xe, 0x1, 0x4, 0xf8, 0xfd, 0x4, 0x9, 0xfffffffffffffffc, 0x9, 0x7, 0x40000005, 0xffffffff00000000, 0x9, 0xd, 0x10001, 0x6, 0x10000000200000, 0xfffffffffffffc00, 0x2, 0x0, 0x2, 0xcdc, 0x4000000007, 0x2, 0x3, 0x0, 0x2, 0xfff, 0x6, 0x3, 0x1, 0xab6, 0xa, 0x0, 0x0, 0xffffffffffffff84, 0x9, 0x8d, 0x3, 0x3ff, 0x6, 0x8, 0x3, 0x8, 0xf6, 0x4, 0x6, 0x203, 0x7, 0x5a0, 0x4, 0x8, 0x2293332d, 0x6, 0x5, 0x400, 0xffffffffffffffff, 0x2, 0x4, 0xfffffffffffffffb, 0x2, 0x8, 0x470ddba2, 0x0, 0xd, 0x5, 0x8, 0x1, 0xfffffffffffffff9, 0xeb4, 0x0, 0xfffffffffffffffe, 0xb692, 0x142, 0x8, 0x1000003]})
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180))

989.890589ms ago: executing program 4 (id=1215):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100))
write$P9_RSYMLINK(0xffffffffffffffff, &(0x7f00000000c0)={0x14, 0x11, 0x1, {0x4, 0x2, 0x3}}, 0x14)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
timer_create(0x7, &(0x7f0000000180)={0x0, 0x13, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000240)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000340)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
poll(0x0, 0x0, 0xffffffffffbffff8)
unshare(0x64000600)

987.811749ms ago: executing program 2 (id=1216):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000f9000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r1}, &(0x7f0000000040), &(0x7f0000000280)=r2}, 0x20)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000180)=r2, 0x4)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={{0x14}, [], {0x14, 0x10}}, 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

885.774922ms ago: executing program 2 (id=1217):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000000c0)={0x64, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0x1}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x10}, @IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x7}]}]}, 0x64}}, 0x0)
syz_open_dev$video4linux(&(0x7f0000000080), 0x2, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000780)=ANY=[@ANYBLOB="74000000090601020000000000000000030000000900020073797a310000000005000100070000004c0007801800018014000240fe8000000000000000000300000000aa1800148014000240fc000000000000000000000000000000060004404e1f0000050007008400000006000540"], 0x74}, 0x1, 0x0, 0x0, 0x10040003}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'wlan1\x00'})
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)

801.409545ms ago: executing program 2 (id=1218):
setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x4e21, @remote}}, 0x0, 0x0, 0x1f, 0x0, "fec34e77f1263643b52aa7beb3171ddb9cbe0cfef7c87cb4af8b03bc9f40e8d97a8de1e0af2e350dce1d05f076b9cb42ce8acf171c1499fd401e7e756a5653ea39b4ecd9805ee428eb40cef5df6ef362"}, 0xd8)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x43, 0x0, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@arm64={0x8, 0x4, 0x62})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

800.480305ms ago: executing program 3 (id=1219):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x101000, 0x0)
syz_open_dev$radio(&(0x7f00000000c0), 0xffffffffffffffff, 0x2)
r0 = syz_ublk_setup_io_uring(0x1d, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x158}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_ublk_add_dev(r0, r1, r2, r3, &(0x7f0000000200)={0x2e, 0x0, 0x0, 0xffffffffffffffff, 0xc0207504, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, '\x00', {0xffffffff, 0xffff, 0x40, &(0x7f0000000440)=@new_dev={0x4, 0x3c9, 0x0, 0x0, 0x1000, 0xffffffff, 0x0, 0x0, 0x40}}}, &(0x7f0000000300)=<r4=>0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = dup(r5)
syz_ublk_setup_queues(r6, r4, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x257, 0x0, r6}, &(0x7f0000000800)=[{0x0, 0x0, 0xffffffffffffffff, {0x0, 0x7ffffe, 0x100, 0x1000000, 0x10000004}}, {0x0, 0x0, 0xffffffffffffffff, {0x0, 0xfffffffc, 0x2, 0x0, 0x146, 0x0, r0}}, {0x0, 0x0, 0xffffffffffffffff, {0x0, 0x1f70, 0x2, 0x1}}, {0x0, 0x0, 0xffffffffffffffff, {0x0, 0x0, 0x8000, 0x1, 0xffffffff}}], 0x1, &(0x7f0000000340)={0x2e, 0x44, 0x0, 0xffffffffffffffff, 0xc0107520, 0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, '\x00', {0xfff9, 0x5, 0x0, 0x0}}, 0x0)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0x3c, &(0x7f0000000340)={0x1, 0x4}, 0x8)

790.198205ms ago: executing program 1 (id=1220):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x80102, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = eventfd2(0xe5c, 0x80000)
r3 = eventfd2(0x81, 0x80801)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000240)={r3, 0x7, 0x2, r2})
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000080)={r2, 0x1, 0x2, r3})
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000140)={r3, 0x7, 0x2, r3})

667.298809ms ago: executing program 1 (id=1221):
io_setup(0x202, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(0xffffffffffffffff, 0x4068aea3, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000300)='./file1\x00', 0xa00008, &(0x7f0000000000), 0x1, 0x7c8, &(0x7f0000001280)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='.\x00', 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0x8004587d, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x8000200000000000, 0x0, 0x85c, 0x5})
capset(0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r0, 0x0)

624.04084ms ago: executing program 2 (id=1222):
r0 = socket$inet6(0xa, 0x5, 0x0)
r1 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000fee000)=0x3fa, 0x4)
bind$inet6(r1, &(0x7f0000000100)={0xa, 0x4e23, 0x8001, @empty, 0xffffff5d}, 0x1c)
listen(r1, 0x50)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000fee000)=0x3fa, 0x4)
bind$inet6(r0, &(0x7f00000001c0)={0xa, 0xce23, 0x4, @empty, 0xc}, 0x1c)
listen(r0, 0x50)

462.779666ms ago: executing program 1 (id=1223):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x0, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000000)=0x4, 0x4)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r1, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x4)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x0, {{@in, @in6=@remote, 0x4000, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x7, 0x0, 0x0, 0x0, 0x2}, {}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in6=@rand_addr=' \x01\x00', 0x2, 0x32}, 0xa, @in6=@private1, 0x0, 0x4}]}]}, 0xfc}}, 0x0)
connect$inet(r0, &(0x7f0000000280)={0x2, 0x4, @broadcast}, 0x10)

447.228666ms ago: executing program 2 (id=1224):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f000000a400)={0x2020, 0x0, <r1=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000008400)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)={0x90, 0x0, 0x0, {0x3, 0x1, 0x0, 0x0, 0x1, 0x0, {0x4006, 0x200000000, 0x0, 0x6, 0x3, 0x0, 0x0, 0xfffffbff, 0x10, 0xc000, 0x2, 0x0, 0x0, 0x101}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
llistxattr(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000240)=""/109, 0x6d)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x2d, 0x0, 0x20001000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, 0x50)
umount2(&(0x7f00000002c0)='./file0\x00', 0x9)

364.519418ms ago: executing program 1 (id=1225):
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r0, 0x0, 0x8)
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0xc5fffffd)
openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

226.722523ms ago: executing program 3 (id=1226):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x5, 0x2, 0x4}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000dc0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000440)={{r0}, &(0x7f0000000140), &(0x7f0000000400)='%+9llu \x00'}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x14, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000001000000850000008600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f00000000c0)=r4, 0x4)
sendmsg$unix(r3, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x20000050)

226.499393ms ago: executing program 2 (id=1227):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}, @remote, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x66, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698d0a881c51852e4451b57d037ad3c045942824251d7d17b5191584bcd4fbe40a23424d", "bcfd56f1375461caaa2f19935e6996c7096ffeeb0300000000000064", {"9a3bfbc1d19cb307b3472ab9cdb042d2", "643fcbb2c5a57df67d074af6e8dafe09"}}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x5, 0x0, 0x0, 0x60ff78ce1cb3c070}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
ioctl$SIOCGSTAMP(r0, 0x8906, 0x0)
recvmmsg(r0, &(0x7f0000000940)=[{{0x0, 0x0, 0x0}, 0x3b61}], 0x1, 0x0, 0x0)

32.108809ms ago: executing program 3 (id=1228):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r2}, 0x0, &(0x7f0000000040)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x3e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r3, r1, 0x25, 0x0, @void}, 0x10)
syz_emit_ethernet(0x103e, &(0x7f0000001d00)=ANY=[], 0x0)

0s ago: executing program 4 (id=1229):
syz_usb_connect$uac2(0x1, 0x0, 0x0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x33, &(0x7f0000000340)=@string={0x33, 0x3, "e19f7e91bbeaa056d29faa2b62910a68a6e6cd3b56f17a95cc52dd2594c39718f9475c084c66af8b37c76074f59e3d8dc1"}}]})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=@newnexthop={0x30, 0x68, 0x1, 0x3, 0x80000000, {}, [@NHA_GROUP={0x4}, @NHA_GATEWAY={0x14, 0x6, @in6_addr=@dev={0xfe, 0x80, '\x00', 0x17}}]}, 0x30}}, 0x40000)
r0 = socket(0x11, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000005c0)={'ip6gretap0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f0000000180)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @remote}, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffec8, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xe9, 0x4)
sendmsg$netlink(r0, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000280)=ANY=[@ANYBLOB="3b844100d5432f"], 0xdd12}], 0x1}, 0x20040890)

kernel console output (not intermixed with test programs):

