last executing test programs:

19.832540555s ago: executing program 3 (id=1051):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000040154220a9055015bbe4010203010902120001000000000904"], 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$lan78xx(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000480)={0x44, &(0x7f0000000100)=ANY=[@ANYBLOB=' \r@'], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

19.080700146s ago: executing program 1 (id=1053):
syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
socket$inet6(0xa, 0x80002, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={0xffffffffffffffff, 0x0, 0x1, 0x0, &(0x7f00000002c0)='\\', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x50)
r0 = syz_io_uring_setup(0x54d, &(0x7f0000000040)={0x0, 0x735a, 0x100, 0x805, 0x350}, &(0x7f0000000100)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2e, 0x0, 0x0, 0x5}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_WRITE={0x17, 0x1, 0x2007, @fd, 0xffffffffffffff7f, 0x0, 0x0, 0x4, 0x1})
io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0)

18.54721359s ago: executing program 1 (id=1055):
r0 = syz_usb_connect$hid(0x3, 0x87, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x403, 0x6030, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x2}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f00000001c0)={0x0, 0x22, 0x2, {[@main=@item_012={0x1, 0x0, 0x0, ')'}]}}, 0x0}, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, &(0x7f00000004c0)={0x0, 0x14, 0xd, "5e6424818327b2369deca65eb2"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, &(0x7f0000000880)={0x84, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000680)={0x2c, 0x0, 0x0, 0x0, &(0x7f00000007c0)={0x20, 0x1, 0x5, "c768faee57"}, 0x0})

15.288280425s ago: executing program 3 (id=1059):
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, &(0x7f0000000340))
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94)
close(r3)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x121202, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000380)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, 0x0, 0x0, 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)

15.19287052s ago: executing program 4 (id=1060):
socket$netlink(0x10, 0x3, 0x0)
creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))
r0 = socket$packet(0x11, 0x3, 0x300)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0xc1)
socket$nl_generic(0x10, 0x3, 0x10)
socket$netlink(0x10, 0x3, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/cpuinfo\x00', 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
openat$rtc(0xffffffffffffff9c, 0x0, 0x28801, 0x0)
r1 = creat(&(0x7f0000000140)='./file0\x00', 0x18a)
syz_usb_connect$uac1(0x0, 0xa4, &(0x7f0000001200)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d2405000005000000000000000c240000e9fffff5ffffffff092403f3", @ANYRES8=r1, @ANYRES64=r0], 0x0)

12.643026205s ago: executing program 1 (id=1062):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet6_int(r0, 0x29, 0x1a, &(0x7f0000000080)=0xe, 0x4)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r3, 0xc020f509, &(0x7f00000001c0)={<r4=>r1, 0x6, 0x10001, 0x3})
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xd, 0x3, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xda1a}}, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x1e, 0x3, &(0x7f00000007c0)=@framed, &(0x7f0000000100)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x4b, '\x00', 0x0, 0x24, r4}, 0x94)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r5)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={0x20, r6, 0x9c3fa077fa966179, 0xfffffffd, 0x0, {{0x7e}, {@void, @val={0xc, 0x99, {0x916c, 0x14}}}}}, 0x20}}, 0x4000054)
sendmsg$NL80211_CMD_RELOAD_REGDB(r5, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000340)={0x14, r6, 0x1, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x20008004)
ioctl$AUTOFS_IOC_CATATONIC(r5, 0x9362, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000640)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_UPDATE_CONNECT_PARAMS(0xffffffffffffffff, &(0x7f0000001900)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="38120000", @ANYRES16=r6, @ANYBLOB="000229bd3db6968045000300000000000000", @ANYRES32=r7, @ANYBLOB], 0x1238}, 0x1, 0x0, 0x0, 0x40050}, 0x40c0)
socket$inet_sctp(0x2, 0x1, 0x84)
r8 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x4000000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001980)={&(0x7f00000019c0)=@deltfilter={0x204, 0x2d, 0x8, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x1, 0xe}, {0x9, 0x3}, {0xe, 0xb}}, [@TCA_RATE={0x6, 0x5, {0x2, 0x3}}, @filter_kind_options=@f_cgroup={{0xb}, {0x1cc, 0x2, [@TCA_CGROUP_EMATCHES={0x1c8, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x101}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x8}}, @TCA_EMATCH_TREE_HDR={0x8}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x6}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x8000}}, @TCA_EMATCH_TREE_LIST={0x24, 0x2, 0x0, 0x1, [@TCF_EM_META={0x20, 0x1, 0x0, 0x0, {{0x7, 0x4, 0x6}, [@TCA_EM_META_LVALUE={0x14, 0x2, [@TCF_META_TYPE_VAR="cd9e9103b4", @TCF_META_TYPE_INT=0xa, @TCF_META_TYPE_VAR="95588fed184221"]}]}}]}, @TCA_EMATCH_TREE_LIST={0x18, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0xf9, 0x7, 0x2}, {{0x3, 0x0, 0x0, 0x1}, {0x0, 0x1, 0x1, 0x1}}}}]}, @TCA_EMATCH_TREE_HDR={0x8}, @TCA_EMATCH_TREE_LIST={0x120, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x14, 0x3, 0x0, 0x0, {{0x3, 0x2, 0xc00}, {0x0, 0x4, 0x0, "fc585ae4"}}}, @TCF_EM_CONTAINER={0x68, 0x2, 0x0, 0x0, {{0x9, 0x0, 0x4}, "4632c94aac159d10e6623a8e84b4dcee9f88b80ac5cc81ced0f285d22ac250a7286c5759c5a188e8b79696cc7aeeb670a5c4eb4fb0bf445691a21d6394c37df2347dce30bec0e709ab184437138695d544cf409ed205790476554a"}}, @TCF_EM_CONTAINER={0xa0, 0x3, 0x0, 0x0, {{0x5, 0x0, 0x7ff}, "5354a3d093e573750683102e19570c32e3574664345e4110b74279bf59d022e53990c342c7a516a82198e9f5217e4266f466986c00b8c315908b60469d0b7e53e78fa5a7208820a19d7ca3a70b6342cd2d9469a57f1d253abf3ecde218b41e93898e1224618c73fc71896c397d8ee069f61444f09825a2f0630e021898b883401bbe88065961f1a088c7e74c85a29961e0e547"}}]}, @TCA_EMATCH_TREE_LIST={0x38, 0x2, 0x0, 0x1, [@TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0xffff, 0x3, 0x7}, {0x4, 0x2, 0x7, 0x5}}}, @TCF_EM_NBYTE={0x18, 0x2, 0x0, 0x0, {{0xa68, 0x2, 0xd7}, {0x101, 0x5, 0x0, "990f972ce5"}}}]}]}]}}]}, 0x204}, 0x1, 0x0, 0x0, 0x40}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x600, &(0x7f0000000080)={&(0x7f00000006c0)=ANY=[@ANYBLOB="440000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000008001b000000000004001a80180002"], 0x44}}, 0x0)
r9 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r9, &(0x7f00000002c0), 0x40000000000009f, 0x0)
ioctl$sock_rose_SIOCRSCLRRT(r8, 0x89e4)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
sendto$inet6(r0, &(0x7f0000000180)="1a", 0x1, 0x40, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

12.6286916s ago: executing program 3 (id=1063):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, 0x0, 0x404)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x22, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x18c)
mount$tmpfs(0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f00000000c0))
lchown(&(0x7f0000000080)='./file1\x00', 0xee01, 0xffffffffffffffff)
r4 = socket$kcm(0x10, 0x2, 0x0)
r5 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x7c8})
request_key(&(0x7f0000000280)='big_key\x00', &(0x7f0000000300)={'syz', 0x1}, &(0x7f00000003c0)='/}%\x00', 0xffffffffffffffff)
ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000000200)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
readv(r5, &(0x7f00000000c0)=[{&(0x7f0000000040)=""/85, 0x20}], 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x7, 0x4008032, 0xffffffffffffffff, 0xd06d000)
sendmsg$kcm(r4, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)}, 0x0)
shmget$private(0x0, 0x1000, 0x54000000, &(0x7f0000ffc000/0x1000)=nil)

12.07271284s ago: executing program 1 (id=1065):
syz_open_dev$hiddev(&(0x7f0000000000), 0x7, 0xc2)
r0 = syz_open_dev$hiddev(&(0x7f0000000140), 0x6, 0x109880)
ioctl$HIDIOCSREPORT(r0, 0x400c4808, &(0x7f0000001180)={0x3, 0x2, 0xf})
ioctl$HIDIOCGNAME(0xffffffffffffffff, 0x80404806, &(0x7f00000011c0))
ioctl$HIDIOCGREPORT(r0, 0x400c4807, &(0x7f0000001200)={0x1, 0xffffffff, 0xffff})
syz_usb_connect(0x5, 0x2d, &(0x7f0000001580)={{0x12, 0x1, 0x200, 0x66, 0x65, 0xd3, 0x8, 0x2058, 0x1005, 0x266d, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x3, 0xd, 0x80, 0x2, [{{0x9, 0x4, 0x74, 0x9, 0x1, 0x97, 0x49, 0x80, 0x7f, [], [{{0x9, 0x5, 0x9, 0x8, 0x10, 0xff, 0x9, 0x2}}]}}]}}]}}, 0x0)
r1 = syz_open_dev$evdev(0x0, 0x0, 0x80100)
ioctl$EVIOCGMASK(r1, 0x80104592, 0x0)
r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x4)
write$char_usb(r2, 0x0, 0x0)
read$char_usb(r2, 0x0, 0x0)
syz_usb_control_io$sierra_net(0xffffffffffffffff, 0x0, 0x0)