Stopped filesystem due to reason: 3
[  121.158635][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.169514][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.176713][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.183696][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.191895][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.199299][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.207182][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.214439][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.221713][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.229802][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.237878][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.245067][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.252205][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.259673][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.269449][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.276751][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.283693][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.290816][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.298086][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.310251][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.318891][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.349669][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.361106][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.372163][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.383922][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.391060][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.410959][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.457263][ T5783] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  121.466773][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.476134][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.499487][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.507936][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.515139][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.567703][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.610127][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.637084][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.644023][ T6265] vlan2: entered allmulticast mode
[  121.649520][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.665822][ T6265] bond0: entered allmulticast mode
[  121.671031][ T6265] bond_slave_0: entered allmulticast mode
[  121.686654][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.708155][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.715184][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.728663][ T6265] bond_slave_1: entered allmulticast mode
[  121.748043][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.755021][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.805760][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.834728][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.865801][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.913525][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.950486][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.982303][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  121.993776][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.022992][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.054837][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.063169][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.070724][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.088116][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.098729][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.106131][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.113211][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.122279][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.131750][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.142062][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.150794][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.161997][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.169601][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.177038][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.184077][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.195645][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.207404][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.215492][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.241661][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.255741][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.262781][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.277836][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.301374][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.313985][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.323137][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.336375][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.344494][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.367980][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.382118][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.391144][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.399613][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.406777][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.414082][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.423098][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.432447][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.443339][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.454747][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.465398][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.476022][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.483106][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.494651][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.502775][ T6232] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  122.540749][ T6232] syz.2.105: attempt to access beyond end of device
[  122.540749][ T6232] loop2: rw=0, sector=54208, nr_sectors = 8 limit=40427
[  122.824232][ T5774] syz-executor: attempt to access beyond end of device
[  122.824232][ T5774] loop2: rw=2051, sector=36912, nr_sectors = 8144 limit=40427
[  122.872342][ T5774] syz-executor: attempt to access beyond end of device
[  122.872342][ T5774] loop2: rw=2051, sector=45096, nr_sectors = 8152 limit=40427
[  122.896055][ T5774] syz-executor: attempt to access beyond end of device
[  122.896055][ T5774] loop2: rw=2051, sector=54216, nr_sectors = 76856 limit=40427
[  122.930093][ T5774] F2FS-fs (loop2): Issue discard(4614, 4614, 1018) failed, ret: -5
[  122.948260][ T5774] F2FS-fs (loop2): Issue discard(5637, 5637, 1019) failed, ret: -5
[  122.956552][ T5774] F2FS-fs (loop2): Issue discard(6777, 6777, 9607) failed, ret: -5
[  123.022229][ T6284] ALSA: seq fatal error: cannot create timer (-22)
[  123.503739][ T6290] loop2: detected capacity change from 0 to 64
[  124.644643][ T6295] loop0: detected capacity change from 0 to 32768
[  124.724900][ T6295] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  124.864796][ T6295] XFS (loop0): Ending clean mount
[  125.144880][ T6305] loop2: detected capacity change from 0 to 32768
[  125.314797][ T6305] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  125.639931][ T6305] XFS (loop2): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[  125.710827][ T6305] XFS (loop2): Starting recovery (logdev: internal)
[  125.741782][ T6305] XFS (loop2): Ending recovery (logdev: internal)
[  125.965788][    T9] usb 4-1: new full-speed USB device number 4 using dummy_hcd
[  126.050313][ T5774] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  126.178790][    T9] usb 4-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  126.193483][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  126.211486][    T9] usb 4-1: Product: syz
[  126.229862][    T9] usb 4-1: Manufacturer: syz
[  126.234647][    T9] usb 4-1: SerialNumber: syz
[  126.252931][    T9] usb 4-1: config 0 descriptor??
[  126.360698][ T5780] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  126.526816][    T9] usb 4-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  127.485659][ T5838] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  127.685662][ T5838] usb 2-1: Using ep0 maxpacket: 8
[  127.705810][ T5838] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  127.728075][ T5838] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  127.741828][ T5838] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  127.759858][    T9] dvb_usb_rtl28xxu: probe of 4-1:0.0 failed with error -71
[  127.776571][ T5838] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  127.796723][    T9] usb 4-1: USB disconnect, device number 4
[  127.814660][ T5838] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  127.852178][ T5838] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  127.972827][ T6356] loop0: detected capacity change from 0 to 32768
[  128.000269][ T6356] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  128.095343][ T5838] usb 2-1: GET_CAPABILITIES returned 0
[  128.101853][ T5838] usbtmc 2-1:16.0: can't read capabilities
[  128.141519][ T6356] XFS (loop0): Ending clean mount
[  128.201516][ T6356] XFS (loop0): Quotacheck needed: Please wait.
[  128.255390][ T6356] XFS (loop0): Quotacheck: Done.
[  128.500520][    C1] usbtmc 2-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71
[  128.570909][ T5838] usb 2-1: USB disconnect, device number 4
[  128.668945][ T5780] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  129.225567][    C0] sched: RT throttling activated
[  129.488370][ T6366] loop2: detected capacity change from 0 to 131072
[  129.510534][ T6366] F2FS-fs (loop2): invalid crc value
[  129.535130][ T6366] F2FS-fs (loop2): Found nat_bits in checkpoint
[  129.622873][ T6366] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  129.717791][   T28] audit: type=1800 audit(1782234826.394:7): pid=6366 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.140" name="file1" dev="loop2" ino=7 res=0 errno=0
[  130.017446][ T6368] loop3: detected capacity change from 0 to 40427
[  130.068696][ T6368] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  130.105815][ T6368] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  130.151249][ T6368] F2FS-fs (loop3): invalid crc value
[  130.183026][ T6368] F2FS-fs (loop3): Found nat_bits in checkpoint
[  130.398572][ T6368] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  130.425733][ T6368] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  130.618886][ T6394] loop1: detected capacity change from 0 to 128
[  130.683070][ T6394] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  130.727256][ T6394] ext4 filesystem being mounted at /33/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  131.088861][ T5775] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  132.669028][ T6435] warning: `syz.2.164' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  132.790172][ T5855] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  132.995643][ T5855] usb 1-1: Using ep0 maxpacket: 16
[  133.016252][ T5855] usb 1-1: New USB device found, idVendor=041e, idProduct=4018, bcdDevice=ed.b4
[  133.045646][ T5855] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  133.064122][ T5855] usb 1-1: Product: syz
[  133.074281][ T5855] usb 1-1: Manufacturer: syz
[  133.083898][ T5855] usb 1-1: SerialNumber: syz
[  133.098967][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  133.108393][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  133.119710][ T5855] usb 1-1: config 0 descriptor??
[  133.143667][ T5855] gspca_main: spca508-2.14.0 probing 041e:4018
[  133.366247][ T5855] gspca_spca508: reg_read err -32
[  133.375692][ T5855] gspca_spca508: reg_read err -32
[  133.388783][ T5855] gspca_spca508: reg_read err -32
[  133.409959][ T5855] gspca_spca508: reg_read err -32
[  133.428832][ T5855] gspca_spca508: reg_read err -32
[  133.494387][ T6439] loop2: detected capacity change from 0 to 32768
[  133.555715][   T27] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  133.570917][ T6439] JBD2: Ignoring recovery information on journal
[  133.636623][ T6439] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  133.649553][ T5855] gspca_spca508: reg write: error -71
[  133.672180][ T5855] spca508: probe of 1-1:0.0 failed with error -71
[  133.684073][ T5855] usb 1-1: USB disconnect, device number 3
[  133.784081][ T6448] loop3: detected capacity change from 0 to 8192
[  133.805659][   T27] usb 2-1: Using ep0 maxpacket: 16
[  133.822000][ T6448] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  133.826090][   T27] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  133.848925][ T6448] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal
[  133.874269][ T6448] REISERFS (device loop3): using ordered data mode
[  133.883383][   T27] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  133.902322][ T6448] reiserfs: using flush barriers
[  133.923440][   T28] audit: type=1804 audit(1782234830.594:8): pid=6439 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.166" name="/newroot/32/file1/file1" dev="loop2" ino=17059 res=1 errno=0
[  133.953343][   T27] usb 2-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[  133.976626][ T6448] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  134.005817][   T27] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  134.007205][ T6448] REISERFS (device loop3): checking transaction log (loop3)
[  134.042446][   T27] usb 2-1: config 0 descriptor??
[  134.267068][ T6448] REISERFS (device loop3): Using tea hash to sort names
[  134.278912][ T6448] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[  134.487688][   T27] apple 0003:05AC:024B.0004: fixing up MacBook JIS keyboard report descriptor
[  134.517340][ T6451] process 'syz.0.171' launched './file1' with NULL argv: empty string added
[  134.528212][   T27] apple 0003:05AC:024B.0004: unknown global tag 0xe
[  134.557515][   T27] apple 0003:05AC:024B.0004: item 0 1 1 14 parsing failed
[  134.586579][   T27] apple 0003:05AC:024B.0004: parse failed
[  134.592490][   T27] apple: probe of 0003:05AC:024B.0004 failed with error -22
[  134.714585][    T9] usb 2-1: USB disconnect, device number 5
[  134.799393][ T5774] ocfs2: Unmounting device (7,2) on (node local)
[  135.457964][ T6453] loop3: detected capacity change from 0 to 32768
[  135.512572][ T6453] JBD2: Ignoring recovery information on journal
[  135.605360][ T6453] ocfs2: Mounting device (7,3) on (node local, slot 0) with writeback data mode.
[  135.715690][ T5812] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  135.909397][ T5812] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  135.929055][ T5812] usb 3-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  135.962499][ T5812] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66
[  135.985437][ T5812] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  136.021183][ T5812] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  136.049300][ T5812] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  136.060287][ T5812] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  136.075965][ T5812] usb 3-1: Product: syz
[  136.085112][ T5812] usb 3-1: Manufacturer: syz
[  136.122121][ T5812] cdc_wdm 3-1:1.0: skipping garbage
[  136.128093][ T5783] ocfs2: Unmounting device (7,3) on (node local)
[  136.129925][ T5812] cdc_wdm 3-1:1.0: skipping garbage
[  136.156552][ T5812] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device
[  136.173157][ T5812] cdc_wdm 3-1:1.0: Unknown control protocol
[  136.398929][    C1] wdm_int_callback: 37 callbacks suppressed
[  136.398959][    C1] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[  136.411561][    C1] wdm_int_callback: 37 callbacks suppressed
[  136.411582][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[  136.426574][    C1] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[  136.433248][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[  136.445979][    C1] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[  136.452701][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[  136.460753][ T5812] usb 3-1: USB disconnect, device number 4
[  136.467043][    C1] cdc_wdm 3-1:1.0: nonzero urb status received: -71
[  136.467074][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - 0 bytes
[  136.467093][    C1] cdc_wdm 3-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  136.673182][ T6477] netlink: 28 bytes leftover after parsing attributes in process `syz.0.180'.
[  136.691585][ T6477] netlink: 28 bytes leftover after parsing attributes in process `syz.0.180'.
[  136.709645][ T6477] erspan0: entered promiscuous mode
[  136.723115][ T6477] gretap0: entered promiscuous mode
[  136.737577][ T6478] netlink: 28 bytes leftover after parsing attributes in process `syz.0.180'.
[  136.755798][ T6478] netlink: 28 bytes leftover after parsing attributes in process `syz.0.180'.
[  136.867558][ T6478] Zero length message leads to an empty skb
[  137.677258][ T6498] loop0: detected capacity change from 0 to 64
[  137.829241][   T28] audit: type=1800 audit(1782234834.504:9): pid=6498 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.188" name="file1" dev="loop0" ino=22 res=0 errno=0
[  138.134384][ T6512] loop3: detected capacity change from 0 to 64
[  138.603053][ T6521] loop3: detected capacity change from 0 to 4096
[  139.009846][ T6526] loop0: detected capacity change from 0 to 8192
[  139.070583][ T6526] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  139.095407][ T6526] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[  139.153231][ T6526] REISERFS (device loop0): using ordered data mode
[  139.195685][ T6526] reiserfs: using flush barriers
[  139.241436][ T6526] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  139.279758][ T6526] REISERFS (device loop0): checking transaction log (loop0)
[  139.580358][ T6526] REISERFS (device loop0): Using tea hash to sort names
[  139.614646][ T6548] serio: Serial port ttyS3
[  139.620436][ T6526] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[  139.808060][ T6526] REISERFS warning (device loop0): vs-13060 reiserfs_update_sd_size: stat data of object [2 5 0x0 SD] (nlink == 1) not found (pos 2)
[  140.394999][ T6562] random: crng reseeded on system resumption
[  141.009244][ T6566] fuse: Bad value for 'fd'
[  141.905932][ T6563] loop0: detected capacity change from 0 to 32768
[  142.025944][ T6563] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  142.144586][ T6563] XFS (loop0): Ending clean mount
[  143.271867][ T5780] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  144.246870][ T6604] dccp_invalid_packet: P.type (REQUEST) not Data || [Data]Ack, while P.X == 0
[  146.094959][ T6610] loop3: detected capacity change from 0 to 32768
[  146.185805][ T6610] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  146.352890][ T6610] XFS (loop3): Ending clean mount
[  146.526640][ T5815] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  146.620280][ T5783] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  146.756779][ T5815] usb 2-1: Using ep0 maxpacket: 32
[  146.766514][ T5815] usb 2-1: config 0 has an invalid interface number: 184 but max is 0
[  146.785667][ T5815] usb 2-1: config 0 has no interface number 0
[  146.791958][ T5815] usb 2-1: config 0 interface 184 has no altsetting 0
[  146.808913][ T5815] usb 2-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  146.835033][ T5815] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  146.873293][ T5815] usb 2-1: Product: syz
[  146.890080][ T5815] usb 2-1: Manufacturer: syz
[  146.894770][ T5815] usb 2-1: SerialNumber: syz
[  146.920092][ T5815] usb 2-1: config 0 descriptor??