11.794209675s ago: executing program 4 (id=1066):
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001040)={0x1a, {"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", 0x1000}}, 0x1006)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=[@hoplimit={{0x14, 0x29, 0x34, 0x4}}, @hoplimit={{0x14, 0x29, 0x34, 0xfffffffd}}, @dstopts_2292={{0x90, 0x29, 0x4, {0x4, 0xe, '\x00', [@calipso={0x7, 0x8, {0x1, 0x0, 0x9, 0x9f}}, @generic={0xfe, 0x38, "f4a4a3142ee1e12b9826287997a6b33d89f3d60da1641d9fe3896c3c1b6c130ef4f01be8f5836d417874540898619050b14420ab124b11de"}, @generic={0x80, 0x14, "09e12e5f0b6bdcf72f2ec7008a15fa88b025e0ad"}, @pad1, @ra={0x5, 0x2, 0xbf4}, @hao={0xc9, 0x10, @private2}]}}}, @hoplimit={{0x14}}, @hopopts={{0x80, 0x29, 0x36, {0x5e, 0xc, '\x00', [@generic={0xff, 0x35, "50d650847249ad288702ebd0d654b985e8908defb7ec6c5ff115c58e128b9e3a21c34b45ef9de99984e143ca7c3509a971b2ec429e"}, @pad1, @pad1, @calipso={0x7, 0x28, {0x3, 0x8, 0x0, 0xfff, [0x2, 0x4, 0x966, 0xfffffffffffffff7]}}]}}}, @rthdr={{0x18}}], 0x170}}], 0x1, 0x810)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

10.103891218s ago: executing program 2 (id=1068):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0xa4242, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x13, r0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0xa005, 0x10100}, &(0x7f0000000080)=<r4=>0x0, &(0x7f0000000100)=<r5=>0x0)
r6 = syz_open_dev$tty20(0xc, 0x4, 0x1)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r6, &(0x7f0000000240)={0x20000000})
ioctl$TCSETSW2(r6, 0x402c542c, &(0x7f0000000880)={0xffffff78, 0xaeb, 0x10e57, 0x4, 0xf6, "3ce69208000000f6000200", 0x4, 0x1ff})
syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x230}})
io_uring_enter(r3, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240), 0x48100, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000140)=0x79)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000100)=0x7e)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
vmsplice(r8, &(0x7f0000000380)=[{&(0x7f0000013580)="0dd2e7c8926dc6acd0ae6c178054e95986faff9544de5fc4c30adf404da41181a77466ac5075905ea5f50134fdd517a957fe2ee59b61f9fe8d7aabe595ea23de2723e437af0423a56686a4c2d957be1a0ab922fbbd3cb1d8c6ab0d58440a327c8eb05d445b4ac5f20abe449e4084f8b996268d0564f67980d3ed3479e0edfe5cec7b4f89bface391c9c4c58ad123b91c33173c72326d1df18804a9ea20f9ece48f784d8ca2318e3d2b316666b5dfb7295c4915989d5bcb120e8fedaa97b93a137c256ce4", 0x20013644}, {&(0x7f0000013680)="c578381bf5113dad8319d9ea5294285ae9a90384ce23866477bef9de4399237d8b3522c9c194e71edaf3332a2f169682f9d8fa271683d4d441b710409e506333e0c3b64e52e8720734b6787f4a84f5bebb046649c6c697d978affd349031b2cd874c7a8961a586a9f2d62f945e7a5bf2f5f7a31684c0503704881d2578a2a98ac3ef4e4a4b0dcdb70db735d5c1652eed3848b2dd4131bb0eb7cfadfaf5", 0x9d}], 0x2, 0x0)
write$binfmt_script(r8, &(0x7f0000000400)={'#! ', './file0'}, 0xb)
r9 = dup(r0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
write$6lowpan_enable(r9, &(0x7f0000000000)='0', 0xfffffd86)

9.67164712s ago: executing program 2 (id=1069):
socket$inet6(0xa, 0x2, 0x0)
syz_io_uring_setup(0x28a8, 0x0, 0x0, &(0x7f00000000c0))
socketpair$unix(0x1, 0x2, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x38)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @pix={0x434c, 0x8, 0x584e4f53, 0x4, 0x2, 0x7, 0x0, 0x5, 0x1, 0x4, 0x2, 0x7}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$KVM_GET_PIT2(r0, 0x8070ae9f, &(0x7f0000000380))
r2 = openat(0xffffffffffffff9c, 0x0, 0x401c2, 0x0)
ftruncate(r2, 0x8800000)
sendfile(0xffffffffffffffff, r2, 0x0, 0x578410eb)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x0, @thr={0x0, &(0x7f0000000380)}}, &(0x7f0000000100))

9.671283337s ago: executing program 0 (id=1070):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socket$inet6(0xa, 0x3, 0x7)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x24, 0x10, 0x701, 0x0, 0xffffffff, {0xa}, [@typed={0x6, 0x1, 0x0, 0x0, @str='\x14\x00'}, @typed={0x8, 0xa, 0x0, 0x0, @fd=r3}]}, 0x24}}, 0x20008080)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x15, 0x1c, &(0x7f0000000100)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0xcd9}, {{}, {}, {0x7, 0x0, 0xb, 0x6}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x6, 0x1, 0xa, 0x9, 0x8}, {0x7, 0x0, 0x0, 0x8}, {0x7, 0x1, 0xb, 0x4, 0x8}, {}, {0x7, 0x0, 0xc}, {0x18, 0x6, 0x2, 0x0, r4}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @sk_reuseport=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = socket(0x10, 0x3, 0x0)
r6 = openat$sysfs(0xffffff9c, &(0x7f0000000000)='/sys/kernel/profiling', 0x42242, 0x73)
socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x2, 0x300)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f0000002140)=ANY=[@ANYBLOB="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"/2734], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040)}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000700)={r7, 0xc0, &(0x7f0000000640)={0x0, <r8=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10)
r9 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000140)={r8}, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r9, 0x108, 0xe, 0x2f, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0xf000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
socket$netlink(0x10, 0x3, 0x4)
r10 = openat$cgroup_devices(r6, &(0x7f0000000280)='devices.deny\x00', 0x2, 0x0)
write(r10, &(0x7f00000002c0)="0e0100120f0a00110001926c000000002e0c7000f5fe0012ff000000078a", 0xfffffffffffffde2)
pwritev(r6, &(0x7f0000000400)=[{&(0x7f0000000040)='9G', 0x2}, {0x0}], 0x2, 0xffffff01, 0xa)
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f0000000240)={0x2, &(0x7f0000000400)=[{0x28, 0x0, 0x0, 0xffffefff}, {0x6, 0x0, 0x0, 0x8006}]}, 0x10)
sendto$inet6(r5, &(0x7f0000000100)="c10e000018001f06b9409b0dffff110d0207be040205060506100a044300040018000000fac8388827a685a168d9a44604094565360c648dcaaf6c26c291214549932fde4a460c89b6ec0cff3959547f509058ba86c902fc3a10004a320c0400160012000a00000000000000000000080756ede4ccbe5880", 0xec1, 0x0, 0x0, 0x9e5e111c47e3504f)

9.665536648s ago: executing program 4 (id=1071):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x0, 0x42, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$evdev(0x0, 0x40002, 0xa69c0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[], 0x0, 0x4a}, 0x28)
io_uring_setup(0x2eff, &(0x7f0000000340)={0x0, 0xe8e5, 0x4000, 0xfffffffd, 0x290})
io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x1e, 0x0, 0x0)
mkdir(0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000700)='mounts\x00')
read$FUSE(r3, &(0x7f0000000980)={0x2020}, 0x2020)
r4 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), r4)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f00000000c0)={'ip6tnl0\x00', &(0x7f0000000000)={'syztnl1\x00', r5, 0x4, 0x4, 0x0, 0xe2, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @dev, 0x80, 0x0, 0xffffffff, 0x1}})

7.633927331s ago: executing program 1 (id=1072):
r0 = syz_usb_connect$hid(0x3, 0x87, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x403, 0x6030, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x2}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f00000001c0)={0x0, 0x22, 0x2, {[@main=@item_012={0x1, 0x0, 0x0, ')'}]}}, 0x0}, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, &(0x7f00000004c0)={0x0, 0x14, 0xd, "5e6424818327b2369deca65eb2"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, &(0x7f0000000880)={0x84, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000680)={0x2c, 0x0, 0x0, 0x0, &(0x7f00000007c0)={0x20, 0x1, 0x5, "c768faee57"}, 0x0})