[  146.943631][ T5815] smsc75xx v1.0.0
[  147.811662][ T6656] loop3: detected capacity change from 0 to 512
[  147.845455][ T6656] EXT4-fs: Ignoring removed bh option
[  147.914603][ T6656] EXT4-fs error (device loop3): ext4_iget_extra_inode:4739: inode #15: comm syz.3.240: corrupted in-inode xattr: e_value size too large
[  148.024187][ T6656] EXT4-fs error (device loop3): ext4_orphan_get:1409: comm syz.3.240: couldn't read orphan inode 15 (err -117)
[  148.094322][ T6656] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  148.246635][ T6656] EXT4-fs warning (device loop3): dx_probe:833: inode #2: comm syz.3.240: Unrecognised inode hash code 4
[  148.285621][ T6656] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.240: Corrupt directory, running e2fsck is recommended
[  148.383747][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.395823][ T5815] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000040: -71
[  148.428233][ T5815] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Error writing E2P_CMD
[  148.469738][ T5815] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  148.494319][ T5815] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[  148.518924][ T5815] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_reset
[  148.534688][ T5815] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[  148.545314][ T5815] smsc75xx: probe of 2-1:0.184 failed with error -71
[  148.562640][ T5815] usb 2-1: USB disconnect, device number 6
[  149.644691][ T3461] nci: nci_ntf_packet: unknown ntf opcode 0x3c
[  149.740140][ T6689] loop1: detected capacity change from 0 to 128
[  149.809524][ T6689] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  149.889526][ T6689] ext4 filesystem being mounted at /57/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  150.012754][ T5775] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  150.288306][ T6681] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  150.635725][ T5815] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  150.645687][ T5812] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  150.827547][    T9] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  150.835805][ T5815] usb 2-1: Using ep0 maxpacket: 32
[  150.850241][ T5812] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  150.870154][ T5812] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  150.890531][ T5812] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  150.901811][ T5815] usb 2-1: New USB device found, idVendor=1964, idProduct=0001, bcdDevice=d4.15
[  150.911128][ T5815] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  150.924060][ T5812] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  150.937396][ T5815] usb 2-1: Product: syz
[  150.941718][ T5815] usb 2-1: Manufacturer: syz
[  150.950995][ T5815] usb 2-1: SerialNumber: syz
[  150.958179][ T5812] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  150.971344][ T5812] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  150.981087][ T5815] usb 2-1: config 0 descriptor??
[  150.986504][ T5812] usb 4-1: Manufacturer: syz
[  151.006727][ T5812] usb 4-1: config 0 descriptor??
[  151.046062][    T9] usb 3-1: Using ep0 maxpacket: 16
[  151.058116][    T9] usb 3-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  151.074264][    T9] usb 3-1: config 0 interface 0 has no altsetting 0
[  151.083724][    T9] usb 3-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[  151.096972][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.114183][    T9] usb 3-1: config 0 descriptor??
[  151.233036][ T5815] RobotFuzz Open Source InterFace, OSIF 2-1:0.0: version d4.15 found at bus 002 address 007
[  151.453137][ T5812] appleir 0003:05AC:8243.0005: unknown main item tag 0x0
[  151.462049][ T5812] appleir 0003:05AC:8243.0005: No inputs registered, leaving
[  151.496306][ T5812] appleir 0003:05AC:8243.0005: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.3-1/input0
[  151.554972][    T9] nzxt-smart2 0003:1E71:2009.0006: hidraw1: USB HID v0.05 Device [HID 1e71:2009] on usb-dummy_hcd.2-1/input0
[  151.768974][ T6703] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  151.815374][ T6703] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  152.113483][ T5855] usb 2-1: USB disconnect, device number 7
[  152.230625][ T6709] loop0: detected capacity change from 0 to 32768
[  152.295426][   T28] audit: type=1800 audit(1782234848.964:10): pid=6709 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.255" name="file1" dev="loop0" ino=4 res=0 errno=0
[  152.379501][ T6709] loop5: detected capacity change from 0 to 7
[  152.396998][ T6709]  loop5: [POWERTEC]
[  153.072230][ T6720] Core dump to core aborted: cannot preserve file permissions
[  153.498219][ T5812] usb 3-1: USB disconnect, device number 5
[  153.610050][    T9] usb 4-1: USB disconnect, device number 5
[  154.377625][ T6737] loop0: detected capacity change from 0 to 8192
[  154.425102][ T6737] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  154.498402][ T6737] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[  154.581869][ T6737] REISERFS (device loop0): using ordered data mode
[  154.618836][ T6737] reiserfs: using flush barriers
[  154.658622][ T6737] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  154.712429][ T6737] REISERFS (device loop0): checking transaction log (loop0)
[  154.846402][ T6731] loop2: detected capacity change from 0 to 131072
[  154.875432][ T6731] F2FS-fs (loop2): invalid crc value
[  154.917394][ T6731] F2FS-fs (loop2): Found nat_bits in checkpoint
[  154.984350][ T6731] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  155.074867][ T6737] REISERFS (device loop0): Using tea hash to sort names
[  155.083632][ T6737] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[  155.178132][   T28] audit: type=1800 audit(1782234851.844:11): pid=6731 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.263" name="file1" dev="loop2" ino=7 res=0 errno=0
[  156.476022][ T6773] loop0: detected capacity change from 0 to 4096
[  156.503654][ T6773] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512).
[  156.648759][ T6773] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  156.667818][ T6773] ntfs3: loop0: Failed to load $Extend (-22).
[  156.686888][ T6773] ntfs3: loop0: Failed to initialize $Extend.
[  156.778055][ T6773] ntfs3: loop0: ino=0, attr_set_size
[  156.824370][ T6773] ntfs3: loop0: ino=0, attr_set_size
[  156.846623][ T6773] ntfs3: loop0: ino=0, attr_set_size
[  156.877463][ T6778] loop2: detected capacity change from 0 to 256
[  156.914821][ T6773] ntfs3: loop0: ino=0, attr_set_size
[  157.438812][ T6788] netlink: 4 bytes leftover after parsing attributes in process `syz.1.283'.
[  157.537259][ T6788] 8021q: adding VLAN 0 to HW filter on device team1
[  158.544189][ T6816] loop1: detected capacity change from 0 to 8192
[  158.581258][ T6816] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  158.604875][ T6816] REISERFS (device loop1): found reiserfs format "3.5" with non-standard journal
[  158.621162][ T6816] REISERFS (device loop1): using ordered data mode
[  158.628393][ T6816] reiserfs: using flush barriers
[  158.638282][ T6816] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  158.658455][ T6816] REISERFS (device loop1): checking transaction log (loop1)
[  158.680598][ T6816] REISERFS (device loop1): Using r5 hash to sort names
[  159.047288][ T6825] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  159.945952][ T5855] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  160.219456][ T5855] usb 3-1: Using ep0 maxpacket: 32
[  160.229286][ T5855] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  160.240535][ T5855] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  160.252699][ T5855] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  160.289991][ T5855] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  160.326928][ T5855] usb 3-1: config 0 descriptor??
[  160.364352][ T5855] hub 3-1:0.0: USB hub found
[  160.582870][ T5855] hub 3-1:0.0: 1 port detected
[  161.224909][ T6843] loop3: detected capacity change from 0 to 32768
[  161.253368][    T9] hub 3-1:0.0: activate --> -90
[  161.301566][ T6843] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  161.473908][ T6845] loop1: detected capacity change from 0 to 32768
[  161.505348][ T6843] XFS (loop3): Ending clean mount
[  161.526037][ T6845] (syz.1.307,6845,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  161.604225][ T6845] (syz.1.307,6845,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  161.683571][ T6845] JBD2: Ignoring recovery information on journal
[  161.774808][ T6845] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  161.866091][ T5855] hub 3-1:0.0: hub_ext_port_status failed (err = -71)
[  161.888522][ T5855] usb 3-1-port1: cannot reset (err = -71)
[  161.894704][ T5855] usb 3-1-port1: Cannot enable. Maybe the USB cable is bad?
[  161.906147][ T5764] usb 3-1: USB disconnect, device number 6
[  161.932058][ T5855] usb 3-1-port1: attempt power cycle
[  161.979747][ T5783] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  162.198486][ T6845] ocfs2: Unmounting device (7,1) on (node local)
[  163.281784][ T6870] Invalid argument reading file caps for ./file0
[  163.722996][ T6879] netlink: 'syz.1.319': attribute type 4 has an invalid length.
[  164.290809][ T6895] loop2: detected capacity change from 0 to 256
[  164.324901][ T6895] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  164.352976][ T6895] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  164.380438][ T6895] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  165.131553][ T6820] Set syz1 is full, maxelem 65536 reached
[  165.398137][ T6918] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size
[  165.481487][ T6920] netlink: 8 bytes leftover after parsing attributes in process `syz.1.332'.
[  165.534058][ T6922] loop0: detected capacity change from 0 to 1024
[  165.734173][ T6922] hfsplus: found bad thread record in catalog
[  165.849293][   T34] hfsplus: found bad thread record in catalog
[  166.211050][ T6936] netlink: 44 bytes leftover after parsing attributes in process `syz.3.339'.
[  166.625721][ T6950] loop0: detected capacity change from 0 to 128
[  166.668959][ T6950] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  166.693479][ T6950] ext4 filesystem being mounted at /74/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  167.026575][ T6950] fscrypt: Adiantum using implementation "adiantum(xchacha12-simd,aes-aesni,nhpoly1305-avx2)"
[  167.158795][ T6967] loop2: detected capacity change from 0 to 7
[  167.167887][ T5780] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  167.211587][ T6967]  loop2:
[  167.214793][ T6967] loop2: partition table partially beyond EOD, truncated
[  167.900327][ T6970] loop2: detected capacity change from 0 to 32768
[  167.927287][ T6970] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.351 (6970)
[  167.973566][ T6970] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  167.992724][ T6970] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  168.012066][ T6970] BTRFS info (device loop2): using free space tree
[  168.161022][ T6970] BTRFS info (device loop2): enabling ssd optimizations
[  168.181276][ T6970] BTRFS info (device loop2): auto enabling async discard
[  168.218632][ T6975] loop0: detected capacity change from 0 to 32768
[  168.289981][ T6975] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  168.530994][ T1141] BTRFS info (device loop2): qgroup scan completed (inconsistency flag cleared)
[  168.591230][ T6975] XFS (loop0): Ending clean mount
[  168.818925][ T5780] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  168.932737][ T5774] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  169.274495][ T7010] kvm: emulating exchange as write
[  169.790634][ T7007] loop3: detected capacity change from 0 to 40427
[  169.799743][ T7007] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  169.814435][ T7007] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  169.839723][ T7007] F2FS-fs (loop3): invalid crc value
[  169.868058][ T7007] F2FS-fs (loop3): Found nat_bits in checkpoint
[  170.139322][ T7007] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  170.157811][ T7007] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  170.345059][ T7007] syz.3.357: attempt to access beyond end of device
[  170.345059][ T7007] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  170.629272][ T7030] kvm: vcpu 1: requested lapic timer restore with starting count register 0x390=2813606545 (22508852360 ns) > initial count (1281460816 ns). Using initial count to start timer.
[  171.021925][ T7022] loop2: detected capacity change from 0 to 32768
[  171.081329][ T7022] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop2 scanned by syz.2.363 (7022)
[  171.154452][ T7022] BTRFS info (device loop2): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  171.183805][ T7022] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  171.206003][ T7022] BTRFS info (device loop2): enabling disk space caching
[  171.213136][ T7022] BTRFS info (device loop2): force clearing of disk cache
[  171.237735][ T7022] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  171.257487][ T7022] BTRFS info (device loop2): use zstd compression, level 3
[  171.264788][ T7022] BTRFS info (device loop2): disk space caching is enabled
[  171.338775][ T7047] netlink: 'syz.1.370': attribute type 4 has an invalid length.
[  171.466473][ T7022] BTRFS info (device loop2): enabling ssd optimizations
[  171.497358][ T7066] loop0: detected capacity change from 0 to 8
[  171.513199][ T7022] BTRFS info (device loop2): auto enabling async discard
[  171.525465][ T7067] netlink: 'syz.3.365': attribute type 10 has an invalid length.
[  171.559843][ T7067] netlink: 40 bytes leftover after parsing attributes in process `syz.3.365'.
[  171.573269][ T7022] BTRFS info (device loop2): rebuilding free space tree
[  171.689549][ T7022] BTRFS info (device loop2): disabling free space tree
[  171.708644][ T7067] team0: Port device geneve0 added
[  171.725875][ T7022] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  171.765959][ T7022] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  171.959591][ T7071] bridge_slave_0: default FDB implementation only supports local addresses
[  171.978638][ T7071] bridge_slave_0: default FDB implementation only supports local addresses
[  172.065627][ T5855] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  172.295739][ T5855] usb 1-1: Using ep0 maxpacket: 8
[  172.311026][ T5855] usb 1-1: config 1 interface 0 has no altsetting 0
[  172.353134][ T5855] usb 1-1: string descriptor 0 read error: -22
[  172.365754][ T5855] usb 1-1: New USB device found, idVendor=05ac, idProduct=0236, bcdDevice= 0.40
[  172.385977][ T5855] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  172.593705][ T5774] BTRFS info (device loop2): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  172.835881][ T5764] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  172.931610][ T7069] cgroup: fork rejected by pids controller in /syz0
[  173.070025][ T5764] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  173.091776][ T5764] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  173.115933][ T5764] usb 4-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.80
[  173.140508][ T5855] usbhid 1-1:1.0: can't add hid device: -71
[  173.153910][ T5764] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  173.162406][ T5855] usbhid: probe of 1-1:1.0 failed with error -71
[  173.175798][ T5086] Bluetooth: hci2: command tx timeout
[  173.200172][ T5855] usb 1-1: USB disconnect, device number 4
[  173.208549][ T5764] usb 4-1: config 0 descriptor??
[  173.286404][ T7095] loop2: detected capacity change from 0 to 512
[  173.348198][ T7095] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.505426][ T5774] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.636220][ T5764] cp2112 0003:10C4:EA90.0007: unknown main item tag 0x0
[  173.643278][ T5764] cp2112 0003:10C4:EA90.0007: unknown main item tag 0x0
[  173.665087][ T5764] cp2112 0003:10C4:EA90.0007: unknown main item tag 0x0
[  173.674423][ T5764] cp2112 0003:10C4:EA90.0007: unknown main item tag 0x0
[  173.682263][ T5764] cp2112 0003:10C4:EA90.0007: unknown main item tag 0x0
[  173.691054][ T5764] cp2112 0003:10C4:EA90.0007: unknown main item tag 0x0
[  173.700591][ T5764] cp2112 0003:10C4:EA90.0007: unknown main item tag 0x0
[  173.714183][ T5764] cp2112 0003:10C4:EA90.0007: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.3-1/input0
[  173.834155][ T5764] cp2112 0003:10C4:EA90.0007: Part Number: 0x00 Device Version: 0x00
[  173.885942][ T5815] usb 3-1: new full-speed USB device number 11 using dummy_hcd
[  174.103875][ T5815] usb 3-1: config 0 has an invalid interface number: 41 but max is 0
[  174.112285][ T5815] usb 3-1: config 0 has no interface number 0
[  174.122944][ T5815] usb 3-1: config 0 interface 41 has no altsetting 0
[  174.134620][ T5815] usb 3-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[  174.144390][ T5815] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  174.165719][ T5815] usb 3-1: Product: syz
[  174.170094][ T5815] usb 3-1: Manufacturer: syz
[  174.174759][ T5815] usb 3-1: SerialNumber: syz
[  174.191177][ T5815] usb 3-1: config 0 descriptor??
[  174.404317][ T4267] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  174.540046][ T4267] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  174.637867][ T4267] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  174.685779][ T5855] usb 4-1: USB disconnect, device number 6
[  174.817093][ T4267] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  174.867863][ T7115] overlayfs: failed to clone upperpath
[  175.675634][ T5815] CoreChips 3-1:0.41 (unnamed net_device) (uninitialized): Failed to send software reset:ffffffb9
[  175.705651][ T5815] CoreChips 3-1:0.41 (unnamed net_device) (uninitialized): Failed to reset PHY: -71
[  175.726335][ T5815] CoreChips: probe of 3-1:0.41 failed with error -71
[  175.760983][   T51] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  175.773113][   T51] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  175.783550][   T51] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  175.791920][   T51] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  175.807920][ T5815] usb 3-1: USB disconnect, device number 11
[  175.834643][   T51] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  175.843762][   T51] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  176.290227][ T7144] loop3: detected capacity change from 0 to 256
[  176.322608][ T7144] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  176.395453][ T7144] exFAT-fs (loop3): Medium has reported failures. Some data may be lost.
[  176.451242][ T7144] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  176.782193][ T4267] erspan0 (unregistering): left promiscuous mode
[  176.918184][ T4267] gretap0 (unregistering): left promiscuous mode
[  177.618922][ T7184] netlink: 2048 bytes leftover after parsing attributes in process `syz.2.407'.
[  177.633279][ T7191] loop3: detected capacity change from 0 to 128
[  177.642105][ T7184] netlink: 24 bytes leftover after parsing attributes in process `syz.2.407'.
[  177.673606][ T7191] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  177.701845][ T7191] hpfs: filesystem error: improperly stopped
[  177.709946][ T7127] chnl_net:caif_netlink_parms(): no params data found
[  177.724941][ T7191] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  177.760310][ T7191] hpfs: You really don't want any checks? You are crazy...
[  177.795924][ T7191] hpfs: Code page index out of array
[  177.811835][ T7191] hpfs: code page support is disabled