7.559428087s ago: executing program 0 (id=1073):
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, &(0x7f0000000340))
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94)
close(r3)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x121202, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000380)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, 0x0, 0x0, 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)

7.556383318s ago: executing program 4 (id=1074):
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r0 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xfffffff9)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/231, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/70, 0x100000})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0x73, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000002c0)={0x1, r1})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x32, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffb2, 0x0, 0x0, 0x10, 0x5}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)

5.701617889s ago: executing program 0 (id=1075):
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@newlink={0x38, 0x10, 0x801, 0x4000000, 0xfffffffc, {0x0, 0x0, 0x4c, 0x0, 0x204e9, 0x500}, [@IFLA_GROUP={0x8}, @IFLA_OPERSTATE={0x5, 0x10, 0x5}, @IFLA_GSO_MAX_SEGS={0x8, 0x28, 0x4529}]}, 0x38}, 0x1, 0xffffa888}, 0x20000880)

5.628622347s ago: executing program 4 (id=1076):
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet_udp(0x2, 0x2, 0x0)
r0 = getpgid(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0xb)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x25dfdbff, 0x2fdfffffd}, 0xc)
r4 = socket$inet6_sctp(0xa, 0x801, 0x84)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, 0x0, &(0x7f0000000080))
r6 = openat$comedi(0xffffff9c, &(0x7f0000000100)='/dev/comedi3\x00', 0x101001, 0x0)
ioctl$COMEDI_DEVCONFIG(r6, 0x40946400, &(0x7f0000000140)={'comedi_bond\x00', [0x3, 0x2, 0x7fffffff, 0x84e1, 0x2f, 0x2006, 0x80000001, 0x8, 0x80ffa, 0x0, 0x0, 0x8500, 0x1003, 0x1000004, 0xf, 0x10000, 0xffffffa8, 0x7ffffffd, 0x1ff, 0x9ea, 0x10, 0x40000, 0x8, 0x5, 0x746f, 0x8, 0x5, 0x8, 0x0, 0x4, 0x7ffd]})
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r4, 0x84, 0xa, &(0x7f0000000080)={0x8efd, 0x0, 0x4, 0x800, 0xc0, 0x1, 0x67, 0x401}, 0x20)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="09000000060000"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000), 0x0, 0xce4, r7}, 0x38)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x9, &(0x7f00000000c0)=0x1, 0x4)
r8 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r8)
ptrace$pokeuser(0x6, r8, 0x118, 0x137db)
ptrace$pokeuser(0x6, r8, 0xfc, 0x6000003f)
connect$llc(0xffffffffffffffff, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, 0x10)
accept4$tipc(0xffffffffffffffff, 0x0, 0x0, 0x800)

5.556973614s ago: executing program 2 (id=1077):
r0 = syz_usb_connect(0x0, 0x1cb, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000122f0d4071040403dfe4000000010902b901010000003f0904"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$sierra_net(r0, 0x0, &(0x7f00000034c0)={0x1c, &(0x7f0000002fc0)={0x0, 0x1, 0x1, "da"}, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$sierra_net(r0, 0x0, 0x0)

5.446284515s ago: executing program 0 (id=1078):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f066bbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8c, 0x0)
r3 = syz_open_dev$cec(&(0x7f0000000080), 0x0, 0xe8c00)
io_setup(0x3, &(0x7f0000000180)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f0000000800)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r3, 0x0}])

3.38953798s ago: executing program 2 (id=1079):
socket$nl_generic(0x10, 0x3, 0x10)
pipe2(&(0x7f0000001cc0)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
socket$rds(0x15, 0x5, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000080)={@mcast2, 0x400009, 0x2, 0x1, 0x8, 0x310, 0xfff}, 0x20)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
syz_usb_connect$uac1(0x3, 0xa4, &(0x7f0000000040)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d2405000005000000000000000c240000e9fffff5ffffffff092403f3ff0000050245", @ANYRES8=r1, @ANYBLOB="05"], 0x0)

3.01171566s ago: executing program 0 (id=1080):
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
pipe2$9p(&(0x7f0000000a00)={<r0=>0xffffffffffffffff}, 0x4000)
fcntl$addseals(r0, 0x409, 0xa)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
ioprio_set$pid(0x2, 0x0, 0x4000)
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$rxrpc(0x21, 0x2, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0xfffffffc}, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = socket$netlink(0x10, 0x3, 0xa)
r4 = dup(r3)
r5 = open(&(0x7f0000000040)='./file1\x00', 0x1850c2, 0x14c)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x80141, 0x0)
ftruncate(r5, 0x200004)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000007240)=[{{&(0x7f0000000100)={0xa, 0x4e22, 0x6, @mcast2, 0x7}, 0x1c, 0x0}}, {{0x0, 0x0, 0x0}}, {}], 0x3, 0x1c000)
sendfile(r4, r5, 0x0, 0x80001d00c0d1)

2.972231163s ago: executing program 1 (id=1081):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x1102})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
close(r1)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x0)
writev(r0, &(0x7f0000000240)=[{&(0x7f0000000140)="89e7ee2c78dad9b4b473e4c988cafb0c7d1b14032a9e6dcd01564ea909f178a2bbfb276442e2f7a282a5babc7bb83bbc486ed670e6310b7bcc303c", 0x3b}], 0x1)

2.449946419s ago: executing program 3 (id=1082):
r0 = signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mkdir(&(0x7f0000000140)='./control\x00', 0x5)
close(r0)
r4 = inotify_init1(0x800)
fcntl$setstatus(r0, 0x4, 0x2c00)
r5 = gettid()
fcntl$setown(r0, 0x8, r5)
rt_sigprocmask(0x0, 0x0, 0x0, 0x0)
rt_sigtimedwait(&(0x7f0000000040)={[0xffffffffffff7ff8]}, 0x0, 0x0, 0x8)
inotify_add_watch(r4, &(0x7f0000000180)='./control\x00', 0xa4000960)
rmdir(&(0x7f0000000100)='./control\x00')

2.251588999s ago: executing program 2 (id=1083):
socket$netlink(0x10, 0x3, 0x0)
creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))
r0 = socket$packet(0x11, 0x3, 0x300)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0xc1)
socket$nl_generic(0x10, 0x3, 0x10)
socket$netlink(0x10, 0x3, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/cpuinfo\x00', 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r1 = creat(0x0, 0x18a)
syz_usb_connect$uac1(0x0, 0xa4, &(0x7f0000001200)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d2405000005000000000000000c240000e9fffff5ffffffff092403f3", @ANYRES8=r1, @ANYRES64=r0], 0x0)

1.69750721s ago: executing program 4 (id=1084):
syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00')
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000140)=ANY=[@ANYBLOB="12010000413f5f201d0650c16fce0102030109021b00010000100009043300011870f500090582020002"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f000001b7c0)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, 0x0, 0x30}}], 0x1, 0x4008804)
syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0xa8, &(0x7f0000000040)=ANY=[@ANYBLOB])

1.632898349s ago: executing program 0 (id=1085):
syz_open_dev$hiddev(&(0x7f0000000000), 0x7, 0xc2)
r0 = syz_open_dev$hiddev(&(0x7f0000000140), 0x6, 0x109880)
ioctl$HIDIOCSREPORT(r0, 0x400c4808, &(0x7f0000001180)={0x3, 0x2, 0xf})
ioctl$HIDIOCGNAME(0xffffffffffffffff, 0x80404806, &(0x7f00000011c0))
ioctl$HIDIOCGREPORT(r0, 0x400c4807, &(0x7f0000001200)={0x1, 0xffffffff, 0xffff})
syz_usb_connect(0x5, 0x2d, &(0x7f0000001580)={{0x12, 0x1, 0x200, 0x66, 0x65, 0xd3, 0x8, 0x2058, 0x1005, 0x266d, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x3, 0xd, 0x80, 0x2, [{{0x9, 0x4, 0x74, 0x9, 0x1, 0x97, 0x49, 0x80, 0x7f, [], [{{0x9, 0x5, 0x9, 0x8, 0x10, 0xff, 0x9, 0x2}}]}}]}}]}}, 0x0)
r1 = syz_open_dev$evdev(0x0, 0x0, 0x80100)
ioctl$EVIOCGMASK(r1, 0x80104592, 0x0)
r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x4)
write$char_usb(r2, 0x0, 0x0)
read$char_usb(r2, 0x0, 0x0)
syz_usb_control_io$sierra_net(0xffffffffffffffff, 0x0, 0x0)

1.355608044s ago: executing program 2 (id=1086):
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, &(0x7f0000000340))
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94)
close(r3)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x121202, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000380)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[], 0x0, 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)

1.202271257s ago: executing program 3 (id=1087):
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r0 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xfffffff9)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/231, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/70, 0x100000})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0x73, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000002c0)={0x1, r1})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x32, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffb2, 0x0, 0x0, 0x10, 0x5}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)