[  177.834740][ T7191] hpfs: hpfs_map_4sectors(): unaligned read
[  177.858756][ T7191] hpfs: hpfs_map_4sectors(): unaligned read
[  177.894390][ T7191] hpfs: filesystem error: unable to find root dir
[  177.975901][   T51] Bluetooth: hci2: command tx timeout
[  178.237068][ T7127] bridge0: port 1(bridge_slave_0) entered blocking state
[  178.253457][ T7127] bridge0: port 1(bridge_slave_0) entered disabled state
[  178.272633][ T7127] bridge_slave_0: entered allmulticast mode
[  178.343168][ T7127] bridge_slave_0: entered promiscuous mode
[  178.360641][ T7127] bridge0: port 2(bridge_slave_1) entered blocking state
[  178.372244][ T7127] bridge0: port 2(bridge_slave_1) entered disabled state
[  178.381908][ T7127] bridge_slave_1: entered allmulticast mode
[  178.399611][ T7127] bridge_slave_1: entered promiscuous mode
[  178.494436][ T4267] hsr_slave_0: left promiscuous mode
[  178.511501][ T4267] hsr_slave_1: left promiscuous mode
[  178.556307][ T4267] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  178.571238][ T4267] batman_adv: batadv0: Removing interface: batadv_slave_0
[  178.583141][ T4267] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  178.594748][ T4267] batman_adv: batadv0: Removing interface: batadv_slave_1
[  178.605100][ T7216] loop2: detected capacity change from 0 to 1024
[  178.619292][ T7216] EXT4-fs: Ignoring removed bh option
[  178.626635][ T4267] bridge_slave_1: left allmulticast mode
[  178.632385][ T4267] bridge_slave_1: left promiscuous mode
[  178.645295][ T4267] bridge0: port 2(bridge_slave_1) entered disabled state
[  178.673374][ T4267] bridge_slave_0: left allmulticast mode
[  178.683579][ T4267] bridge_slave_0: left promiscuous mode
[  178.690239][ T4267] bridge0: port 1(bridge_slave_0) entered disabled state
[  178.702419][ T7216] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  178.763914][ T4267] veth1_macvtap: left promiscuous mode
[  178.770460][ T4267] veth0_macvtap: left promiscuous mode
[  178.776665][ T4267] veth1_vlan: left promiscuous mode
[  178.782530][ T4267] veth0_vlan: left promiscuous mode
[  178.793798][ T7216] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2855: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  178.918611][ T5774] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.821685][ T4267] team0 (unregistering): Port device team_slave_1 removed
[  179.884276][ T4267] team0 (unregistering): Port device team_slave_0 removed
[  179.952827][ T4267] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  180.015322][ T4267] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  180.065281][   T51] Bluetooth: hci2: command tx timeout
[  180.499907][ T4267] bond0 (unregistering): Released all slaves
[  180.708441][ T7127] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  180.762885][ T7127] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  180.905010][ T7127] team0: Port device team_slave_0 added
[  180.976452][ T7127] team0: Port device team_slave_1 added
[  181.075308][ T7127] batman_adv: batadv0: Adding interface: batadv_slave_0
[  181.101997][ T7127] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  181.155701][ T7127] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  181.237227][ T7127] batman_adv: batadv0: Adding interface: batadv_slave_1
[  181.244252][ T7127] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  181.337094][ T5812] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  181.357452][ T7127] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  181.393998][ T7246] loop2: detected capacity change from 0 to 2048
[  181.402020][ T5812] hid-generic 0000:0000:0000.0008: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  181.460610][ T7246] UDF-fs: bad mount option "ÿÿÿÿ" or missing value
[  181.619154][ T7127] hsr_slave_0: entered promiscuous mode
[  181.665224][ T7250] fido_id[7250]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  181.694745][ T7127] hsr_slave_1: entered promiscuous mode
[  181.717062][ T7127] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  181.724790][ T7127] Cannot create hsr debugfs directory
[  181.992273][ T7263] fuse: Bad value for 'fd'
[  182.145664][   T51] Bluetooth: hci2: command tx timeout
[  182.176081][ T7235] loop3: detected capacity change from 0 to 32768
[  183.272368][ T7276] loop3: detected capacity change from 0 to 512
[  183.285254][ T7265] loop2: detected capacity change from 0 to 40427
[  183.313815][ T7276] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  183.351418][ T7265] F2FS-fs (loop2): invalid crc value
[  183.390627][ T7265] F2FS-fs (loop2): Found nat_bits in checkpoint
[  183.411647][ T7276] FAT-fs (loop3): error, invalid access to FAT (entry 0x0ffffff6)
[  183.612606][ T7265] F2FS-fs (loop2): Start checkpoint disabled!
[  183.704036][ T7265] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  183.735969][   T27] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  183.761183][ T7127] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  183.790157][ T7127] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  183.825154][ T7127] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  183.878670][ T7127] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  183.926766][   T27] usb 4-1: Using ep0 maxpacket: 32
[  183.959952][   T27] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  183.990444][   T27] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[  184.020753][   T27] usb 4-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  184.077651][   T27] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  184.105709][   T27] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  184.134372][   T27] usb 4-1: Product: syz
[  184.146541][   T27] usb 4-1: Manufacturer: syz
[  184.151236][   T27] usb 4-1: SerialNumber: syz
[  184.201857][   T27] cdc_ncm 4-1:1.0: skipping garbage
[  184.216129][   T51] Bluetooth: hci2: command tx timeout
[  184.217414][   T27] cdc_ncm 4-1:1.0: skipping garbage
[  184.253339][   T27] cdc_ncm 4-1:1.0: CDC Union missing and no IAD found
[  184.282615][   T27] cdc_ncm 4-1:1.0: bind() failure
[  184.298765][ T7127] 8021q: adding VLAN 0 to HW filter on device bond0
[  184.367255][ T7127] 8021q: adding VLAN 0 to HW filter on device team0
[  184.391010][ T4267] bridge0: port 1(bridge_slave_0) entered blocking state
[  184.399279][ T4267] bridge0: port 1(bridge_slave_0) entered forwarding state
[  184.412234][ T1000] kworker/u4:6: attempt to access beyond end of device
[  184.412234][ T1000] loop2: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  184.440066][   T27] usb 4-1: USB disconnect, device number 7
[  184.454540][ T4267] bridge0: port 2(bridge_slave_1) entered blocking state
[  184.461834][ T4267] bridge0: port 2(bridge_slave_1) entered forwarding state
[  184.479834][ T1000] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  184.493523][ T1000] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  184.507432][ T1000] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  185.163798][ T7301] fuse: Bad value for 'fd'
[  185.232755][ T7299] netlink: 16178 bytes leftover after parsing attributes in process `syz.3.433'.
[  185.249143][ T7127] 8021q: adding VLAN 0 to HW filter on device batadv0
[  185.444279][ T7127] veth0_vlan: entered promiscuous mode
[  185.498387][ T7127] veth1_vlan: entered promiscuous mode
[  185.608699][ T7127] veth0_macvtap: entered promiscuous mode
[  185.652708][ T7127] veth1_macvtap: entered promiscuous mode
[  185.719759][ T7127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  185.763066][ T7127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.779493][ T7127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  185.800548][ T7127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.819086][ T7127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  185.831368][ T7127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.857467][ T7127] batman_adv: batadv0: Interface activated: batadv_slave_0
[  185.899086][ T7127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  185.936831][ T7127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.957138][ T7127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  185.975301][ T7127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.995782][ T7127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.016572][ T7127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.026877][ T7324] loop2: detected capacity change from 0 to 128
[  186.050954][ T7127] batman_adv: batadv0: Interface activated: batadv_slave_1
[  186.063204][ T7324] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  186.108927][ T7127] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  186.134766][ T7127] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  186.147448][ T7127] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  186.205652][ T7127] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  186.259126][ T7324] UDF-fs: error (device loop2): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40)
[  186.447115][ T3461] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  186.490102][ T3461] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  186.546629][ T4267] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  186.575446][ T4267] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  187.500732][ T7337] loop3: detected capacity change from 0 to 32768
[  187.594466][ T7337] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  187.804896][ T7337] XFS (loop3): Ending clean mount
[  187.854172][ T7337] XFS (loop3): Quotacheck needed: Please wait.
[  187.988846][ T7337] XFS (loop3): Quotacheck: Done.
[  188.336024][ T5783] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  188.965926][   T27] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  189.186848][   T27] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  189.222298][   T27] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  189.249218][   T27] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  189.275774][   T27] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  189.299977][   T27] usb 1-1: SerialNumber: syz
[  189.538834][   T27] usb 1-1: 0:2 : does not exist
[  189.642726][   T27] usb 1-1: USB disconnect, device number 5
[  189.772114][ T5779] udevd[5779]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  190.483117][ T7449] loop0: detected capacity change from 0 to 4096
[  191.316039][ T7483] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  191.384656][ T7483] overlayfs: failed to look up (tracing) for ino (-66)
[  191.398140][ T7485] loop0: detected capacity change from 0 to 1024
[  191.474395][ T7485] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  191.619007][ T7496] overlayfs: upper fs does not support file handles, falling back to index=off.
[  191.622834][ T7488] overlayfs: failed to clone upperpath
[  191.650684][ T7127] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.156551][ T5815] usb 3-1: new full-speed USB device number 12 using dummy_hcd
[  192.369519][ T5815] usb 3-1: config 0 has no interfaces?
[  192.375107][ T5815] usb 3-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[  192.384888][ T5815] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  192.397585][ T5815] usb 3-1: config 0 descriptor??
[  192.550902][ T7526] loop0: detected capacity change from 0 to 512
[  192.579740][ T7526] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  192.620992][   T56] usb 3-1: USB disconnect, device number 12
[  192.670784][ T7127] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.025714][ T5815] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  193.193717][ T7531] loop2: detected capacity change from 0 to 128
[  193.210672][ T5815] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  193.226922][ T7531] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  193.239295][ T5815] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  193.248930][ T5815] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  193.262685][ T5815] usb 1-1: config 0 descriptor??
[  193.271972][ T7531] ext4 filesystem being mounted at /116/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  193.339600][ T5774] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  193.419056][ T7534] loop2: detected capacity change from 0 to 512
[  193.440462][ T7534] EXT4-fs error (device loop2): ext4_orphan_get:1404: inode #15: comm syz.2.487: iget: bad i_size value: 38620345925642
[  193.458745][ T7534] EXT4-fs error (device loop2): ext4_orphan_get:1409: comm syz.2.487: couldn't read orphan inode 15 (err -117)
[  193.475175][ T7534] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  193.519561][ T5815] usbhid 1-1:0.0: can't add hid device: -71
[  193.535407][ T5815] usbhid: probe of 1-1:0.0 failed with error -71
[  193.550614][ T5815] usb 1-1: USB disconnect, device number 6
[  193.615980][ T7536] EXT4-fs error (device loop2): ext4_validate_block_bitmap:430: comm syz.2.487: bg 0: block 5: invalid block bitmap
[  193.631577][ T7536] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 8 with error 28
[  193.644410][ T7536] EXT4-fs (loop2): This should not happen!! Data will be lost
[  193.644410][ T7536] 
[  193.654551][ T7536] EXT4-fs (loop2): Total free blocks count 0
[  193.664258][ T7536] EXT4-fs (loop2): Free/Dirty block details
[  193.672864][ T7536] EXT4-fs (loop2): free_blocks=0
[  193.679114][ T7536] EXT4-fs (loop2): dirty_blocks=1024
[  193.684593][ T7536] EXT4-fs (loop2): Block reservation details
[  193.690789][ T7536] EXT4-fs (loop2): i_reserved_data_blocks=1024
[  193.724057][ T1141] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 8 with max blocks 1016 with error 28
[  193.905886][ T7468] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  194.155642][ T5815] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  194.190881][ T7547] loop3: detected capacity change from 0 to 128
[  194.229139][ T7547] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  194.246799][ T7547] ext4 filesystem being mounted at /129/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  194.300471][ T7547] syz.3.492 (pid 7547) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  194.320762][ T7547] fscrypt: key with description 'fscrypt:0000111122223333' has invalid payload
[  194.334205][ T7547] fscrypt: key with description 'fscrypt:0000111122223333' has invalid payload
[  194.349992][ T5815] usb 1-1: Using ep0 maxpacket: 32
[  194.357439][ T5815] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  194.375853][ T5815] usb 1-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[  194.388187][ T5815] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.408544][ T5815] usb 1-1: config 0 descriptor??
[  194.422935][ T5815] ldusb 1-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  194.428396][ T5783] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  194.463270][ T5815] ldusb 1-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  194.541886][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  194.549830][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  195.131778][    T9] usb 1-1: USB disconnect, device number 7
[  195.226383][    T9] ldusb 1-1:0.0: LD USB Device #0 now disconnected
[  195.730749][ T7569] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  196.105979][ T7334] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  196.298693][ T7334] usb 4-1: unable to get BOS descriptor or descriptor too short
[  196.327291][ T7334] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  196.346208][ T7334] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  196.355296][ T7334] usb 4-1: too many endpoints for config 1 interface 1 altsetting 76: 188, using maximum allowed: 30
[  196.380175][ T7334] usb 4-1: config 1 interface 1 altsetting 76 has 0 endpoint descriptors, different from the interface descriptor's value: 188
[  196.393789][ T7334] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  196.405020][ T7334] usb 4-1: config 1 interface 1 has no altsetting 0
[  196.416366][ T7334] usb 4-1: string descriptor 0 read error: -22
[  196.422785][ T7334] usb 4-1: New USB device found, idVendor=21b4, idProduct=0081, bcdDevice= 0.40
[  196.436806][ T7334] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  196.774869][ T7588] tipc: Started in network mode
[  196.780734][ T7588] tipc: Node identity 4, cluster identity 4711
[  196.787307][ T7588] tipc: Node number set to 4
[  196.956908][ T7590] netlink: 28 bytes leftover after parsing attributes in process `syz.0.508'.
[  197.008039][ T7592] loop2: detected capacity change from 0 to 128
[  197.028478][ T7592] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  197.057180][ T7592] ext4 filesystem being mounted at /119/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  197.212078][ T5774] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  197.276301][ T7334] usb 4-1: 2:0: failed to get current value for ch 1 (-32)
[  197.522770][ T7334] usb 4-1: USB disconnect, device number 8
[  197.628929][ T7604] loop2: detected capacity change from 0 to 128
[  197.855117][ T7595] loop0: detected capacity change from 0 to 32768
[  197.874504][ T7607] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  197.928025][ T7595] XFS (loop0): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[  198.016678][ T7595] XFS (loop0): Ending clean mount
[  198.023079][ T7595] XFS (loop0): Corruption warning: Metadata has LSN (1:256) ahead of current LSN (1:80). Please unmount and run xfs_repair (>= v4.3) to resolve.
[  198.060548][ T7595] XFS (loop0): Metadata CRC error detected at xfs_inobt_read_verify+0x42/0xd0, xfs_finobt block 0x10 
[  198.088775][ T7595] XFS (loop0): Unmount and run xfs_repair
[  198.101155][ T7595] XFS (loop0): First 128 bytes of corrupted metadata buffer:
[  198.118953][ T7595] 00000000: 46 49 42 33 00 00 00 01 ff ff ff ff ff ff ff ff  FIB3............
[  198.152704][ T7595] 00000010: 00 00 00 00 00 00 00 10 00 00 00 01 00 00 01 00  ................
[  198.178907][ T7595] 00000020: ed 37 bf 6e 74 ea 4e 01 af ba 5f ee 27 4b 0f 3a  .7.nt.N..._.'K.:
[  198.189596][ T7595] 00000030: 00 00 00 00 66 dd 03 89 00 00 18 00 00 00 40 37  ....f.........@7
[  198.227035][ T7595] 00000040: ff ff ff ff ff ff fe 00 00 00 00 00 00 00 00 00  ................
[  198.245625][ T7595] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  198.265616][ T7595] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  198.306216][ T7595] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  198.334775][ T7595] XFS (loop0): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x10 len 4 error 74
[  198.366095][ T7595] XFS (loop0): Failed to initialize disk quotas.
[  198.431491][ T7625] loop3: detected capacity change from 0 to 4096
[  198.509732][ T7625] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.636274][ T7631] overlayfs: failed to clone upperpath
[  198.869995][ T7127] XFS (loop0): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[  199.329794][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.935209][ T7649] loop3: detected capacity change from 0 to 32768
[  199.968541][ T7649] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop3 scanned by syz.3.527 (7649)
[  200.003534][ T7649] BTRFS info (device loop3): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  200.021125][ T7649] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[  200.031086][ T7649] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  200.090258][ T7649] BTRFS info (device loop3): use zstd compression, level 3
[  200.121601][ T7649] BTRFS info (device loop3): using free space tree
[  200.246242][ T7334] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  200.256172][ T7649] BTRFS info (device loop3): enabling ssd optimizations
[  200.263189][ T7649] BTRFS info (device loop3): auto enabling async discard