0s ago: executing program 3 (id=1088):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd29, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xc, 0xf}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_RSC={0x10, 0x1, {0x0, 0xfffffffe, 0x4}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x8801}, 0x20008850)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
socket$unix(0x1, 0x5, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000780)=@newtfilter={0x44, 0x2c, 0xd3f, 0x70bd24, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0xfff1, 0xffe0}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_CT_STATE={0x6, 0x5b, 0x4}, @TCA_FLOWER_CLASSID={0x8, 0x1, {0x6, 0x5}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)

kernel console output (not intermixed with test programs):

terface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  279.948100][ T5921] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  279.959409][ T5921] usb 2-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00
[  279.960703][   T24] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  279.972568][ T5921] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  279.984573][ T5903] usb 5-1: no configurations
[  279.989231][ T5903] usb 5-1: can't read configurations, error -22
[  280.006636][ T5921] usb 2-1: config 0 descriptor??
[  280.129998][   T24] usb 4-1: Using ep0 maxpacket: 32
[  280.137775][   T24] usb 4-1: config 0 has an invalid interface number: 67 but max is 0
[  280.148366][   T24] usb 4-1: config 0 has no interface number 0
[  280.150370][ T5903] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  280.165603][   T24] usb 4-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  280.180437][   T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  280.188626][   T24] usb 4-1: Product: syz
[  280.192994][   T24] usb 4-1: Manufacturer: syz
[  280.197647][   T24] usb 4-1: SerialNumber: syz
[  280.208698][   T24] usb 4-1: config 0 descriptor??
[  280.231000][   T24] smsc95xx v2.0.0
[  280.239898][ T5963] usb 1-1: new high-speed USB device number 38 using dummy_hcd
[  280.331187][ T5903] usb 5-1: no configurations
[  280.337272][ T5903] usb 5-1: can't read configurations, error -22
[  280.401775][ T7923] netlink: 'syz.2.629': attribute type 4 has an invalid length.
[  280.410736][ T7923] netlink: 1601 bytes leftover after parsing attributes in process `syz.2.629'.
[  280.493918][ T5963] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  280.684568][ T5963] usb 1-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  280.750612][ T5963] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  280.830691][ T5963] usb 1-1: config 0 descriptor??
[  280.868447][   T24] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[  280.991861][ T5963] pwc: Askey VC010 type 2 USB webcam detected.
[  281.004430][   T24] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  281.033982][ T5903] usb usb5-port1: attempt power cycle
[  281.040242][ T5921] usbhid 2-1:0.0: can't add hid device: -71
[  281.046323][ T5921] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  281.058789][ T5921] usb 2-1: USB disconnect, device number 35
[  281.219578][   T24] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -32
[  281.241374][   T24] smsc95xx 4-1:0.67: probe with driver smsc95xx failed with error -32
[  281.348991][ T7934] tipc: Failed to remove unknown binding: 66,1,1/0:2437884322/2437884324
[  281.376962][ T5963] pwc: recv_control_msg error -32 req 02 val 2b00
[  281.385777][ T5963] pwc: recv_control_msg error -71 req 02 val 2700
[  281.395776][ T5963] pwc: recv_control_msg error -71 req 02 val 2c00
[  281.400611][ T5903] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  281.406193][ T5963] pwc: recv_control_msg error -71 req 04 val 1000
[  281.418205][ T5963] pwc: recv_control_msg error -71 req 04 val 1300
[  281.425304][ T5963] pwc: recv_control_msg error -71 req 04 val 1400
[  281.441872][ T5963] pwc: recv_control_msg error -71 req 02 val 2000
[  281.444966][ T5903] usb 5-1: no configurations
[  281.453825][ T5903] usb 5-1: can't read configurations, error -22
[  281.460518][ T5963] pwc: recv_control_msg error -71 req 02 val 2100
[  281.467528][ T5963] pwc: recv_control_msg error -71 req 04 val 1500
[  281.474657][ T5963] pwc: recv_control_msg error -71 req 02 val 2500
[  281.481734][ T5963] pwc: recv_control_msg error -71 req 02 val 2400
[  281.488868][ T5963] pwc: recv_control_msg error -71 req 02 val 2600
[  281.496049][ T5963] pwc: recv_control_msg error -71 req 02 val 2900
[  281.503187][ T5963] pwc: recv_control_msg error -71 req 02 val 2800
[  281.510494][ T5963] pwc: recv_control_msg error -71 req 04 val 1100
[  281.517730][ T5963] pwc: recv_control_msg error -71 req 04 val 1200
[  281.528906][ T5963] pwc: Registered as video103.
[  281.539837][ T5921] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[  281.550586][ T5963] input: PWC snapshot button as /devices/platform/dummy_hcd.0/usb1/1-1/input/input17
[  281.573202][ T5963] usb 1-1: USB disconnect, device number 38
[  281.597954][ T5903] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[  281.637156][ T5903] usb 5-1: no configurations
[  281.642006][ T5903] usb 5-1: can't read configurations, error -22
[  281.651629][ T5903] usb usb5-port1: unable to enumerate USB device
[  281.711710][ T5921] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  281.727264][ T5921] usb 2-1: config 0 has no interfaces?
[  281.741082][ T5921] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  281.759792][ T5921] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  281.782315][ T5921] usb 2-1: config 0 descriptor??
[  282.091794][ T7944] fuse: Unknown parameter 'fd0x0000000000000004'
[  282.200582][ T5921] usb 1-1: new high-speed USB device number 39 using dummy_hcd
[  282.246270][ T5963] usb 2-1: USB disconnect, device number 36
[  282.361757][ T5921] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  282.372911][ T5921] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  282.382832][ T5921] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  282.395947][ T5921] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  282.405148][ T5921] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  282.417265][ T5921] usb 1-1: config 0 descriptor??
[  282.764258][ T5963] usb 4-1: USB disconnect, device number 26
[  282.900015][ T5921] plantronics 0003:047F:FFFF.0013: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  284.178924][ T7959] netlink: 28 bytes leftover after parsing attributes in process `syz.3.645'.
[  284.357725][ T7975] netlink: 16 bytes leftover after parsing attributes in process `syz.2.649'.
[  284.651296][ T7962] loop4: detected capacity change from 0 to 40427
[  284.662734][ T7962] F2FS-fs (loop4): build fault injection rate: 174
[  284.679577][ T7962] F2FS-fs (loop4): build fault injection type: 0x3bfe8c
[  284.691441][ T7962] F2FS-fs (loop4): invalid crc value
[  284.886550][ T7962] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  284.911023][ T7962] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  285.037377][ T5963] usb 1-1: USB disconnect, device number 39
[  285.200914][ T7995] fuse: Bad value for 'fd'
[  285.924562][ T8000] syz.4.646: attempt to access beyond end of device
[  285.924562][ T8000] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  285.975320][ T8000] syz.4.646: attempt to access beyond end of device
[  285.975320][ T8000] loop4: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  287.188153][ T5844] syz-executor: attempt to access beyond end of device
[  287.188153][ T5844] loop4: rw=2049, sector=45112, nr_sectors = 8 limit=40427
[  287.230154][ T5844] CPU: 1 UID: 0 PID: 5844 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  287.230186][ T5844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  287.230200][ T5844] Call Trace:
[  287.230209][ T5844]  <TASK>
[  287.230219][ T5844]  dump_stack_lvl+0xe8/0x150
[  287.230263][ T5844]  f2fs_handle_critical_error+0x37c/0x540
[  287.230307][ T5844]  f2fs_write_end_io+0xcdb/0xff0
[  287.230330][ T5844]  ? __submit_merged_bio+0x256/0x650
[  287.230385][ T5844]  __submit_merged_bio+0x256/0x650
[  287.230427][ T5844]  __submit_merged_write_cond+0x3c3/0x4e0
[  287.230471][ T5844]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  287.230534][ T5844]  f2fs_write_data_pages+0x2970/0x35e0
[  287.230556][ T5844]  ? __lock_acquire+0x6b5/0x2cf0
[  287.230652][ T5844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  287.230693][ T5844]  ? css_rstat_updated+0x23a/0x530
[  287.230764][ T5844]  ? rcu_is_watching+0x15/0xb0
[  287.230794][ T5844]  ? mod_memcg_lruvec_state+0x1b8/0x320
[  287.230826][ T5844]  ? lru_gen_update_size+0x7c9/0xd10
[  287.230867][ T5844]  ? __lock_acquire+0x6b5/0x2cf0
[  287.230928][ T5844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  287.230953][ T5844]  do_writepages+0x32e/0x550
[  287.230993][ T5844]  ? do_raw_spin_unlock+0xf5/0x210
[  287.231032][ T5844]  filemap_fdatawrite+0x1e9/0x2f0
[  287.231064][ T5844]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  287.231147][ T5844]  ? do_raw_spin_unlock+0xf5/0x210
[  287.231187][ T5844]  f2fs_sync_dirty_inodes+0x30e/0x810
[  287.231233][ T5844]  f2fs_write_checkpoint+0x9cf/0x2680
[  287.231256][ T5844]  ? __lock_acquire+0x6b5/0x2cf0
[  287.231319][ T5844]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  287.231407][ T5844]  kill_f2fs_super+0x314/0x720
[  287.231441][ T5844]  ? __pfx_kill_f2fs_super+0x10/0x10
[  287.231483][ T5844]  ? lockdep_hardirqs_on+0x7a/0x110
[  287.231528][ T5844]  deactivate_locked_super+0xbc/0x130
[  287.231561][ T5844]  cleanup_mnt+0x437/0x4d0
[  287.231610][ T5844]  ? _raw_spin_unlock_irq+0x23/0x50
[  287.231638][ T5844]  task_work_run+0x1d9/0x270
[  287.231665][ T5844]  ? __pfx_task_work_run+0x10/0x10
[  287.231701][ T5844]  exit_to_user_mode_loop+0xed/0x480
[  287.231726][ T5844]  ? rcu_is_watching+0x15/0xb0
[  287.231758][ T5844]  do_syscall_64+0x2b7/0xf80
[  287.231783][ T5844]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  287.231804][ T5844]  ? trace_irq_disable+0x37/0x100
[  287.231832][ T5844]  ? clear_bhb_loop+0x40/0x90
[  287.231860][ T5844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  287.231882][ T5844] RIP: 0033:0x7f4c7cd9c117
[  287.231904][ T5844] Code: a2 c7 05 7c 94 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  287.231924][ T5844] RSP: 002b:00007fffe5a890c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  287.231947][ T5844] RAX: 0000000000000000 RBX: 00007f4c7ce0471f RCX: 00007f4c7cd9c117
[  287.231962][ T5844] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fffe5a89180
[  287.231975][ T5844] RBP: 00007fffe5a89180 R08: 00007fffe5a8a180 R09: 00000000ffffffff
[  287.231990][ T5844] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffe5a8a210
[  287.232005][ T5844] R13: 00007f4c7ce0471f R14: 0000000000045e08 R15: 00007fffe5a8a250
[  287.232045][ T5844]  </TASK>
[  287.233341][ T5844] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  287.529908][ T5896] usb 1-1: new high-speed USB device number 40 using dummy_hcd
[  287.922431][ T5896] usb 1-1: Using ep0 maxpacket: 32
[  287.953700][ T8014] netlink: 16 bytes leftover after parsing attributes in process `syz.1.661'.
[  287.968413][ T5896] usb 1-1: config index 0 descriptor too short (expected 35577, got 27)
[  287.990131][ T5896] usb 1-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  287.998828][ T5896] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 92
[  288.053901][ T5896] usb 1-1: config 1 has no interface number 0
[  288.069856][ T5896] usb 1-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  288.107137][ T5896] usb 1-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  288.135980][ T5896] usb 1-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  288.193147][ T5896] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  288.234133][ T5896] snd_usb_pod 1-1:1.1: Line 6 Pocket POD found
[  288.442818][ T5896] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now attached
[  288.459810][ T5963] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[  288.488775][ T8012] netlink: 28 bytes leftover after parsing attributes in process `syz.3.662'.
[  288.622210][ T5963] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  288.644586][ T5963] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  288.658347][ T5896] usb 1-1: USB disconnect, device number 40
[  288.668169][ T5963] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  288.679197][ T5896] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now disconnected
[  288.695923][ T5963] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  288.720251][ T5963] usb 2-1: SerialNumber: syz
[  288.953486][ T5963] usb 2-1: 0:2 : does not exist
[  288.979926][ T5963] usb 2-1: unit 5 not found!
[  289.448290][ T5963] usb 2-1: USB disconnect, device number 37
[  289.503134][ T6076] udevd[6076]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  289.910102][ T5963] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[  290.071670][ T5963] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  290.082187][   T30] audit: type=1326 audit(2000000159.460:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8043 comm="syz.0.672" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3bfcd9aeb9 code=0x0
[  290.103951][ T5963] usb 5-1: config 0 has no interfaces?
[  290.109494][ T5963] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  290.119419][ T5963] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  290.132377][ T5963] usb 5-1: config 0 descriptor??
[  291.361524][ T8058] mmap: syz.1.675 (8058) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  291.552553][ T8053] netlink: 28 bytes leftover after parsing attributes in process `syz.2.674'.
[  291.591472][ T5921] usb 1-1: new high-speed USB device number 41 using dummy_hcd
[  291.779825][ T5921] usb 1-1: Using ep0 maxpacket: 32
[  291.798246][ T5921] usb 1-1: config index 0 descriptor too short (expected 35577, got 27)
[  291.823600][ T5921] usb 1-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  291.865112][ T5921] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 92
[  291.896020][ T5921] usb 1-1: config 1 has no interface number 0
[  291.919402][ T5921] usb 1-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  291.960126][ T5921] usb 1-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  291.993599][ T5921] usb 1-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  292.019824][ T5921] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  292.067098][ T5921] snd_usb_pod 1-1:1.1: Line 6 Pocket POD found
[  292.268459][ T5921] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now attached
[  292.472147][ T5921] usb 1-1: USB disconnect, device number 41
[  292.480648][ T5921] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now disconnected
[  292.662358][ T8071] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  293.283331][ T5963] usb 5-1: USB disconnect, device number 38
[  293.483474][ T8080] netlink: 8 bytes leftover after parsing attributes in process `syz.1.683'.
[  293.710240][ T5963] usb 1-1: new high-speed USB device number 42 using dummy_hcd
[  293.873931][ T5963] usb 1-1: Using ep0 maxpacket: 32
[  293.881535][ T8087] netlink: 28 bytes leftover after parsing attributes in process `syz.1.688'.
[  293.892912][ T5963] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  293.922317][ T5963] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  293.945698][ T5963] usb 1-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  293.966446][ T5963] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  293.997549][ T5963] usb 1-1: config 0 descriptor??
[  294.339817][ T5896] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  294.445318][ T5963] ft260 0003:0403:6030.0014: unknown main item tag 0x0
[  294.491971][ T5896] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  294.502701][ T5896] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  294.632591][ T5963] ft260 0003:0403:6030.0014: failed to retrieve chip version
[  294.652704][ T5963] ft260 0003:0403:6030.0014: probe with driver ft260 failed with error -5
[  295.181807][ T5896] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  295.226092][ T5896] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  295.261745][ T5896] usb 4-1: SerialNumber: syz
[  295.717863][ T5896] usb 4-1: 0:2 : does not exist
[  295.723080][ T5896] usb 4-1: unit 5 not found!
[  295.768788][ T5896] usb 4-1: USB disconnect, device number 27
[  295.861318][ T6026] udevd[6026]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  296.232599][ T8120] overlay: Unknown parameter 'subj_user'
[  296.858303][ T5963] usb 1-1: USB disconnect, device number 42
[  298.344690][ T8132] netlink: 28 bytes leftover after parsing attributes in process `syz.2.704'.
[  298.510434][ T5921] usb 2-1: new high-speed USB device number 38 using dummy_hcd
[  298.698604][ T5921] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  298.718762][ T5921] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  298.749432][ T5921] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  298.774728][ T5921] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  298.801029][ T5921] usb 2-1: config 0 descriptor??
[  299.110343][   T24] usb 1-1: new high-speed USB device number 43 using dummy_hcd
[  299.272802][   T24] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  299.283298][   T24] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  299.296037][   T24] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  299.306184][ T5963] usb 5-1: new high-speed USB device number 39 using dummy_hcd
[  299.314057][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  299.322533][   T24] usb 1-1: SerialNumber: syz
[  299.472290][ T5963] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  299.483667][ T5963] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  299.501781][ T5963] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  299.511211][ T5963] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  299.519332][ T5963] usb 5-1: SerialNumber: syz
[  299.551919][   T24] usb 1-1: 0:2 : does not exist
[  299.778556][ T5963] usb 5-1: 0:2 : does not exist
[  299.786214][   T24] usb 1-1: USB disconnect, device number 43
[  299.792357][ T5963] usb 5-1: unit 5 not found!
[  300.024658][ T5963] usb 5-1: USB disconnect, device number 39
[  300.587077][ T5962] udevd[5962]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card4/controlC4/../uevent} for writing: No such file or directory
[  300.613475][ T6076] udevd[6076]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  300.847221][ T8183] overlayfs: failed to resolve './file0': -2
[  301.344280][ T5921] usb 2-1: USB disconnect, device number 38
[  301.819856][ T5921] usb 2-1: new high-speed USB device number 39 using dummy_hcd
[  301.879849][ T5896] usb 5-1: new high-speed USB device number 40 using dummy_hcd
[  302.020583][ T8202] netlink: 'syz.3.727': attribute type 4 has an invalid length.
[  302.028382][ T8202] netlink: 1601 bytes leftover after parsing attributes in process `syz.3.727'.