[  200.457974][ T7334] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  200.477603][ T7334] usb 1-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  200.515183][ T7334] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66
[  200.529777][ T7334] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  200.552758][ T7334] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  200.579254][ T7334] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  200.595749][ T7334] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  200.614206][ T7334] usb 1-1: Product: syz
[  200.625289][ T7334] usb 1-1: Manufacturer: syz
[  200.674942][ T7334] cdc_wdm 1-1:1.0: skipping garbage
[  200.695231][ T7334] cdc_wdm 1-1:1.0: skipping garbage
[  200.714129][ T7334] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device
[  200.724061][ T7334] cdc_wdm 1-1:1.0: Unknown control protocol
[  200.955943][    C1] cdc_wdm 1-1:1.0: nonzero urb status received: -71
[  200.962635][    C1] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes
[  200.975688][    C1] cdc_wdm 1-1:1.0: nonzero urb status received: -71
[  200.982368][    C1] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes
[  200.995671][    C1] cdc_wdm 1-1:1.0: nonzero urb status received: -71
[  201.002366][    C1] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes
[  201.009032][ T5815] usb 1-1: USB disconnect, device number 8
[  201.015653][    C1] cdc_wdm 1-1:1.0: nonzero urb status received: -71
[  201.022329][    C1] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes
[  201.028478][    C1] cdc_wdm 1-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  201.214475][ T7662] loop2: detected capacity change from 0 to 32768
[  201.298508][ T7662] JBD2: Ignoring recovery information on journal
[  201.401349][ T7662] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  201.485242][ T5783] BTRFS info (device loop3): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  201.767540][ T5774] ocfs2: Unmounting device (7,2) on (node local)
[  202.194438][   T27] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  202.402489][   T27] usb 1-1: New USB device found, idVendor=04fc, idProduct=504a, bcdDevice=43.02
[  202.420713][   T27] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  202.445678][   T27] usb 1-1: Product: syz
[  202.450078][   T27] usb 1-1: Manufacturer: syz
[  202.454769][   T27] usb 1-1: SerialNumber: syz
[  202.470504][   T27] usb 1-1: config 0 descriptor??
[  202.491239][   T27] gspca_main: sunplus-2.14.0 probing 04fc:504a
[  202.789558][ T7715] loop2: detected capacity change from 0 to 256
[  203.734151][ T7717] loop3: detected capacity change from 0 to 32768
[  203.837902][ T7717] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  203.943592][   T27] gspca_sunplus: reg_w_riv err -71
[  203.956021][   T27] sunplus: probe of 1-1:0.0 failed with error -71
[  203.974211][   T27] usb 1-1: USB disconnect, device number 9
[  203.991241][ T7717] XFS (loop3): Ending clean mount
[  204.129446][ T5783] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  204.675671][    T8] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  204.833060][ T7755] loop0: detected capacity change from 0 to 32768
[  204.878568][    T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  204.896511][ T7755] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  204.914566][    T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  204.962421][    T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  205.007818][    T8] usb 4-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[  205.027197][    T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  205.036196][    T8] usb 4-1: Product: syz
[  205.040428][    T8] usb 4-1: Manufacturer: syz
[  205.045981][    T8] usb 4-1: SerialNumber: syz
[  205.064348][    T8] usb 4-1: config 0 descriptor??
[  205.087890][ T7755] XFS (loop0): Ending clean mount
[  205.103010][ T7755] XFS (loop0): Quotacheck needed: Please wait.
[  205.180022][ T7755] XFS (loop0): Quotacheck: Done.
[  205.296498][   T28] audit: type=1804 audit(1782234901.964:12): pid=7755 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.556" name="/newroot/22/file0/bus" dev="loop0" ino=9291 res=1 errno=0
[  205.320824][    T8] adutux 4-1:0.0: ADU208 4242424 now attached to /dev/usb/adutux0
[  205.451922][ T7127] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  205.532391][    T8] usb 4-1: USB disconnect, device number 9
[  206.231373][ T7774] loop3: detected capacity change from 0 to 512
[  206.258851][ T7774] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  206.276096][ T7774] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  206.305791][ T7774] EXT4-fs error (device loop3): ext4_orphan_get:1430: comm syz.3.562: bad orphan inode 131083
[  206.328950][ T7774] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  206.430523][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.772179][ T7736] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  207.136755][ T7787] netlink: 76 bytes leftover after parsing attributes in process `syz.0.559'.
[  207.226554][ T7789] loop3: detected capacity change from 0 to 256
[  207.286129][ T7789] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x8f9fe1ed, utbl_chksum : 0xe619d30d)
[  207.420788][ T7789] xt_hashlimit: size too large, truncated to 1048576
[  207.536923][ T7793] syzkaller1: entered promiscuous mode
[  207.542490][ T7793] syzkaller1: entered allmulticast mode
[  207.804739][ T7785] loop2: detected capacity change from 0 to 32768
[  207.881695][ T7785] XFS (loop2): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  207.989438][ T7785] XFS (loop2): Ending clean mount
[  208.024511][ T7785] XFS (loop2): Quotacheck needed: Please wait.
[  208.151482][ T7785] XFS (loop2): Quotacheck: Done.
[  208.347081][ T5774] XFS (loop2): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  208.496071][   T27] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  208.726243][   T27] usb 1-1: Using ep0 maxpacket: 16
[  208.743398][   T27] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  208.785136][   T27] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 96
[  208.818188][   T27] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 53
[  208.845009][   T27] usb 1-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[  208.870334][   T27] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  208.914878][   T27] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  208.934495][   T27] usb 1-1: SerialNumber: syz
[  208.943373][ T7809] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  208.952201][ T7809] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  208.962568][   T27] hub 1-1:1.0: bad descriptor, ignoring hub
[  208.968634][   T27] hub: probe of 1-1:1.0 failed with error -5
[  209.167360][ T7809] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  209.175114][ T7809] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  209.631468][   T27] cdc_ether 1-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.0-1, CDC Ethernet Device, 42:42:42:42:42:42
[  210.828140][ T7838] 9pnet_fd: Insufficient options for proto=fd
[  211.144964][ T7840] loop3: detected capacity change from 0 to 40427
[  211.167140][ T7840] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  211.176947][ T7840] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  211.208910][ T7840] F2FS-fs (loop3): Found nat_bits in checkpoint
[  211.346037][    T8] usb 1-1: USB disconnect, device number 10
[  211.363359][    T8] cdc_ether 1-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.0-1, CDC Ethernet Device
[  211.384620][ T7840] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  211.411378][ T7840] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  211.848300][ T7814] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  211.978392][ T5785] Bluetooth: hci0: command 0x0406 tx timeout
[  211.984498][ T5785] Bluetooth: hci1: command 0x0406 tx timeout
[  212.003430][ T5785] Bluetooth: hci3: command 0x0406 tx timeout
[  212.030613][ T7847] loop0: detected capacity change from 0 to 32768
[  212.098330][ T7847] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  212.489854][ T7847] XFS (loop0): Ending clean mount
[  212.518423][ T7847] XFS (loop0): Quotacheck needed: Please wait.
[  212.782325][ T7847] XFS (loop0): Quotacheck: Done.
[  213.565248][ T7127] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  214.147962][ T7876] loop2: detected capacity change from 0 to 32768
[  214.199573][ T7876] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  214.381735][ T7876] XFS (loop2): Ending clean mount
[  214.403047][ T7876] XFS (loop2): Quotacheck needed: Please wait.
[  214.491391][ T7876] XFS (loop2): Quotacheck: Done.
[  214.710803][ T5086] Bluetooth: hci1: unexpected event for opcode 0x1002
[  214.731019][ T5774] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  215.250535][ T7932] loop0: detected capacity change from 0 to 128
[  215.273935][ T7932] EXT4-fs: Ignoring removed nobh option
[  215.332351][ T7932] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  215.823924][ T7932] ext4 filesystem being mounted at /28/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  216.624409][ T7127] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  216.889266][ T1000] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.134051][ T1000] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.421726][ T1000] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.644741][ T1000] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.744130][ T7953] overlayfs: failed to clone upperpath
[  218.028742][ T1000] tipc: Left network mode
[  218.073885][ T7950] loop2: detected capacity change from 0 to 32768
[  218.214640][ T7950] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  218.477813][ T5776] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  218.509914][ T5776] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  218.522915][ T5776] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  218.540681][ T7950] XFS (loop2): Ending clean mount
[  218.545677][ T5776] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  218.568292][ T5776] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  218.579539][ T5776] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  218.598749][ T7950] XFS (loop2): Quotacheck needed: Please wait.
[  218.795047][ T7950] XFS (loop2): Quotacheck: Done.
[  219.099477][ T5774] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  219.930523][ T7999] loop3: detected capacity change from 0 to 256
[  219.997099][ T7999] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  220.031302][ T7999] exFAT-fs (loop3): Medium has reported failures. Some data may be lost.
[  220.084843][ T7999] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  220.289299][ T7966] chnl_net:caif_netlink_parms(): no params data found
[  220.695958][ T5086] Bluetooth: hci2: command tx timeout
[  221.118096][ T7966] bridge0: port 1(bridge_slave_0) entered blocking state
[  221.144673][ T7966] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.153653][ T7966] bridge_slave_0: entered allmulticast mode
[  221.167131][ T7966] bridge_slave_0: entered promiscuous mode
[  221.179584][ T7966] bridge0: port 2(bridge_slave_1) entered blocking state
[  221.187239][ T7966] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.194610][ T7966] bridge_slave_1: entered allmulticast mode
[  221.202918][ T7966] bridge_slave_1: entered promiscuous mode
[  221.232064][ T1000] hsr_slave_0: left promiscuous mode
[  221.251086][ T1000] hsr_slave_1: left promiscuous mode
[  221.275300][ T1000] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  221.294139][ T1000] batman_adv: batadv0: Removing interface: batadv_slave_0
[  221.345445][ T1000] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  221.373498][ T1000] batman_adv: batadv0: Removing interface: batadv_slave_1
[  221.412407][ T1000] bridge_slave_1: left allmulticast mode
[  221.446352][ T1000] bridge_slave_1: left promiscuous mode
[  221.484968][ T1000] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.646911][ T1000] bridge_slave_0: left allmulticast mode
[  221.675771][ T1000] bridge_slave_0: left promiscuous mode
[  221.681706][ T1000] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.982061][ T1000] veth1_macvtap: left promiscuous mode
[  222.026044][ T1000] veth0_macvtap: left promiscuous mode
[  222.062386][ T1000] veth1_vlan: left promiscuous mode
[  222.098050][ T1000] veth0_vlan: left promiscuous mode
[  222.460705][ T8024] loop3: detected capacity change from 0 to 131072
[  222.475570][ T8024] F2FS-fs (loop3): invalid crc value
[  222.510783][ T8024] F2FS-fs (loop3): Found nat_bits in checkpoint
[  222.569389][ T8024] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  222.704650][   T28] audit: type=1800 audit(1782234919.374:13): pid=8024 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.621" name="file1" dev="loop3" ino=7 res=0 errno=0
[  222.775594][ T5086] Bluetooth: hci2: command tx timeout
[  224.044194][ T1000] team0 (unregistering): Port device team_slave_1 removed
[  224.138975][ T1000] team0 (unregistering): Port device team_slave_0 removed
[  224.252405][ T1000] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  224.334533][ T1000] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  224.867865][ T5086] Bluetooth: hci2: command tx timeout
[  224.894647][ T1000] bond0 (unregistering): Released all slaves
[  225.108799][ T7966] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  225.160866][ T7966] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  225.317114][ T7966] team0: Port device team_slave_0 added
[  225.344055][ T7966] team0: Port device team_slave_1 added
[  225.387231][ T8061] netlink: 64 bytes leftover after parsing attributes in process `syz.1.627'.
[  225.463467][ T7966] batman_adv: batadv0: Adding interface: batadv_slave_0
[  225.489730][ T7966] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  225.526514][ T7966] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  225.547365][ T7966] batman_adv: batadv0: Adding interface: batadv_slave_1
[  225.555189][ T7966] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  225.671195][ T7966] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  225.908781][ T7966] hsr_slave_0: entered promiscuous mode
[  225.921566][ T7966] hsr_slave_1: entered promiscuous mode
[  225.935234][ T7966] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  225.952912][ T7966] Cannot create hsr debugfs directory
[  226.232732][ T8087] loop3: detected capacity change from 0 to 512
[  226.319090][ T8087] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  226.436856][ T8087] ext4 filesystem being mounted at /167/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  226.598484][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.904030][ T7966] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  226.942086][ T5086] Bluetooth: hci2: command tx timeout
[  226.972635][ T7966] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  227.039398][ T7966] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  227.099727][ T7966] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  227.358556][ T7966] 8021q: adding VLAN 0 to HW filter on device bond0
[  227.423688][ T7966] 8021q: adding VLAN 0 to HW filter on device team0
[  227.488115][    T8] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  227.512109][ T4267] bridge0: port 1(bridge_slave_0) entered blocking state
[  227.519378][ T4267] bridge0: port 1(bridge_slave_0) entered forwarding state
[  227.556353][ T4267] bridge0: port 2(bridge_slave_1) entered blocking state
[  227.563608][ T4267] bridge0: port 2(bridge_slave_1) entered forwarding state
[  227.677584][    T8] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  227.686520][    T8] usb 4-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  227.726891][    T8] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[  227.746411][    T8] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  227.780528][    T8] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  227.834099][    T8] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  227.895664][    T8] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  227.908084][    T8] usb 4-1: Product: syz
[  227.912361][    T8] usb 4-1: Manufacturer: syz
[  227.940409][    T8] cdc_wdm 4-1:1.0: skipping garbage
[  227.946871][    T8] cdc_wdm 4-1:1.0: skipping garbage
[  227.969280][    T8] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[  228.028167][    T8] cdc_wdm 4-1:1.0: Unknown control protocol
[  228.197334][ T8124] netlink: 28 bytes leftover after parsing attributes in process `syz.1.641'.
[  228.213176][    C0] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  228.219884][    C0] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  228.226380][    C0] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  228.233040][    C0] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  228.240529][    C0] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  228.247214][    C0] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  228.253712][    C0] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  228.260408][    C0] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  228.266830][    C0] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  228.273509][    C0] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  228.280389][    C0] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  228.287077][    C0] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  228.293525][    C0] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  228.300200][    C0] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  228.307061][    C0] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  228.313737][    C0] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  228.320141][    C0] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  228.326839][    C0] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  228.333218][    C0] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  228.339933][    C0] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  228.347624][    C0] cdc_wdm 4-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  228.356464][    T8] usb 4-1: USB disconnect, device number 10
[  228.377491][ T8124] netlink: 28 bytes leftover after parsing attributes in process `syz.1.641'.
[  228.442127][ T8124] erspan0: entered promiscuous mode
[  228.458414][ T8124] gretap0: entered promiscuous mode
[  228.487750][ T8126] netlink: 28 bytes leftover after parsing attributes in process `syz.1.641'.
[  228.520832][ T8126] netlink: 28 bytes leftover after parsing attributes in process `syz.1.641'.
[  228.621013][ T7966] 8021q: adding VLAN 0 to HW filter on device batadv0
[  229.502078][ T7966] veth0_vlan: entered promiscuous mode
[  229.564575][ T7966] veth1_vlan: entered promiscuous mode
[  229.702503][ T7966] veth0_macvtap: entered promiscuous mode
[  229.730553][ T7966] veth1_macvtap: entered promiscuous mode
[  229.770495][ T7966] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  229.804057][ T7966] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  229.838032][ T7966] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  229.869063][ T7966] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  229.890392][ T7966] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  229.925806][ T7966] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  229.959945][ T7966] batman_adv: batadv0: Interface activated: batadv_slave_0