[  302.589821][ T5921] usb 2-1: Using ep0 maxpacket: 32
[  302.596917][ T5921] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  302.611648][ T5921] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  302.622171][ T5921] usb 2-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  302.632462][ T5921] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  302.644580][ T5921] usb 2-1: config 0 descriptor??
[  302.673442][ T5896] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  302.691307][ T5896] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  302.728163][ T5896] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  302.758723][ T5896] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  302.773552][ T5896] usb 5-1: SerialNumber: syz
[  303.261493][ T5963] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  303.642030][ T5963] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  303.655263][ T5963] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  303.668863][ T5963] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  303.680015][ T5963] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  303.688075][ T5963] usb 4-1: SerialNumber: syz
[  303.715785][ T5921] ft260 0003:0403:6030.0015: unknown main item tag 0x0
[  303.731143][ T5896] usb 5-1: 0:2 : does not exist
[  303.794743][ T5896] usb 5-1: USB disconnect, device number 40
[  303.803887][ T5921] ft260 0003:0403:6030.0015: failed to retrieve chip version
[  303.826180][ T5921] ft260 0003:0403:6030.0015: probe with driver ft260 failed with error -5
[  304.080648][ T5963] usb 4-1: 0:2 : does not exist
[  304.159526][ T5963] usb 4-1: USB disconnect, device number 28
[  305.191736][ T5969] usb 2-1: USB disconnect, device number 39
[  305.279883][ T5896] usb 5-1: new high-speed USB device number 41 using dummy_hcd
[  305.529936][ T5963] usb 1-1: new high-speed USB device number 44 using dummy_hcd
[  305.705127][ T5963] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  305.719762][ T5963] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  305.729150][ T5963] usb 1-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  305.741866][ T5963] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  305.768435][ T5963] usb 1-1: config 0 descriptor??
[  306.124359][ T5896] usb 5-1: Using ep0 maxpacket: 32
[  306.148883][ T5896] usb 5-1: config 0 has an invalid interface number: 51 but max is 0
[  306.158529][ T5896] usb 5-1: config 0 has no interface number 0
[  306.177369][ T5896] usb 5-1: config 0 interface 51 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  306.194299][ T5896] usb 5-1: config 0 interface 51 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  306.221215][ T5896] usb 5-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  306.233140][ T5896] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  306.242691][ T5896] usb 5-1: Product: syz
[  306.247845][ T5896] usb 5-1: Manufacturer: syz
[  306.254213][ T5896] usb 5-1: SerialNumber: syz
[  306.266797][ T5896] usb 5-1: config 0 descriptor??
[  306.280772][ T5896] quatech2 5-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  306.859793][ T8245] netlink: 'syz.3.740': attribute type 4 has an invalid length.
[  306.867602][ T8245] netlink: 1601 bytes leftover after parsing attributes in process `syz.3.740'.
[  307.266790][ T5896] usb 5-1: qt2_setup_urbs - submit read urb failed -90
[  307.288570][ T5896] quatech2 5-1:0.51: probe with driver quatech2 failed with error -90
[  307.322816][ T5896] usb 5-1: USB disconnect, device number 41
[  307.456492][ T8252] overlayfs: failed to clone upperpath
[  307.879902][ T5963] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[  308.109608][ T5963] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  308.177012][ T5963] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  308.206100][ T5963] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  308.225789][ T5963] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  308.283462][ T5963] usb 4-1: SerialNumber: syz
[  308.359951][ T5896] usb 1-1: USB disconnect, device number 44
[  308.517959][  T801] usb 5-1: new high-speed USB device number 42 using dummy_hcd
[  308.668193][ T8266] fuse: Bad value for 'fd'
[  308.986766][ T5963] usb 4-1: 0:2 : does not exist
[  309.219831][  T801] usb 5-1: Using ep0 maxpacket: 32
[  309.237224][  T801] usb 5-1: config 0 has an invalid interface number: 188 but max is 0
[  309.270214][  T801] usb 5-1: config 0 has no interface number 0
[  309.276408][  T801] usb 5-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[  309.319875][  T801] usb 5-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  309.337175][ T8268] overlayfs: missing 'lowerdir'
[  309.342404][  T801] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  309.356878][ T5963] usb 4-1: USB disconnect, device number 29
[  309.357333][  T801] usb 5-1: Product: syz
[  309.367654][  T801] usb 5-1: Manufacturer: syz
[  309.428527][  T801] usb 5-1: SerialNumber: syz
[  309.434391][ T6076] udevd[6076]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  309.462119][  T801] usb 5-1: config 0 descriptor??
[  309.470238][ T8258] raw-gadget.2 gadget.4: fail, usb_ep_enable returned -22
[  310.290411][ T8258] raw-gadget.2 gadget.4: fail, usb_ep_enable returned -22
[  310.693663][ T8290] overlayfs: failed to clone lowerpath
[  311.236907][  T801] asix 5-1:0.188 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[  311.260368][  T801] asix 5-1:0.188: probe with driver asix failed with error -32
[  312.744719][ T5969] usb 5-1: USB disconnect, device number 42
[  312.960130][ T8306] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  312.968944][ T8306] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  313.756750][ T8321] netlink: 'syz.2.763': attribute type 4 has an invalid length.
[  313.764600][ T8321] netlink: 1601 bytes leftover after parsing attributes in process `syz.2.763'.
[  314.567552][ T8337] overlayfs: failed to resolve './file1': -2
[  318.571472][ T5969] usb 5-1: new high-speed USB device number 43 using dummy_hcd
[  318.870434][ T8357] netlink: 'syz.2.772': attribute type 4 has an invalid length.
[  318.878478][ T8357] netlink: 1601 bytes leftover after parsing attributes in process `syz.2.772'.
[  319.149807][ T5969] usb 5-1: Using ep0 maxpacket: 32
[  319.171180][ T5969] usb 5-1: config 0 has an invalid interface number: 188 but max is 0
[  319.189762][ T5969] usb 5-1: config 0 has no interface number 0
[  319.195969][ T5969] usb 5-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[  319.223614][ T5969] usb 5-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  319.249898][ T5969] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  319.257934][ T5969] usb 5-1: Product: syz
[  319.269804][ T5969] usb 5-1: Manufacturer: syz
[  319.274483][ T5969] usb 5-1: SerialNumber: syz
[  319.292433][ T5969] usb 5-1: config 0 descriptor??
[  319.303384][ T8353] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  319.393549][  T801] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[  319.550218][  T801] usb 4-1: Using ep0 maxpacket: 32
[  319.567888][  T801] usb 4-1: config 0 has an invalid interface number: 51 but max is 0
[  319.589628][ T8353] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  319.599105][  T801] usb 4-1: config 0 has no interface number 0
[  319.617282][  T801] usb 4-1: config 0 interface 51 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  319.643484][  T801] usb 4-1: config 0 interface 51 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  319.668615][  T801] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  319.694677][  T801] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  319.724921][  T801] usb 4-1: Product: syz
[  319.740561][  T801] usb 4-1: Manufacturer: syz
[  319.760196][  T801] usb 4-1: SerialNumber: syz
[  319.790975][  T801] usb 4-1: config 0 descriptor??
[  320.238936][ T5969] asix 5-1:0.188 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[  320.385111][  T801] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  320.413270][  T801] usb 4-1: qt2_setup_urbs - submit read urb failed -90
[  320.431531][  T801] quatech2 4-1:0.51: probe with driver quatech2 failed with error -90
[  320.629739][  T801] usb 4-1: USB disconnect, device number 30
[  320.756428][ T5969] asix 5-1:0.188: probe with driver asix failed with error -32
[  322.536036][ T5969] usb 5-1: USB disconnect, device number 43
[  322.622735][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  322.630335][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  323.122109][ T5969] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[  323.179845][ T5847] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[  323.269951][   T24] usb 1-1: new high-speed USB device number 45 using dummy_hcd
[  323.291562][ T5969] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  323.312223][ T5969] usb 4-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=10.85
[  323.329774][ T5969] usb 4-1: New USB device strings: Mfr=153, Product=195, SerialNumber=0
[  323.339939][ T5847] usb 2-1: Using ep0 maxpacket: 32
[  323.346181][ T5969] usb 4-1: Product: syz
[  323.361415][ T5969] usb 4-1: Manufacturer: syz
[  323.369282][ T5847] usb 2-1: config 0 has an invalid interface number: 51 but max is 0
[  323.379551][ T5969] usb 4-1: config 0 descriptor??
[  323.389752][ T5847] usb 2-1: config 0 has no interface number 0