[  230.035669][ T7966] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  230.063935][ T7966] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  230.091949][ T7966] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  230.125345][ T7966] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  230.147705][ T7966] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  230.178798][ T7966] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  230.190987][ T7966] batman_adv: batadv0: Interface activated: batadv_slave_1
[  230.214702][ T7966] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  230.236831][ T7966] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  230.250959][ T7966] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  230.260172][ T7966] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  230.567319][ T1141] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  230.599548][ T1141] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  230.702326][ T1000] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  230.740833][ T1000] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  231.068232][ T8192] loop4: detected capacity change from 0 to 64
[  231.773162][ T8214] serio: Serial port ttyS3
[  231.927741][ T8219] overlayfs: failed to clone upperpath
[  232.531868][   T27] usb 4-1: new low-speed USB device number 11 using dummy_hcd
[  232.693318][ T8237] batadv0: entered promiscuous mode
[  232.715753][ T8237] dummy0: entered promiscuous mode
[  232.727742][   T27] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  232.741592][   T27] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[  232.754113][ T8237] hsr2: entered promiscuous mode
[  232.765730][   T27] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 8
[  232.777428][ T8237] hsr2: entered allmulticast mode
[  232.782532][ T8237] batadv0: entered allmulticast mode
[  232.805640][   T27] usb 4-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  232.815793][ T8237] dummy0: entered allmulticast mode
[  232.835342][   T27] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  232.860843][ T8228] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  232.885414][   T27] hub 4-1:1.0: bad descriptor, ignoring hub
[  232.926117][   T27] hub: probe of 4-1:1.0 failed with error -5
[  232.932760][   T27] cdc_wdm 4-1:1.0: skipping garbage
[  232.960211][   T27] cdc_wdm 4-1:1.0: skipping garbage
[  232.994227][   T27] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[  233.009810][   T27] cdc_wdm 4-1:1.0: Unknown control protocol
[  233.241370][    C0] wdm_int_callback: 6 callbacks suppressed
[  233.241396][    C0] cdc_wdm 4-1:1.0: nonzero urb status received: -71
[  233.253927][    C0] wdm_int_callback: 6 callbacks suppressed
[  233.253944][    C0] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes
[  233.437214][ T8259] vlan2: entered allmulticast mode
[  233.445298][ T8259] bond0: entered allmulticast mode
[  233.458511][ T8259] bond_slave_0: entered allmulticast mode
[  233.465795][ T8259] bond_slave_1: entered allmulticast mode
[  233.538899][ T7334] usb 4-1: USB disconnect, device number 11
[  234.674948][ T8300] trusted_key: syz.4.676 sent an empty control message without MSG_MORE.
[  234.986172][ T8305] KVM: debugfs: duplicate directory 8305-5
[  235.086831][ T8316] netlink: 4 bytes leftover after parsing attributes in process `syz.1.683'.
[  235.119826][ T8316] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  235.129755][ T8316] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  235.139135][ T8316] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  235.148118][ T8316] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  235.162967][ T8316] netlink: 4 bytes leftover after parsing attributes in process `syz.1.683'.
[  235.229076][ T8320] fuse: Bad value for 'fd'
[  236.121078][ T8353] fuse: Bad value for 'fd'
[  236.232056][ T8350] loop3: detected capacity change from 0 to 8192
[  236.266320][ T8350] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  236.285947][ T8350] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal
[  236.295374][ T8350] REISERFS (device loop3): using ordered data mode
[  236.302455][ T8350] reiserfs: using flush barriers
[  236.310755][ T8350] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  236.328002][ T8350] REISERFS (device loop3): checking transaction log (loop3)
[  236.389171][ T8363] fuse: Bad value for 'fd'
[  236.520170][ T8350] REISERFS (device loop3): Using tea hash to sort names
[  236.530069][ T8350] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[  236.689619][ T8367] loop4: detected capacity change from 0 to 256
[  238.301922][ T8409] fuse: Bad value for 'fd'
[  238.325753][    T9] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  238.545729][    T9] usb 5-1: Using ep0 maxpacket: 16
[  238.556974][    T9] usb 5-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  238.568236][    T9] usb 5-1: config 0 interface 0 has no altsetting 0
[  238.574967][    T9] usb 5-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[  238.595835][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  238.612464][    T9] usb 5-1: config 0 descriptor??
[  238.696773][ T8418] overlayfs: failed to clone upperpath
[  239.071375][    T9] nzxt-smart2 0003:1E71:2009.0009: hidraw0: USB HID v0.05 Device [HID 1e71:2009] on usb-dummy_hcd.4-1/input0
[  239.120379][ T8428] loop3: detected capacity change from 0 to 8192
[  239.166633][ T8428] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  239.188217][ T8428] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal
[  239.265916][ T8428] REISERFS (device loop3): using ordered data mode
[  239.300974][ T8428] reiserfs: using flush barriers
[  239.357892][ T8428] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  239.389286][ T8428] REISERFS (device loop3): checking transaction log (loop3)
[  239.413181][ T8428] REISERFS (device loop3): Using r5 hash to sort names
[  239.440065][ T8400] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  239.500297][ T8435] overlayfs: failed to clone upperpath
[  239.509460][ T8400] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  239.853228][   T56] usb 5-1: USB disconnect, device number 2
[  240.612596][ T8462] netlink: 'syz.3.730': attribute type 4 has an invalid length.
[  241.128454][ T8479] Invalid argument reading file caps for ./file0
[  241.147472][ T8481] netlink: 44 bytes leftover after parsing attributes in process `syz.2.742'.
[  241.245684][   T27] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  241.446494][   T27] usb 5-1: Using ep0 maxpacket: 32
[  241.460554][   T27] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  241.491363][   T27] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  241.515047][   T27] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  241.534692][   T27] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  241.554083][   T27] usb 5-1: config 0 descriptor??
[  241.580068][   T27] hub 5-1:0.0: USB hub found
[  241.787574][   T27] hub 5-1:0.0: 1 port detected
[  241.940414][ T8507] netlink: 28 bytes leftover after parsing attributes in process `syz.2.743'.
[  241.961847][ T8507] netlink: 28 bytes leftover after parsing attributes in process `syz.2.743'.
[  242.025788][ T8507] erspan0: entered promiscuous mode
[  242.048130][ T8507] gretap0: entered promiscuous mode
[  242.063805][ T8507] debugfs: Directory 'hsr1' with parent 'hsr' already present!
[  242.073840][ T8507] Cannot create hsr debugfs directory
[  242.081500][ T8511] netlink: 28 bytes leftover after parsing attributes in process `syz.2.743'.
[  242.091749][ T8511] netlink: 28 bytes leftover after parsing attributes in process `syz.2.743'.
[  242.449904][  T969] hub 5-1:0.0: activate --> -90
[  243.062102][  T969] hub 5-1:0.0: hub_ext_port_status failed (err = -71)
[  243.089585][  T969] usb 5-1-port1: cannot reset (err = -71)
[  243.097926][ T5812] usb 5-1: USB disconnect, device number 3
[  243.115615][  T969] usb 5-1-port1: Cannot enable. Maybe the USB cable is bad?
[  243.132089][  T969] usb 5-1-port1: attempt power cycle
[  244.071097][ T5812] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  244.124164][ T8562] netlink: 'syz.2.760': attribute type 4 has an invalid length.
[  244.265670][ T5812] usb 5-1: Using ep0 maxpacket: 8
[  244.273744][ T5812] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  244.284814][ T5812] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  244.299133][ T5812] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  244.312768][ T5812] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  244.335786][ T5812] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  244.344946][ T5812] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  244.572642][ T5812] usb 5-1: GET_CAPABILITIES returned 0
[  244.578356][ T5812] usbtmc 5-1:16.0: can't read capabilities
[  244.728651][ T8572] bridge_slave_0: default FDB implementation only supports local addresses
[  244.742105][ T8572] bridge_slave_0: default FDB implementation only supports local addresses
[  244.791113][    C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  244.800677][    C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  244.809872][    C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  244.819284][    C0] vkms_vblank_simulate: vblank timer overrun
[  244.876377][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  244.885577][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  244.895371][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  244.904627][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  244.913908][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  244.923110][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  244.933732][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  244.943201][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  244.952348][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  244.961486][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  244.974475][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  244.983680][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  244.993276][    C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  245.006828][ T5812] usb 5-1: USB disconnect, device number 8
[  245.620857][ T8592] loop4: detected capacity change from 0 to 512
[  245.662546][ T8592] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  245.793807][ T7966] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  245.978355][ T8602] overlayfs: failed to clone upperpath
[  246.203290][ T8607] loop3: detected capacity change from 0 to 512
[  246.227252][ T8607] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  246.279204][ T8607] EXT4-fs (loop3): 1 truncate cleaned up
[  246.287921][ T8607] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  246.452703][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.663031][ T8723] loop3: detected capacity change from 0 to 512
[  249.733518][ T8723] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  249.817038][   T28] audit: type=1800 audit(1782234946.494:14): pid=8723 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.803" name="file1" dev="loop3" ino=15 res=0 errno=0
[  249.993505][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.834912][ T8727] loop4: detected capacity change from 0 to 32768
[  250.912242][ T8727] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  251.077519][ T8727] XFS (loop4): Ending clean mount
[  251.352112][ T8731] loop3: detected capacity change from 0 to 40427
[  251.380651][ T7966] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  251.413684][ T8731] F2FS-fs (loop3): invalid crc value
[  251.430694][ T8731] F2FS-fs (loop3): Found nat_bits in checkpoint
[  251.641520][ T8731] F2FS-fs (loop3): Start checkpoint disabled!
[  251.754626][ T8731] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  252.366551][   T27] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  252.444469][   T11] kworker/u4:0: attempt to access beyond end of device
[  252.444469][   T11] loop3: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  252.464616][   T11] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  252.483376][   T11] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  252.491916][   T11] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  252.567755][   T27] usb 5-1: Using ep0 maxpacket: 32
[  252.597422][   T27] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[  252.620750][   T27] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  252.639812][   T27] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[  252.666389][   T27] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  252.685590][   T27] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  252.707676][   T27] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  252.751636][   T27] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  252.772260][   T27] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  252.824925][   T27] usb 5-1: config 0 descriptor??
[  253.081034][   T27] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 9 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  253.253613][ T5812] usb 5-1: USB disconnect, device number 9
[  253.294811][ T5812] usblp0: removed
[  255.141738][ T8838] loop3: detected capacity change from 0 to 8192
[  255.175754][ T8838] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  255.195858][ T8838] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal
[  255.230122][ T8838] REISERFS (device loop3): using ordered data mode
[  255.238522][ T8838] reiserfs: using flush barriers
[  255.256482][ T8838] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  255.287125][ T8838] REISERFS (device loop3): checking transaction log (loop3)
[  255.351031][ T8838] REISERFS (device loop3): Using r5 hash to sort names
[  255.382659][ T8838] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[  255.506189][ T8838] REISERFS warning (device loop3): vs-13060 reiserfs_update_sd_size: stat data of object [2 2 0x0 SD] (nlink == 1) not found (pos 0)
[  255.563609][ T8838] REISERFS warning (device loop3): vs-13060 reiserfs_update_sd_size: stat data of object [2 2 0x0 SD] (nlink == 1) not found (pos 0)
[  255.611936][ T8859] REISERFS error (device loop3): vs-7000 search_by_entry_key: search_by_key returned item position == 0
[  255.656005][ T8859] REISERFS (device loop3): Remounting filesystem read-only
[  255.690688][ T8859] REISERFS error (device loop3): zam-7001 reiserfs_find_entry: io error
[  255.879249][ T8867] loop4: detected capacity change from 0 to 128
[  255.982119][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  255.995628][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  256.079311][ T8867] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  256.157906][ T8867] ext4 filesystem being mounted at /37/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  256.391645][ T7966] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  256.643219][ T8889] loop4: detected capacity change from 0 to 512
[  256.692253][ T8889] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  256.992219][ T7966] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.177568][ T8898] overlayfs: failed to clone upperpath
[  258.355290][ T8916] overlayfs: failed to clone upperpath
[  258.586464][ T8919] raw_sendmsg: syz.2.846 forgot to set AF_INET. Fix it!
[  262.395721][  T969] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  262.597698][  T969] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  262.615990][  T969] usb 4-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  262.625218][  T969] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  262.636552][  T969] usb 4-1: config 0 descriptor??
[  262.862105][  T969] usbhid 4-1:0.0: can't add hid device: -71
[  262.872981][  T969] usbhid: probe of 4-1:0.0 failed with error -71
[  262.886672][  T969] usb 4-1: USB disconnect, device number 12
[  263.149915][ T8961] loop4: detected capacity change from 0 to 128
[  263.196584][ T8961] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  263.311508][ T8961] ext4 filesystem being mounted at /42/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  263.426560][ T8969] overlayfs: failed to clone upperpath
[  263.460420][ T7966] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  263.466935][  T969] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  263.656581][  T969] usb 4-1: Using ep0 maxpacket: 32
[  263.674635][  T969] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  263.704101][  T969] usb 4-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[  263.731169][  T969] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  263.757391][  T969] usb 4-1: config 0 descriptor??
[  263.777203][  T969] ldusb 4-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  263.819627][  T969] ldusb 4-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  264.277236][  T969] usb 4-1: USB disconnect, device number 13
[  264.298806][  T969] ldusb 4-1:0.0: LD USB Device #0 now disconnected
[  264.389480][ T8989] overlayfs: failed to clone upperpath
[  264.985952][   T28] audit: type=1800 audit(1782234961.654:15): pid=9006 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.879" name="file0" dev="overlay" ino=291 res=0 errno=0
[  265.040720][ T9011] loop3: detected capacity change from 0 to 16
[  265.117671][ T9011] erofs: (device loop3): mounted with root inode @ nid 36.
[  266.207384][ T9036] syzkaller1: entered promiscuous mode
[  266.213001][ T9036] syzkaller1: entered allmulticast mode
[  266.593194][ T9022] loop4: detected capacity change from 0 to 32768
[  266.851263][ T9022] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  267.417074][ T7966] ocfs2: Unmounting device (7,4) on (node local)
[  267.532371][ T9055] netlink: 76 bytes leftover after parsing attributes in process `syz.3.899'.
[  267.923643][ T9061] netlink: 104 bytes leftover after parsing attributes in process `syz.4.897'.
[  268.776239][    T9] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  268.975624][    T9] usb 4-1: Using ep0 maxpacket: 16
[  269.004158][    T9] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  269.025615][    T9] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 96
[  269.035998][    T9] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 53
[  269.055556][    T9] usb 4-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[  269.080666][    T9] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  269.090492][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  269.099088][    T9] usb 4-1: SerialNumber: syz
[  269.116103][ T9077] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  269.123542][ T9077] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  269.138194][    T9] hub 4-1:1.0: bad descriptor, ignoring hub
[  269.153496][    T9] hub: probe of 4-1:1.0 failed with error -5
[  269.396847][ T5086] Bluetooth: hci0: unexpected event for opcode 0x1002
[  269.426622][ T9077] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  269.439645][ T9077] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  269.923237][    T9] cdc_ether 4-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.3-1, CDC Ethernet Device, 42:42:42:42:42:42
[  271.299663][    C0] cdc_ether 4-1:1.0 usb0: CDC: unexpected notification 02!
[  271.309081][    C0] cdc_ether 4-1:1.0 usb0: CDC: unexpected notification 01!
[  271.572489][  T969] usb 4-1: USB disconnect, device number 14
[  271.612576][  T969] cdc_ether 4-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.3-1, CDC Ethernet Device
[  272.578636][ T9155] loop4: detected capacity change from 0 to 128
[  272.625001][ T9155] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  272.657965][ T9155] hpfs: filesystem error: improperly stopped
[  272.672004][ T9155] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  272.705307][ T9155] hpfs: You really don't want any checks? You are crazy...
[  272.735114][ T9155] hpfs: hpfs_map_sector(): read error
[  272.760014][ T9155] hpfs: code page support is disabled
[  272.785830][ T9155] hpfs: hpfs_map_4sectors(): unaligned read
[  272.809813][ T9155] hpfs: hpfs_map_4sectors(): unaligned read
[  272.839054][ T9155] hpfs: filesystem error: unable to find root dir
[  272.883000][ T9155] hpfs: hpfs_map_4sectors(): unaligned read
[  272.914524][ T9155] hpfs: hpfs_map_sector(): read error
[  272.941731][ T9155] hpfs: hpfs_map_4sectors(): unaligned read
[  272.975385][ T9155] hpfs: hpfs_map_sector(): read error
[  273.475776][ T5815] usb 5-1: new full-speed USB device number 10 using dummy_hcd
[  273.671417][ T5815] usb 5-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  273.681148][ T5815] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  273.693657][ T5815] usb 5-1: Product: syz
[  273.698183][ T5815] usb 5-1: Manufacturer: syz
[  273.702853][ T5815] usb 5-1: SerialNumber: syz
[  273.735091][ T5815] usb 5-1: config 0 descriptor??
[  274.003418][ T5815] usb 5-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  274.764315][ T9194] loop3: detected capacity change from 0 to 40427
[  274.786378][ T9194] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  274.799484][ T9194] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  274.809472][ T9194] F2FS-fs (loop3): invalid crc value
[  274.834417][ T9194] F2FS-fs (loop3): Found nat_bits in checkpoint
[  275.026506][ T9194] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  275.033860][ T9194] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  275.158457][   T28] audit: type=1800 audit(1782234971.834:16): pid=9194 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.934" name="file1" dev="loop3" ino=10 res=0 errno=0
[  275.180498][ T9194] syz.3.934: attempt to access beyond end of device
[  275.180498][ T9194] loop3: rw=34817, sector=77824, nr_sectors = 8 limit=40427
[  275.225326][ T5815] dvb_usb_rtl28xxu: probe of 5-1:0.0 failed with error -71
[  275.251139][ T5815] usb 5-1: USB disconnect, device number 10
[  275.531645][ T9222] netlink: 8 bytes leftover after parsing attributes in process `syz.2.954'.
[  275.722533][ T9224] overlayfs: failed to clone upperpath
[  275.978794][ T9228] loop4: detected capacity change from 0 to 64
[  276.146830][   T28] audit: type=1800 audit(1782234972.824:17): pid=9228 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.949" name="file1" dev="loop4" ino=22 res=0 errno=0
[  277.082442][ T9234] loop3: detected capacity change from 0 to 32768
[  277.111586][ T9239] loop4: detected capacity change from 0 to 32768
[  277.154384][ T9239] JBD2: Ignoring recovery information on journal
[  277.186107][ T9234] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  277.344821][ T9239] ocfs2: Mounting device (7,4) on (node local, slot 0) with writeback data mode.
[  277.420344][ T9234] XFS (loop3): Ending clean mount
[  277.440660][ T9234] XFS (loop3): Quotacheck needed: Please wait.
[  277.544074][ T9234] XFS (loop3): Quotacheck: Done.
[  277.751134][ T5783] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  277.892499][ T7966] ocfs2: Unmounting device (7,4) on (node local)
[  279.033283][ T9285] loop4: detected capacity change from 0 to 40427
[  279.056903][ T9285] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  279.065104][ T9285] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  279.095042][ T9285] F2FS-fs (loop4): invalid crc value
[  279.127908][ T9285] F2FS-fs (loop4): Found nat_bits in checkpoint
[  279.224064][ T9285] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  279.231350][ T9285] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  279.764208][ T4267] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  279.800917][ T4267] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  282.592270][ T9367] netlink: 8 bytes leftover after parsing attributes in process `syz.1.994'.
[  283.170131][ T9374] loop3: detected capacity change from 0 to 32768
[  283.204443][   T28] audit: type=1800 audit(1782234979.874:18): pid=9374 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.998" name="file1" dev="loop3" ino=4 res=0 errno=0
[  283.233199][ T9374] loop5: detected capacity change from 0 to 7
[  283.241681][ T9374]  loop5: [POWERTEC]
[  284.822891][ T9391] loop4: detected capacity change from 0 to 40427
[  284.844739][ T9391] F2FS-fs (loop4): Invalid SB checksum offset: 0
[  284.884358][ T9391] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[  284.917699][ T9391] F2FS-fs (loop4): invalid crc value
[  285.244929][ T9391] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[  285.266205][ T9391] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  286.132558][ T7966] syz-executor: attempt to access beyond end of device
[  286.132558][ T7966] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  286.213258][ T7966] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  287.166961][ T9435] syzkaller1: entered promiscuous mode
[  287.176967][ T9436] overlayfs: failed to clone lowerpath
[  287.182930][ T9435] syzkaller1: entered allmulticast mode
[  287.405970][ T5815] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  287.611892][ T5815] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  287.633823][ T5815] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  287.666699][ T5815] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  287.691679][ T5815] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  287.720703][ T5815] usb 5-1: SerialNumber: syz
[  287.949874][ T5815] usb 5-1: 0:2 : does not exist
[  287.994436][ T5815] usb 5-1: USB disconnect, device number 11
[  288.064436][ T8949] udevd[8949]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  289.630384][ T9485] overlayfs: failed to clone upperpath
[  290.204780][ T9483] loop4: detected capacity change from 0 to 40427
[  290.250797][ T9483] F2FS-fs (loop4): invalid crc value
[  290.291803][ T9483] F2FS-fs (loop4): Found nat_bits in checkpoint
[  290.422758][ T9500] loop3: detected capacity change from 0 to 512
[  290.469723][ T9500] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  290.493916][ T9483] F2FS-fs (loop4): Start checkpoint disabled!
[  290.510583][ T9500] ext4 filesystem being mounted at /253/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  290.542176][ T9483] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  290.753252][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  291.082141][ T3461] kworker/u4:9: attempt to access beyond end of device
[  291.082141][ T3461] loop4: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  291.104087][ T3461] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  291.114645][ T3461] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  292.200499][ T9545] tipc: Started in network mode
[  292.219688][ T9545] tipc: Node identity 4, cluster identity 4711
[  292.235632][ T9545] tipc: Node number set to 4
[  292.931444][ T9561] loop3: detected capacity change from 0 to 512
[  293.014877][ T9561] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  293.097122][ T9561] ext4 filesystem being mounted at /258/file3 supports timestamps until 2038-01-19 (0x7fffffff)
[  293.285024][ T9561] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1244: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  293.319657][ T9561] EXT4-fs (loop3): Remounting filesystem read-only
[  293.402788][ T9570] overlayfs: failed to clone upperpath
[  293.453642][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.660714][ T9575] tipc: Started in network mode
[  293.682707][ T9575] tipc: Node identity 4, cluster identity 4711
[  293.709083][ T9575] tipc: Node number set to 4
[  294.345680][ T5815] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  294.545451][ T5815] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  294.566726][ T5815] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  294.592638][ T5815] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  294.606895][ T5815] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  294.626032][ T5815] usb 5-1: SerialNumber: syz
[  294.862227][ T9618] loop3: detected capacity change from 0 to 512
[  294.888111][ T5815] usb 5-1: 0:2 : does not exist
[  294.905784][ T9618] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  294.949444][ T5815] usb 5-1: USB disconnect, device number 12
[  294.959514][ T9618] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c018, mo2=0082]
[  294.977841][ T9618] System zones: 1-12
[  295.014766][ T8949] udevd[8949]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  295.055914][ T9618] EXT4-fs (loop3): 1 truncate cleaned up
[  295.063137][ T9618] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  295.368613][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  295.783647][   T28] audit: type=1326 audit(1782234992.454:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9636 comm="syz.4.1094" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4abdb9ce59 code=0x0
[  296.464534][ T9650] loop3: detected capacity change from 0 to 512
[  296.485389][ T9650] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  296.513448][ T9650] EXT4-fs (loop3): 1 truncate cleaned up
[  296.527261][ T9650] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  296.568983][ T9650] ieee802154 phy0 wpan0: encryption failed: -90
[  296.857787][ T5783] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  299.112262][ T9679] syz.4.1108 (9679) used greatest stack depth: 18216 bytes left
[  299.352032][ T9742] netlink: 88 bytes leftover after parsing attributes in process `syz.4.1120'.
[  300.452435][ T9753] loop4: detected capacity change from 0 to 32768
[  300.541454][ T9753] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  300.604730][ T9753] XFS (loop4): Ending clean mount
[  300.839986][   T28] audit: type=1804 audit(1782234997.514:20): pid=9786 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.1126" name="/newroot/85/file1/file2" dev="loop4" ino=6151 res=1 errno=0
[  301.069972][ T7966] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  301.272296][ T9773] loop3: detected capacity change from 0 to 32768
[  301.312807][ T9773] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  301.479400][ T9773] XFS (loop3): Ending clean mount
[  301.514948][ T9773] XFS (loop3): Quotacheck needed: Please wait.
[  301.663937][ T9773] XFS (loop3): Quotacheck: Done.
[  301.824013][ T5783] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  303.400543][ T9813] loop3: detected capacity change from 0 to 32768
[  303.484327][ T9813] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  303.652862][ T9813] XFS (loop3): Ending clean mount
[  303.683876][ T9823] loop4: detected capacity change from 0 to 32768
[  303.762417][   T28] audit: type=1800 audit(1782235000.434:21): pid=9813 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1146" name="bus" dev="loop3" ino=6153 res=0 errno=0
[  303.786303][ T9823] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  303.853999][   T28] audit: type=1804 audit(1782235000.434:22): pid=9813 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1146" name="/newroot/276/file1/bus" dev="loop3" ino=6153 res=1 errno=0
[  303.951130][ T9823] XFS (loop4): Ending clean mount
[  304.082175][ T5783] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  304.084368][   T28] audit: type=1800 audit(1782235000.744:23): pid=9823 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1149" name="file1" dev="loop4" ino=6150 res=0 errno=0
[  304.653100][ T7966] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  304.820212][ T9853] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1153'.
[  304.930043][ T9856] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1153'.
[  305.976263][ T9879] loop4: detected capacity change from 0 to 4096
[  305.993519][ T9879] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512).
[  306.137166][ T9879] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  306.185683][ T9879] ntfs3: loop4: Failed to load $Extend (-22).
[  306.198168][ T9879] ntfs3: loop4: Failed to initialize $Extend.
[  306.274247][ T9879] ntfs3: loop4: ino=0, attr_set_size
[  306.303842][ T9879] ntfs3: loop4: ino=0, attr_set_size
[  306.333601][ T9879] ntfs3: loop4: ino=0, attr_set_size
[  306.388655][ T9879] ntfs3: loop4: ino=0, attr_set_size
[  308.340305][    C1] Unknown status report in ack skb
[  308.877968][ T9931] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1183'.
[  308.904482][ T9931] netlink: 'syz.2.1183': attribute type 7 has an invalid length.
[  308.924059][ T9931] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1183'.
[  308.981740][ T9934] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1183'.
[  308.994425][ T9934] netlink: 'syz.2.1183': attribute type 7 has an invalid length.
[  309.003101][ T9934] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1183'.
[  309.104237][ T9937] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1187'.
[  309.297652][ T9943] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  309.825959][ T9966] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  310.559075][ T9989] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1202'.
[  312.963928][T10026] autofs4:pid:10026:autofs_fill_super: called with bogus options
[  314.010468][T10056] futex_wake_op: syz.1.1225 tries to shift op by -1; fix this program
[  314.503343][ T4267] ------------[ cut here ]------------
[  314.509764][ T4267] WARNING: CPU: 1 PID: 4267 at net/mac80211/chan.c:92 ieee80211_vif_use_reserved_switch+0x110e/0x2900
[  314.521011][ T4267] Modules linked in:
[  314.525010][ T4267] CPU: 1 PID: 4267 Comm: kworker/u4:10 Not tainted syzkaller #0
[  314.532750][ T4267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  314.543351][ T4267] Workqueue: phy14 ieee80211_csa_finalize_work
[  314.549848][ T4267] RIP: 0010:ieee80211_vif_use_reserved_switch+0x110e/0x2900
[  314.557298][ T4267] Code: 48 89 df e8 a4 8d d8 f7 e9 d6 fc ff ff e8 4a 19 80 f7 eb 24 e8 43 19 80 f7 c7 04 24 f4 ff ff ff e9 cc f5 ff ff e8 32 19 80 f7 <0f> 0b 0f 0b e9 b7 f5 ff ff e8 24 19 80 f7 48 8b 7c 24 08 4c 8b 74
[  314.577209][ T4267] RSP: 0018:ffffc9000e3c79c0 EFLAGS: 00010293
[  314.583363][ T4267] RAX: ffffffff8a06c812 RBX: 0000000000000001 RCX: ffff88802fe1bc00
[  314.591525][ T4267] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  314.597295][    C0] ------------[ cut here ]------------
[  314.605112][    C0] WARNING: CPU: 0 PID: 10063 at net/mac80211/tx.c:5033 __ieee80211_beacon_get+0x1141/0x1520
[  314.605808][ T4267] RBP: dffffc0000000000 R08: ffff88802f14962f R09: 1ffff11005e292c5
[  314.615575][    C0] Modules linked in:
[  314.624998][ T4267] R10: dffffc0000000000 R11: ffffed1005e292c6 R12: 0000000000000001
[  314.627330][    C0] CPU: 0 PID: 10063 Comm: syz.1.1225 Not tainted syzkaller #0
[  314.635335][ T4267] R13: ffff88802f14a659 R14: ffff888025e8ad48 R15: ffff888023827c00
[  314.642869][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  314.650934][ T4267] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  314.661183][    C0] RIP: 0010:__ieee80211_beacon_get+0x1141/0x1520
[  314.670426][ T4267] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  314.676609][    C0] Code: f7 4c 89 ef e8 b0 a4 c2 f7 45 31 ed 4c 8b bc 24 a0 00 00 00 e9 7f fe ff ff e8 7b c6 84 f7 0f 0b e9 61 f8 ff ff e8 6f c6 84 f7 <0f> 0b e9 85 fb ff ff e8 63 c6 84 f7 48 c7 c7 40 50 64 8e 4c 89 e6
[  314.676631][    C0] RSP: 0018:ffffc90000007a18 EFLAGS: 00010246
[  314.676654][    C0] RAX: ffffffff8a021ee1 RBX: dffffc0000000000 RCX: ffff888027bfda00
[  314.683255][ T4267] CR2: 0000200000288000 CR3: 000000005d61f000 CR4: 00000000003506e0
[  314.703030][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  314.703054][    C0] RBP: 0000000000000000 R08: ffff888027bfda00 R09: 0000000000000003
[  314.703067][    C0] R10: 0000000000000007 R11: 0000000000000100 R12: ffff88802f14a440
[  314.703081][    C0] R13: ffff888026c95c24 R14: ffff88802f14a930 R15: ffff888026c95c00
[  314.703097][    C0] FS:  00007ff4e399b6c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  314.703118][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  314.703132][    C0] CR2: 00007f534c916101 CR3: 0000000064f2a000 CR4: 00000000003506f0
[  314.703156][    C0] Call Trace:
[  314.703165][    C0]  <IRQ>
[  314.703175][    C0]  ? __ieee80211_beacon_get+0x36/0x1520
[  314.703242][    C0]  ieee80211_beacon_get_tim+0xbf/0x580
[  314.703280][    C0]  ? ieee80211_beacon_get_template_ema_list+0x90/0x90
[  314.703327][    C0]  mac80211_hwsim_beacon_tx+0x3bd/0x770
[  314.703367][    C0]  __iterate_interfaces+0x225/0x4c0
[  314.703394][    C0]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[  314.703426][    C0]  ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[  314.703456][    C0]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[  314.703488][    C0]  ieee80211_iterate_active_interfaces_atomic+0xdb/0x180
[  314.703521][    C0]  mac80211_hwsim_beacon+0xbb/0x1b0
[  314.703550][    C0]  ? hw_scan_work+0xf10/0xf10
[  314.703578][    C0]  __hrtimer_run_queues+0x525/0xc10
[  314.703626][    C0]  ? hrtimer_interrupt+0x980/0x980
[  314.703649][    C0]  ? read_tsc+0x9/0x20
[  314.703686][    C0]  hrtimer_run_softirq+0x177/0x290
[  314.703716][    C0]  handle_softirqs+0x27d/0x820
[  314.703740][    C0]  ? read_tsc+0x9/0x20
[  314.703763][    C0]  ? ktime_get+0x24b/0x280
[  314.703793][    C0]  ? __irq_exit_rcu+0xd3/0x190
[  314.703821][    C0]  ? do_softirq+0x1a0/0x1a0
[  314.703850][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  314.703883][    C0]  __irq_exit_rcu+0xd3/0x190
[  314.703906][    C0]  ? irq_exit_rcu+0x20/0x20
[  314.703938][    C0]  irq_exit_rcu+0x9/0x20
[  314.703959][    C0]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  314.703992][    C0]  </IRQ>
[  314.704001][    C0]  <TASK>
[  314.704011][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  314.704047][    C0] RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x60
[  314.704075][    C0] Code: 00 0f 0b 0f 1f 80 00 00 00 00 f3 0f 1e fa 53 48 89 fb e8 13 00 00 00 48 8b 3d cc 02 04 0d 48 89 de 5b e9 b3 a3 57 00 cc cc cc <f3> 0f 1e fa 48 8b 04 24 65 48 8b 0d e0 d2 7c 7e 65 8b 15 e1 d2 7c
[  314.704096][    C0] RSP: 0018:ffffc9000b7e71f0 EFLAGS: 00000202
[  314.704119][    C0] RAX: ffffffff8ea1b784 RBX: ffffffff8ea1b788 RCX: ffff888027bfda00
[  314.704137][    C0] RDX: 0000000000000002 RSI: ffffffff81c7f1af RDI: ffffffff81c7ef58
[  314.704154][    C0] RBP: ffffffff8ea1b788 R08: ffffc9000b7e7390 R09: 0000000000000008
[  314.704170][    C0] R10: 0000000000000004 R11: 0000000000000002 R12: ffffffff81c7ef58
[  314.704186][    C0] R13: ffffffff8ea1b78c R14: ffffffff81c7f1af R15: ffffffff8ea1b788
[  314.704213][    C0]  ? __mm_populate+0x25f/0x390
[  314.704242][    C0]  ? __mm_populate+0x8/0x390
[  314.704274][    C0]  ? __mm_populate+0x25f/0x390
[  314.704300][    C0]  ? __mm_populate+0x8/0x390
[  314.704331][    C0]  unwind_next_frame+0x500/0x2990
[  314.704362][    C0]  ? __mm_populate+0x25f/0x390
[  314.704391][    C0]  ? __mm_populate+0x260/0x390
[  314.711264][ T4267] Call Trace:
[  314.718609][    C0]  ? __mm_populate+0x260/0x390
[  314.726723][ T4267]  <TASK>
[  314.734668][    C0]  ? stack_trace_save+0x100/0x100
[  314.742966][ T4267]  ieee80211_link_use_reserved_context+0x37b/0x5c0
[  314.750801][    C0]  arch_stack_walk+0x144/0x190
[  314.758995][ T4267]  ieee80211_csa_finalize+0x571/0xeb0
[  314.767850][    C0]  ? __mm_populate+0x260/0x390
[  314.774490][ T4267]  ? mutex_lock_nested+0x20/0x20
[  314.782560][    C0]  stack_trace_save+0xaa/0x100
[  314.782593][    C0]  ? stack_trace_snprint+0xf0/0xf0
[  314.782617][    C0]  ? mark_lock+0x94/0x320
[  314.782653][    C0]  save_stack+0x125/0x230
[  314.782690][    C0]  ? __reset_page_owner+0x190/0x190
[  314.786077][ T4267]  ? lockdep_hardirqs_on_prepare+0x44c/0x7d0