[  323.395957][ T5847] usb 2-1: config 0 interface 51 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  323.409068][   T30] audit: type=1326 audit(2000000192.800:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8400 comm="syz.2.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26159aeb9 code=0x7ffc0000
[  323.435700][ T5969] pwc: Askey VC010 type 2 USB webcam detected.
[  323.443028][   T24] usb 1-1: Using ep0 maxpacket: 32
[  323.455088][ T5847] usb 2-1: config 0 interface 51 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  323.464506][   T30] audit: type=1326 audit(2000000192.820:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8400 comm="syz.2.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26159aeb9 code=0x7ffc0000
[  323.482402][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  323.510355][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  323.522618][ T5847] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  323.532811][ T5847] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  323.537037][   T30] audit: type=1326 audit(2000000192.840:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8400 comm="syz.2.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc26159aeb9 code=0x7ffc0000
[  323.550124][   T24] usb 1-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  323.577098][ T5847] usb 2-1: Product: syz
[  323.594695][ T5847] usb 2-1: Manufacturer: syz
[  323.599507][ T5847] usb 2-1: SerialNumber: syz
[  323.599969][   T30] audit: type=1326 audit(2000000192.840:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8400 comm="syz.2.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26159aeb9 code=0x7ffc0000
[  323.629770][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  323.652383][   T30] audit: type=1326 audit(2000000192.840:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8400 comm="syz.2.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26159aeb9 code=0x7ffc0000
[  323.654050][ T5847] usb 2-1: config 0 descriptor??
[  323.676888][   T30] audit: type=1326 audit(2000000192.840:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8400 comm="syz.2.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fc26159aeb9 code=0x7ffc0000
[  323.708087][   T30] audit: type=1326 audit(2000000192.840:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8400 comm="syz.2.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26159aeb9 code=0x7ffc0000
[  323.799943][   T30] audit: type=1326 audit(2000000192.840:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8400 comm="syz.2.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26159aeb9 code=0x7ffc0000
[  323.875888][   T30] audit: type=1326 audit(2000000192.840:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8400 comm="syz.2.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fc26159aeb9 code=0x7ffc0000
[  323.944755][   T30] audit: type=1326 audit(2000000192.840:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8400 comm="syz.2.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26159aeb9 code=0x7ffc0000
[  323.969600][ T8396] loop4: detected capacity change from 0 to 40427
[  323.979008][ T8396] F2FS-fs (loop4): build fault injection rate: 174
[  323.986154][ T8396] F2FS-fs (loop4): build fault injection type: 0x3bfe8c
[  323.997348][ T8396] F2FS-fs (loop4): invalid crc value
[  324.250006][ T5969] pwc: recv_control_msg error -32 req 02 val 2b00
[  324.258222][   T24] usb 1-1: config 0 descriptor??
[  324.263737][ T5969] pwc: recv_control_msg error -32 req 02 val 2700
[  324.273533][ T5969] pwc: recv_control_msg error -32 req 02 val 2c00
[  324.286559][ T5847] quatech2 2-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  324.297366][ T5969] pwc: recv_control_msg error -32 req 04 val 1000
[  324.305880][ T5969] pwc: recv_control_msg error -32 req 04 val 1300
[  324.315369][ T5969] pwc: recv_control_msg error -32 req 04 val 1400
[  324.330645][ T5969] pwc: recv_control_msg error -32 req 02 val 2000
[  324.350225][ T5969] pwc: recv_control_msg error -32 req 02 val 2100
[  324.359179][ T5969] pwc: recv_control_msg error -32 req 04 val 1500
[  324.372605][ T8396] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  324.382508][ T5969] pwc: recv_control_msg error -32 req 02 val 2500
[  324.389910][ T5969] pwc: recv_control_msg error -32 req 02 val 2400
[  324.398307][ T8396] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  324.406822][ T5969] pwc: recv_control_msg error -32 req 02 val 2600
[  324.415389][ T5969] pwc: recv_control_msg error -32 req 02 val 2900
[  324.423558][ T5969] pwc: recv_control_msg error -32 req 02 val 2800
[  324.677667][ T5847] usb 2-1: qt2_setup_urbs - submit read urb failed -90
[  324.688749][ T5969] pwc: recv_control_msg error -71 req 04 val 1200
[  324.696504][ T5847] quatech2 2-1:0.51: probe with driver quatech2 failed with error -90
[  324.709127][ T5969] pwc: Registered as video103.
[  324.719483][ T5847] usb 2-1: USB disconnect, device number 40
[  324.727962][ T5969] input: PWC snapshot button as /devices/platform/dummy_hcd.3/usb4/4-1/input/input18
[  324.786739][   T24] ft260 0003:0403:6030.0016: unknown main item tag 0x0
[  324.831853][ T8414] syz.4.785: attempt to access beyond end of device
[  324.831853][ T8414] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  324.854872][ T8414] syz.4.785: attempt to access beyond end of device
[  324.854872][ T8414] loop4: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  325.103225][ T5969] usb 4-1: USB disconnect, device number 31
[  325.170905][   T24] ft260 0003:0403:6030.0016: failed to retrieve chip version
[  325.187066][   T24] ft260 0003:0403:6030.0016: probe with driver ft260 failed with error -5
[  325.354789][ T5844] syz-executor: attempt to access beyond end of device
[  325.354789][ T5844] loop4: rw=2049, sector=45112, nr_sectors = 8 limit=40427
[  325.444256][ T5844] CPU: 0 UID: 0 PID: 5844 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  325.444286][ T5844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  325.444306][ T5844] Call Trace:
[  325.444315][ T5844]  <TASK>
[  325.444324][ T5844]  dump_stack_lvl+0xe8/0x150
[  325.444359][ T5844]  f2fs_handle_critical_error+0x37c/0x540
[  325.444401][ T5844]  f2fs_write_end_io+0xcdb/0xff0
[  325.444425][ T5844]  ? __submit_merged_bio+0x256/0x650
[  325.444474][ T5844]  __submit_merged_bio+0x256/0x650
[  325.444529][ T5844]  __submit_merged_write_cond+0x3c3/0x4e0
[  325.444570][ T5844]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  325.444629][ T5844]  f2fs_write_data_pages+0x2970/0x35e0
[  325.444694][ T5844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  325.444731][ T5844]  ? unwind_next_frame+0xa5/0x23c0
[  325.444761][ T5844]  ? css_rstat_updated+0x23a/0x530
[  325.444826][ T5844]  ? rcu_is_watching+0x15/0xb0
[  325.444855][ T5844]  ? mod_memcg_lruvec_state+0x1b8/0x320
[  325.444886][ T5844]  ? lru_gen_update_size+0x7c9/0xd10
[  325.444923][ T5844]  ? __lock_acquire+0x6b5/0x2cf0
[  325.444980][ T5844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  325.445005][ T5844]  do_writepages+0x32e/0x550
[  325.445061][ T5844]  ? do_raw_spin_unlock+0xf5/0x210
[  325.445099][ T5844]  filemap_fdatawrite+0x1e9/0x2f0
[  325.445130][ T5844]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  325.445210][ T5844]  ? do_raw_spin_unlock+0xf5/0x210
[  325.445246][ T5844]  f2fs_sync_dirty_inodes+0x30e/0x810
[  325.445282][ T5844]  f2fs_write_checkpoint+0x9cf/0x2680
[  325.445307][ T5844]  ? __lock_acquire+0x6b5/0x2cf0
[  325.445353][ T5844]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  325.445418][ T5844]  kill_f2fs_super+0x314/0x720
[  325.445443][ T5844]  ? __pfx_kill_f2fs_super+0x10/0x10
[  325.445473][ T5844]  ? lockdep_hardirqs_on+0x7a/0x110
[  325.445505][ T5844]  deactivate_locked_super+0xbc/0x130
[  325.445530][ T5844]  cleanup_mnt+0x437/0x4d0
[  325.445554][ T5844]  ? _raw_spin_unlock_irq+0x23/0x50
[  325.445576][ T5844]  task_work_run+0x1d9/0x270
[  325.445595][ T5844]  ? __pfx_task_work_run+0x10/0x10
[  325.445621][ T5844]  exit_to_user_mode_loop+0xed/0x480
[  325.445641][ T5844]  ? rcu_is_watching+0x15/0xb0
[  325.445665][ T5844]  do_syscall_64+0x2b7/0xf80
[  325.445686][ T5844]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  325.445704][ T5844]  ? clear_bhb_loop+0x40/0x90
[  325.445726][ T5844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  325.445743][ T5844] RIP: 0033:0x7f4c7cd9c117
[  325.445761][ T5844] Code: a2 c7 05 7c 94 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  325.445776][ T5844] RSP: 002b:00007fffe5a890c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  325.445796][ T5844] RAX: 0000000000000000 RBX: 00007f4c7ce0471f RCX: 00007f4c7cd9c117
[  325.445807][ T5844] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fffe5a89180
[  325.445817][ T5844] RBP: 00007fffe5a89180 R08: 00007fffe5a8a180 R09: 00000000ffffffff
[  325.445829][ T5844] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffe5a8a210
[  325.445840][ T5844] R13: 00007f4c7ce0471f R14: 000000000004f5a3 R15: 00007fffe5a8a250
[  325.445867][ T5844]  </TASK>
[  325.445875][ T5844] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  326.090215][  T801] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[  326.169803][ T5847] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[  326.251922][  T801] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  326.264354][  T801] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  326.276241][  T801] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  326.293645][  T801] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  327.241630][ T5847] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  327.252347][ T5847] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  327.263128][ T5847] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  327.272799][ T5847] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  328.994601][ T8429] loop4: detected capacity change from 0 to 40427