[  314.788884][    C0]  ? seqcount_lockdep_reader_access+0x10a/0x190
[  314.794463][ T4267]  ? ieee80211_csa_finalize_work+0x140/0x140
[  314.800003][    C0]  ? post_alloc_hook+0x1c1/0x200
[  314.800040][    C0]  ? get_page_from_freelist+0x2181/0x22a0
[  314.800060][    C0]  ? __alloc_pages+0x1f0/0x460
[  314.800078][    C0]  ? __folio_alloc+0x10/0x20
[  314.800098][    C0]  ? vma_alloc_folio+0x474/0x8f0
[  314.800118][    C0]  ? handle_mm_fault+0x1ab6/0x4a50
[  314.800139][    C0]  ? __get_user_pages+0x604/0x1580
[  314.800169][    C0]  ? populate_vma_page_range+0x2c1/0x380
[  314.800204][    C0]  ? __mm_populate+0x260/0x390
[  314.800239][    C0]  ? get_page_from_freelist+0x67b/0x22a0
[  314.800264][    C0]  ? __lock_acquire+0x7d80/0x7d80
[  314.800290][    C0]  ? do_raw_spin_trylock+0xb2/0x190
[  314.800326][    C0]  __set_page_owner+0x1d/0x60
[  314.800364][    C0]  post_alloc_hook+0x1c1/0x200
[  314.800403][    C0]  get_page_from_freelist+0x2181/0x22a0
[  314.800455][    C0]  ? __next_zones_zonelist+0x9d/0x130
[  314.800505][    C0]  __alloc_pages+0x1f0/0x460
[  314.800532][    C0]  ? zone_statistics+0x170/0x170
[  314.800565][    C0]  ? handle_mm_fault+0xe6/0x4a50
[  314.800590][    C0]  ? __lock_acquire+0x7d80/0x7d80
[  314.800620][    C0]  __folio_alloc+0x10/0x20
[  314.800642][    C0]  vma_alloc_folio+0x474/0x8f0
[  314.800669][    C0]  ? handle_mm_fault+0xe6/0x4a50
[  314.800695][    C0]  handle_mm_fault+0x1ab6/0x4a50
[  314.800722][    C0]  ? handle_mm_fault+0xe6/0x4a50
[  314.800760][    C0]  ? numa_migrate_prep+0x350/0x350
[  314.800782][    C0]  ? follow_page_pte+0x6dd/0x1ae0
[  314.800820][    C0]  ? pmd_lock+0x60/0x60
[  314.800860][    C0]  __get_user_pages+0x604/0x1580
[  314.800916][    C0]  ? populate_vma_page_range+0x380/0x380
[  314.800960][    C0]  populate_vma_page_range+0x2c1/0x380
[  314.800995][    C0]  ? fixup_user_fault+0x750/0x750
[  314.801031][    C0]  ? down_read+0x1ac/0x2e0
[  314.801065][    C0]  __mm_populate+0x260/0x390
[  314.801099][    C0]  ? faultin_page_range+0x8a0/0x8a0
[  314.801134][    C0]  ? up_write+0x1be/0x410
[  314.801163][    C0]  do_mlock+0x5d2/0x740
[  314.801199][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[  314.801241][    C0]  ? lru_gen_add_folio+0xe00/0xe00
[  314.809245][ T4267]  ? read_lock_is_recursive+0x20/0x20
[  314.813651][    C0]  ? lockdep_hardirqs_on_prepare+0x44c/0x7d0
[  314.819308][ T4267]  ieee80211_csa_finalize_work+0xf6/0x140
[  314.825236][    C0]  ? rcu_is_watching+0x15/0xb0
[  314.832487][ T4267]  ? process_scheduled_works+0x975/0x1600
[  314.838778][    C0]  ? lock_chain_count+0x20/0x20
[  314.838830][    C0]  ? syscall_enter_from_user_mode+0x25/0x80
[  314.846064][ T4267]  process_scheduled_works+0xa60/0x1600
[  314.851129][    C0]  __x64_sys_mlock+0x60/0x70
[  314.856910][ T4267]  ? worker_attach_to_pool+0x370/0x370
[  314.861138][    C0]  do_syscall_64+0x55/0xb0
[  314.866393][ T4267]  ? assign_work+0x3cc/0x5d0
[  314.870424][    C0]  ? clear_bhb_loop+0x40/0x90
[  314.875702][ T4267]  worker_thread+0xa5e/0xfe0
[  314.880402][    C0]  ? clear_bhb_loop+0x40/0x90
[  314.884515][ T4267]  ? _raw_spin_unlock+0x40/0x40
[  314.888986][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  314.893790][ T4267]  ? __kthread_parkme+0x71/0x1c0
[  314.898364][    C0] RIP: 0033:0x7ff4e2b9ce59
[  314.907455][ T4267]  kthread+0x2fa/0x390
[  314.908317][    C0] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  314.912732][ T4267]  ? pr_cont_work+0x550/0x550
[  314.917047][    C0] RSP: 002b:00007ff4e399b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  314.917081][    C0] RAX: ffffffffffffffda RBX: 00007ff4e2e16180 RCX: 00007ff4e2b9ce59
[  314.917098][    C0] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[  314.917113][    C0] RBP: 00007ff4e2c32e6f R08: 0000000000000000 R09: 0000000000000000
[  314.917129][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  314.917145][    C0] R13: 00007ff4e2e16218 R14: 00007ff4e2e16180 R15: 00007fff03439488
[  314.917183][    C0]  </TASK>
[  314.917194][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  314.917207][    C0] CPU: 0 PID: 10063 Comm: syz.1.1225 Not tainted syzkaller #0
[  314.917228][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  314.917240][    C0] Call Trace:
[  314.917248][    C0]  <IRQ>
[  314.917256][    C0]  dump_stack_lvl+0x18c/0x250
[  314.917292][    C0]  ? show_regs_print_info+0x20/0x20
[  314.917320][    C0]  ? load_image+0x420/0x420
[  314.917356][    C0]  panic+0x2ca/0x720
[  314.917452][    C0]  ? bpf_jit_dump+0xd0/0xd0
[  314.917619][    C0]  __warn+0x2e0/0x470
[  314.917711][    C0]  ? __ieee80211_beacon_get+0x1141/0x1520
[  314.917819][    C0]  ? __ieee80211_beacon_get+0x1141/0x1520
[  314.917909][    C0]  report_bug+0x2be/0x4f0
[  314.917981][    C0]  ? __ieee80211_beacon_get+0x1141/0x1520
[  314.918075][    C0]  ? __ieee80211_beacon_get+0x1141/0x1520
[  314.918167][    C0]  ? __ieee80211_beacon_get+0x1143/0x1520
[  314.918258][    C0]  handle_bug+0xcf/0x120
[  314.918339][    C0]  exc_invalid_op+0x1a/0x50
[  314.918418][    C0]  asm_exc_invalid_op+0x1a/0x20
[  314.918500][    C0] RIP: 0010:__ieee80211_beacon_get+0x1141/0x1520
[  314.918597][    C0] Code: f7 4c 89 ef e8 b0 a4 c2 f7 45 31 ed 4c 8b bc 24 a0 00 00 00 e9 7f fe ff ff e8 7b c6 84 f7 0f 0b e9 61 f8 ff ff e8 6f c6 84 f7 <0f> 0b e9 85 fb ff ff e8 63 c6 84 f7 48 c7 c7 40 50 64 8e 4c 89 e6
[  314.918651][    C0] RSP: 0018:ffffc90000007a18 EFLAGS: 00010246
[  314.918710][    C0] RAX: ffffffff8a021ee1 RBX: dffffc0000000000 RCX: ffff888027bfda00
[  314.918757][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  314.918778][    C0] RBP: 0000000000000000 R08: ffff888027bfda00 R09: 0000000000000003
[  314.918820][    C0] R10: 0000000000000007 R11: 0000000000000100 R12: ffff88802f14a440
[  314.918865][    C0] R13: ffff888026c95c24 R14: ffff88802f14a930 R15: ffff888026c95c00
[  314.918943][    C0]  ? __ieee80211_beacon_get+0x1141/0x1520
[  314.919058][    C0]  ? __ieee80211_beacon_get+0x1141/0x1520
[  314.919148][    C0]  ? __ieee80211_beacon_get+0x36/0x1520
[  314.919271][    C0]  ieee80211_beacon_get_tim+0xbf/0x580
[  314.919389][    C0]  ? ieee80211_beacon_get_template_ema_list+0x90/0x90
[  314.919511][    C0]  mac80211_hwsim_beacon_tx+0x3bd/0x770
[  314.919614][    C0]  __iterate_interfaces+0x225/0x4c0
[  314.919682][    C0]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[  314.919768][    C0]  ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[  314.919846][    C0]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[  314.919925][    C0]  ieee80211_iterate_active_interfaces_atomic+0xdb/0x180
[  314.920013][    C0]  mac80211_hwsim_beacon+0xbb/0x1b0
[  314.920081][    C0]  ? hw_scan_work+0xf10/0xf10
[  314.920158][    C0]  __hrtimer_run_queues+0x525/0xc10
[  314.920290][    C0]  ? hrtimer_interrupt+0x980/0x980
[  314.920368][    C0]  ? read_tsc+0x9/0x20
[  314.920467][    C0]  hrtimer_run_softirq+0x177/0x290
[  314.920548][    C0]  handle_softirqs+0x27d/0x820
[  314.920605][    C0]  ? read_tsc+0x9/0x20
[  314.920660][    C0]  ? ktime_get+0x24b/0x280
[  314.920738][    C0]  ? __irq_exit_rcu+0xd3/0x190
[  314.920815][    C0]  ? do_softirq+0x1a0/0x1a0
[  314.920884][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  314.920975][    C0]  __irq_exit_rcu+0xd3/0x190
[  314.921033][    C0]  ? irq_exit_rcu+0x20/0x20
[  314.921113][    C0]  irq_exit_rcu+0x9/0x20
[  314.921169][    C0]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  314.921251][    C0]  </IRQ>
[  314.921272][    C0]  <TASK>
[  314.921295][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  314.921386][    C0] RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x60
[  314.921462][    C0] Code: 00 0f 0b 0f 1f 80 00 00 00 00 f3 0f 1e fa 53 48 89 fb e8 13 00 00 00 48 8b 3d cc 02 04 0d 48 89 de 5b e9 b3 a3 57 00 cc cc cc <f3> 0f 1e fa 48 8b 04 24 65 48 8b 0d e0 d2 7c 7e 65 8b 15 e1 d2 7c
[  314.921519][    C0] RSP: 0018:ffffc9000b7e71f0 EFLAGS: 00000202
[  314.921570][    C0] RAX: ffffffff8ea1b784 RBX: ffffffff8ea1b788 RCX: ffff888027bfda00
[  314.921615][    C0] RDX: 0000000000000002 RSI: ffffffff81c7f1af RDI: ffffffff81c7ef58
[  314.921662][    C0] RBP: ffffffff8ea1b788 R08: ffffc9000b7e7390 R09: 0000000000000008
[  314.921727][    C0] R10: 0000000000000004 R11: 0000000000000002 R12: ffffffff81c7ef58
[  314.921767][    C0] R13: ffffffff8ea1b78c R14: ffffffff81c7f1af R15: ffffffff8ea1b788
[  314.921811][    C0]  ? __mm_populate+0x25f/0x390
[  314.921883][    C0]  ? __mm_populate+0x8/0x390
[  314.921968][    C0]  ? __mm_populate+0x25f/0x390
[  314.922033][    C0]  ? __mm_populate+0x8/0x390
[  314.922108][    C0]  unwind_next_frame+0x500/0x2990
[  314.922184][    C0]  ? __mm_populate+0x25f/0x390
[  314.922246][    C0]  ? __mm_populate+0x260/0x390
[  314.922319][    C0]  ? __mm_populate+0x260/0x390
[  314.922390][    C0]  ? stack_trace_save+0x100/0x100
[  314.922456][    C0]  arch_stack_walk+0x144/0x190
[  314.922517][    C0]  ? __mm_populate+0x260/0x390
[  314.922593][    C0]  stack_trace_save+0xaa/0x100
[  314.922690][    C0]  ? stack_trace_snprint+0xf0/0xf0
[  314.922772][    C0]  ? mark_lock+0x94/0x320
[  314.922854][    C0]  save_stack+0x125/0x230
[  314.922950][    C0]  ? __reset_page_owner+0x190/0x190
[  314.923033][ T4267]  ? kthread_blkcg+0xd0/0xd0
[  314.923097][ T4267]  ret_from_fork+0x48/0x80
[  314.923182][ T4267]  ? kthread_blkcg+0xd0/0xd0
[  314.923273][ T4267]  ret_from_fork_asm+0x11/0x20
[  314.923407][ T4267]  </TASK>
[  314.923438][ T4267] irq event stamp: 7501263
[  314.923459][ T4267] hardirqs last  enabled at (7501265): [<ffffffff816b41bb>] vprintk_store+0x9fb/0xd50
[  314.923543][ T4267] hardirqs last disabled at (7501266): [<ffffffff816b3954>] vprintk_store+0x194/0xd50
[  314.923619][ T4267] softirqs last  enabled at (7501248): [<ffffffff81525883>] __irq_exit_rcu+0xd3/0x190
[  314.923691][ T4267] softirqs last disabled at (7501099): [<ffffffff81525883>] __irq_exit_rcu+0xd3/0x190
[  314.923744][ T4267] ---[ end trace 0000000000000000 ]---
[  314.943297][   T34] ------------[ cut here ]------------
[  314.943338][   T34] WARNING: CPU: 1 PID: 34 at net/mac80211/chan.c:92 ieee80211_vif_use_reserved_switch+0x110e/0x2900
[  314.943470][   T34] Modules linked in:
[  314.943503][   T34] CPU: 1 PID: 34 Comm: kworker/u4:2 Tainted: G        W          syzkaller #0
[  314.943557][   T34] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  314.943598][   T34] Workqueue: phy13 ieee80211_csa_finalize_work
[  314.943875][   T34] RIP: 0010:ieee80211_vif_use_reserved_switch+0x110e/0x2900
[  314.943960][   T34] Code: 48 89 df e8 a4 8d d8 f7 e9 d6 fc ff ff e8 4a 19 80 f7 eb 24 e8 43 19 80 f7 c7 04 24 f4 ff ff ff e9 cc f5 ff ff e8 32 19 80 f7 <0f> 0b 0f 0b e9 b7 f5 ff ff e8 24 19 80 f7 48 8b 7c 24 08 4c 8b 74
[  314.944014][   T34] RSP: 0018:ffffc90000aaf9c0 EFLAGS: 00010293
[  314.944059][   T34] RAX: ffffffff8a06c812 RBX: 0000000000000001 RCX: ffff888018ec1e00
[  314.944116][   T34] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  314.944155][   T34] RBP: dffffc0000000000 R08: ffff88805a23162f R09: 1ffff1100b4462c5
[  314.944211][   T34] R10: dffffc0000000000 R11: ffffed100b4462c6 R12: 0000000000000001
[  314.944252][   T34] R13: ffff88805a232659 R14: ffff88805d23ad48 R15: ffff8880756abd00
[  314.944295][   T34] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  314.944349][   T34] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  314.944383][   T34] CR2: 000000110c43f03c CR3: 000000005d61f000 CR4: 00000000003506e0
[  314.944435][   T34] Call Trace:
[  314.944458][   T34]  <TASK>
[  314.944532][   T34]  ieee80211_link_use_reserved_context+0x37b/0x5c0
[  314.944651][   T34]  ieee80211_csa_finalize+0x571/0xeb0
[  314.944744][   T34]  ? mutex_lock_nested+0x20/0x20
[  314.944810][   T34]  ? lockdep_hardirqs_on_prepare+0x44c/0x7d0
[  314.944886][   T34]  ? ieee80211_csa_finalize_work+0x140/0x140
[  314.944976][   T34]  ? read_lock_is_recursive+0x20/0x20
[  314.945092][   T34]  ieee80211_csa_finalize_work+0xf6/0x140
[  314.945202][   T34]  ? process_scheduled_works+0x975/0x1600
[  314.945290][   T34]  process_scheduled_works+0xa60/0x1600
[  314.945636][   T34]  ? worker_attach_to_pool+0x370/0x370
[  314.945746][   T34]  ? assign_work+0x3cc/0x5d0
[  314.945832][   T34]  worker_thread+0xa5e/0xfe0
[  314.945972][   T34]  kthread+0x2fa/0x390
[  314.946031][   T34]  ? pr_cont_work+0x550/0x550
[  314.946110][   T34]  ? kthread_blkcg+0xd0/0xd0
[  314.946155][   T34]  ret_from_fork+0x48/0x80
[  314.946218][   T34]  ? kthread_blkcg+0xd0/0xd0
[  314.946285][   T34]  ret_from_fork_asm+0x11/0x20
[  314.946413][   T34]  </TASK>
[  314.946436][   T34] irq event stamp: 4818271
[  314.946458][   T34] hardirqs last  enabled at (4818273): [<ffffffff816b41bb>] vprintk_store+0x9fb/0xd50
[  314.946548][   T34] hardirqs last disabled at (4818274): [<ffffffff816b3954>] vprintk_store+0x194/0xd50
[  314.946628][   T34] softirqs last  enabled at (4818174): [<ffffffff81525883>] __irq_exit_rcu+0xd3/0x190
[  314.946699][   T34] softirqs last disabled at (4818167): [<ffffffff81525883>] __irq_exit_rcu+0xd3/0x190
[  314.946770][   T34] ---[ end trace 0000000000000000 ]---
[  314.959645][   T34] ------------[ cut here ]------------
[  314.959685][   T34] WARNING: CPU: 1 PID: 34 at net/mac80211/chan.c:1423 ieee80211_vif_use_reserved_switch+0x1110/0x2900
[  314.959821][   T34] Modules linked in:
[  314.959861][   T34] CPU: 1 PID: 34 Comm: kworker/u4:2 Tainted: G        W          syzkaller #0
[  314.959917][   T34] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  314.959950][   T34] Workqueue: phy13 ieee80211_csa_finalize_work
[  314.960039][   T34] RIP: 0010:ieee80211_vif_use_reserved_switch+0x1110/0x2900
[  314.960126][   T34] Code: df e8 a4 8d d8 f7 e9 d6 fc ff ff e8 4a 19 80 f7 eb 24 e8 43 19 80 f7 c7 04 24 f4 ff ff ff e9 cc f5 ff ff e8 32 19 80 f7 0f 0b <0f> 0b e9 b7 f5 ff ff e8 24 19 80 f7 48 8b 7c 24 08 4c 8b 74 24 30
[  314.960189][   T34] RSP: 0018:ffffc90000aaf9c0 EFLAGS: 00010293
[  314.960235][   T34] RAX: ffffffff8a06c812 RBX: 0000000000000001 RCX: ffff888018ec1e00
[  314.960296][   T34] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  314.960332][   T34] RBP: dffffc0000000000 R08: ffff88805a23162f R09: 1ffff1100b4462c5
[  314.960374][   T34] R10: dffffc0000000000 R11: ffffed100b4462c6 R12: 0000000000000001
[  314.960409][   T34] R13: ffff88805a232659 R14: ffff88805d23ad48 R15: ffff8880756abd00
[  314.960451][   T34] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  314.960496][   T34] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  314.960537][   T34] CR2: 000000110c43f03c CR3: 000000005d61f000 CR4: 00000000003506e0
[  314.960578][   T34] Call Trace:
[  314.960599][   T34]  <TASK>
[  314.960674][   T34]  ieee80211_link_use_reserved_context+0x37b/0x5c0
[  314.960774][   T34]  ieee80211_csa_finalize+0x571/0xeb0
[  314.960857][   T34]  ? mutex_lock_nested+0x20/0x20
[  314.960894][   T34]  ? lockdep_hardirqs_on_prepare+0x44c/0x7d0
[  314.960985][   T34]  ? ieee80211_csa_finalize_work+0x140/0x140
[  314.961103][   T34]  ? read_lock_is_recursive+0x20/0x20
[  314.961198][   T34]  ieee80211_csa_finalize_work+0xf6/0x140
[  314.961283][   T34]  ? process_scheduled_works+0x975/0x1600
[  314.961382][   T34]  process_scheduled_works+0xa60/0x1600
[  314.961541][   T34]  ? worker_attach_to_pool+0x370/0x370
[  314.961639][   T34]  ? assign_work+0x3cc/0x5d0
[  314.961718][   T34]  worker_thread+0xa5e/0xfe0
[  314.961871][   T34]  kthread+0x2fa/0x390
[  314.961918][   T34]  ? pr_cont_work+0x550/0x550
[  314.961992][   T34]  ? kthread_blkcg+0xd0/0xd0
[  314.962046][   T34]  ret_from_fork+0x48/0x80
[  314.962112][   T34]  ? kthread_blkcg+0xd0/0xd0
[  314.962175][   T34]  ret_from_fork_asm+0x11/0x20
[  314.962305][   T34]  </TASK>
[  314.962319][   T34] irq event stamp: 4818367
[  314.962352][   T34] hardirqs last  enabled at (4818369): [<ffffffff816b41bb>] vprintk_store+0x9fb/0xd50
[  314.962456][   T34] hardirqs last disabled at (4818370): [<ffffffff816b3954>] vprintk_store+0x194/0xd50
[  314.962538][   T34] softirqs last  enabled at (4818174): [<ffffffff81525883>] __irq_exit_rcu+0xd3/0x190
[  314.962604][   T34] softirqs last disabled at (4818167): [<ffffffff81525883>] __irq_exit_rcu+0xd3/0x190
[  314.962670][   T34] ---[ end trace 0000000000000000 ]---
[  314.973566][   T34] wlan0: failed to finalize CSA, disconnecting
[  316.646326][    C0]  ? seqcount_lockdep_reader_access+0x10a/0x190
[  316.652830][    C0]  ? post_alloc_hook+0x1c1/0x200
[  316.657830][    C0]  ? get_page_from_freelist+0x2181/0x22a0
[  316.664025][    C0]  ? __alloc_pages+0x1f0/0x460
[  316.668857][    C0]  ? __folio_alloc+0x10/0x20
[  316.673662][    C0]  ? vma_alloc_folio+0x474/0x8f0
[  316.678727][    C0]  ? handle_mm_fault+0x1ab6/0x4a50
[  316.683888][    C0]  ? __get_user_pages+0x604/0x1580
[  316.689126][    C0]  ? populate_vma_page_range+0x2c1/0x380
[  316.694806][    C0]  ? __mm_populate+0x260/0x390
[  316.699659][    C0]  ? get_page_from_freelist+0x67b/0x22a0
[  316.705361][    C0]  ? __lock_acquire+0x7d80/0x7d80
[  316.710448][    C0]  ? do_raw_spin_trylock+0xb2/0x190
[  316.715702][    C0]  __set_page_owner+0x1d/0x60
[  316.720440][    C0]  post_alloc_hook+0x1c1/0x200
[  316.725305][    C0]  get_page_from_freelist+0x2181/0x22a0
[  316.730928][    C0]  ? __next_zones_zonelist+0x9d/0x130
[  316.736362][    C0]  __alloc_pages+0x1f0/0x460
[  316.741010][    C0]  ? zone_statistics+0x170/0x170
[  316.746020][    C0]  ? handle_mm_fault+0xe6/0x4a50
[  316.751016][    C0]  ? __lock_acquire+0x7d80/0x7d80
[  316.756085][    C0]  __folio_alloc+0x10/0x20
[  316.760548][    C0]  vma_alloc_folio+0x474/0x8f0
[  316.765356][    C0]  ? handle_mm_fault+0xe6/0x4a50
[  316.770473][    C0]  handle_mm_fault+0x1ab6/0x4a50
[  316.775569][    C0]  ? handle_mm_fault+0xe6/0x4a50
[  316.780583][    C0]  ? numa_migrate_prep+0x350/0x350
[  316.785747][    C0]  ? follow_page_pte+0x6dd/0x1ae0
[  316.790839][    C0]  ? pmd_lock+0x60/0x60
[  316.795060][    C0]  __get_user_pages+0x604/0x1580
[  316.800057][    C0]  ? populate_vma_page_range+0x380/0x380
[  316.805752][    C0]  populate_vma_page_range+0x2c1/0x380
[  316.811366][    C0]  ? fixup_user_fault+0x750/0x750
[  316.816446][    C0]  ? down_read+0x1ac/0x2e0
[  316.820911][    C0]  __mm_populate+0x260/0x390
[  316.825557][    C0]  ? faultin_page_range+0x8a0/0x8a0
[  316.830818][    C0]  ? up_write+0x1be/0x410
[  316.835192][    C0]  do_mlock+0x5d2/0x740
[  316.839383][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[  316.844642][    C0]  ? lru_gen_add_folio+0xe00/0xe00
[  316.849818][    C0]  ? lockdep_hardirqs_on_prepare+0x44c/0x7d0
[  316.855852][    C0]  ? rcu_is_watching+0x15/0xb0
[  316.860723][    C0]  ? lock_chain_count+0x20/0x20
[  316.865634][    C0]  ? syscall_enter_from_user_mode+0x25/0x80
[  316.871606][    C0]  __x64_sys_mlock+0x60/0x70
[  316.876239][    C0]  do_syscall_64+0x55/0xb0
[  316.880708][    C0]  ? clear_bhb_loop+0x40/0x90
[  316.885420][    C0]  ? clear_bhb_loop+0x40/0x90
[  316.890140][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  316.896083][    C0] RIP: 0033:0x7ff4e2b9ce59
[  316.900553][    C0] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  316.920265][    C0] RSP: 002b:00007ff4e399b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  316.928716][    C0] RAX: ffffffffffffffda RBX: 00007ff4e2e16180 RCX: 00007ff4e2b9ce59
[  316.936723][    C0] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[  316.944738][    C0] RBP: 00007ff4e2c32e6f R08: 0000000000000000 R09: 0000000000000000
[  316.952762][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  316.960791][    C0] R13: 00007ff4e2e16218 R14: 00007ff4e2e16180 R15: 00007fff03439488
[  316.968829][    C0]  </TASK>
[  316.972475][    C0] Kernel Offset: disabled
[  316.976831][    C0] Rebooting in 86400 seconds..