[  329.006792][ T8429] F2FS-fs (loop4): build fault injection rate: 771
[  329.011133][ T5847] usb 4-1: SerialNumber: syz
[  329.019490][ T8429] F2FS-fs (loop4): invalid crc value
[  329.074018][ T5896] usb 1-1: USB disconnect, device number 45
[  329.081562][  T801] usb 2-1: config 0 descriptor??
[  329.322798][ T8429] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  329.343206][  T801] usb 2-1: can't set config #0, error -71
[  329.397505][ T5847] usb 4-1: can't set config #1, error -71
[  329.416425][ T5847] usb 4-1: USB disconnect, device number 32
[  329.553023][  T801] usb 2-1: USB disconnect, device number 41
[  329.689010][   T30] kauditd_printk_skb: 10 callbacks suppressed
[  329.689031][   T30] audit: type=1326 audit(2000000199.070:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8435 comm="syz.3.795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b0b9aeb9 code=0x7ffc0000
[  329.801599][   T30] audit: type=1326 audit(2000000199.070:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8435 comm="syz.3.795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fe0b0b9aeb9 code=0x7ffc0000
[  330.870999][   T30] audit: type=1326 audit(2000000199.070:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8435 comm="syz.3.795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b0b9aeb9 code=0x7ffc0000
[  330.940876][ T8451] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  331.717660][   T30] audit: type=1326 audit(2000000199.070:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8435 comm="syz.3.795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b0b9aeb9 code=0x7ffc0000
[  331.757060][ T8453] xt_hashlimit: size too large, truncated to 1048576
[  331.799811][   T30] audit: type=1326 audit(2000000199.070:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8435 comm="syz.3.795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7fe0b0b9aeb9 code=0x7ffc0000
[  331.871923][   T30] audit: type=1326 audit(2000000199.070:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8435 comm="syz.3.795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b0b9aeb9 code=0x7ffc0000
[  331.914929][ T8460] fuse: Bad value for 'fd'
[  331.960094][   T30] audit: type=1326 audit(2000000199.070:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8435 comm="syz.3.795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b0b9aeb9 code=0x7ffc0000
[  332.037605][   T30] audit: type=1326 audit(2000000199.120:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8442 comm="syz.4.797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c7cd9aeb9 code=0x7ffc0000
[  332.079810][ T5903] usb 5-1: new high-speed USB device number 44 using dummy_hcd
[  332.100056][   T30] audit: type=1326 audit(2000000199.130:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8442 comm="syz.4.797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c7cd9aeb9 code=0x7ffc0000
[  332.148757][   T30] audit: type=1326 audit(2000000199.130:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8442 comm="syz.4.797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4c7cd9aeb9 code=0x7ffc0000
[  332.251855][ T5903] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  332.265896][ T5903] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=10.85
[  332.278111][ T5903] usb 5-1: New USB device strings: Mfr=153, Product=195, SerialNumber=0
[  332.301421][ T5903] usb 5-1: Product: syz
[  332.311334][ T5903] usb 5-1: Manufacturer: syz
[  332.338275][ T5903] usb 5-1: config 0 descriptor??
[  332.356777][ T5903] pwc: Askey VC010 type 2 USB webcam detected.
[  332.760820][ T5903] pwc: recv_control_msg error -32 req 02 val 2b00
[  332.778069][ T5903] pwc: recv_control_msg error -32 req 02 val 2700
[  332.800625][ T5903] pwc: recv_control_msg error -32 req 02 val 2c00
[  332.817510][ T5903] pwc: recv_control_msg error -32 req 04 val 1000
[  332.838835][ T5903] pwc: recv_control_msg error -32 req 04 val 1300
[  332.856389][ T5903] pwc: recv_control_msg error -32 req 04 val 1400
[  332.906548][ T5903] pwc: recv_control_msg error -32 req 02 val 2000
[  332.947197][ T5903] pwc: recv_control_msg error -32 req 02 val 2100
[  332.970792][ T5903] pwc: recv_control_msg error -32 req 04 val 1500
[  332.984071][ T5903] pwc: recv_control_msg error -32 req 02 val 2500
[  332.996710][ T5903] pwc: recv_control_msg error -32 req 02 val 2400
[  333.023618][ T5903] pwc: recv_control_msg error -32 req 02 val 2600
[  333.070202][ T5903] pwc: recv_control_msg error -32 req 02 val 2900
[  333.108002][ T5903] pwc: recv_control_msg error -32 req 02 val 2800
[  333.332864][ T5903] pwc: recv_control_msg error -71 req 04 val 1200
[  333.362070][ T5903] pwc: Registered as video103.
[  333.375438][ T5903] input: PWC snapshot button as /devices/platform/dummy_hcd.4/usb5/5-1/input/input19
[  333.461029][ T5903] usb 5-1: USB disconnect, device number 44
[  333.473922][ T8475] bridge0: port 1(bridge_slave_0) entered disabled state
[  333.528423][ T8475] bridge0: port 2(bridge_slave_1) entered disabled state
[  333.559955][ T5896] usb 2-1: new high-speed USB device number 42 using dummy_hcd
[  335.952195][ T5896] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  336.379758][ T5896] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  336.478565][ T5896] usb 2-1: string descriptor 0 read error: -71
[  336.498970][ T5896] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  336.519512][ T5896] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  336.546649][ T5896] usb 2-1: can't set config #1, error -71
[  336.571509][ T5896] usb 2-1: USB disconnect, device number 42
[  339.972379][ T5903] usb 2-1: new high-speed USB device number 43 using dummy_hcd
[  340.009780][ T5896] usb 5-1: new high-speed USB device number 45 using dummy_hcd
[  340.144319][ T5903] usb 2-1: Using ep0 maxpacket: 32
[  340.161655][ T5903] usb 2-1: config 0 has an invalid interface number: 51 but max is 0
[  340.181871][ T5896] usb 5-1: Using ep0 maxpacket: 32
[  340.193774][ T5903] usb 2-1: config 0 has no interface number 0
[  340.426019][ T8511] loop3: detected capacity change from 0 to 512
[  340.613961][ T8511] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.816: bg 0: block 393: padding at end of block bitmap is not set
[  340.630997][ T8511] loop3: lost filesystem error report for type 5 error -117
[  340.639741][    C1] EXT4-fs (loop3): error count since last fsck: 1
[  340.653651][    C1] EXT4-fs (loop3): initial error at time 2000000210: ext4_validate_block_bitmap:441
[  340.663116][    C1] EXT4-fs (loop3): last error at time 2000000210: ext4_validate_block_bitmap:441
[  340.680835][ T8511] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6687: Corrupt filesystem
[  340.690014][ T8511] loop3: lost filesystem error report for type 5 error -117
[  340.702419][ T8511] EXT4-fs (loop3): 2 truncates cleaned up
[  340.732827][ T8511] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  341.154600][ T5903] usb 2-1: config 0 interface 51 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  341.164961][ T5903] usb 2-1: config 0 interface 51 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  341.175369][ T5896] usb 5-1: config 4 has an invalid interface number: 128 but max is 0
[  341.184002][ T5896] usb 5-1: config 4 has no interface number 0
[  341.191868][ T5896] usb 5-1: config 4 interface 128 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  342.037312][ T5896] usb 5-1: config 4 interface 128 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  342.047720][ T5903] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  342.057540][ T5903] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  342.065759][ T5896] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  342.074920][ T5903] usb 2-1: Product: syz
[  342.079141][ T5903] usb 2-1: Manufacturer: syz
[  342.083869][ T5896] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  342.091971][ T5903] usb 2-1: SerialNumber: syz
[  342.102094][ T5838] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  342.105283][ T5903] usb 2-1: config 0 descriptor??
[  342.124443][ T5896] hub 5-1:4.128: USB hub found
[  342.142635][ T5903] quatech2 2-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  342.338510][ T5896] hub 5-1:4.128: 2 ports detected
[  342.348915][ T5903] usb 2-1: qt2_setup_urbs - submit read urb failed -90
[  342.356214][ T5896] hub 5-1:4.128: Using single TT (err -22)
[  342.363164][ T5903] quatech2 2-1:0.51: probe with driver quatech2 failed with error -90
[  342.446049][   T24] usb 1-1: new high-speed USB device number 46 using dummy_hcd
[  342.586302][ T8521] loop3: detected capacity change from 0 to 128
[  342.619812][   T24] usb 1-1: Using ep0 maxpacket: 32
[  342.635257][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  342.770878][ T8521] EXT4-fs (loop3): Test dummy encryption mode enabled
[  342.836359][ T8521] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  342.851820][ T8521] ext4 filesystem being mounted at /180/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  342.934483][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  343.158022][ T5969] usb 2-1: USB disconnect, device number 43
[  343.191456][   T24] usb 1-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  343.461006][ T5896] hub 5-1:4.128: hub_hub_status failed (err = -71)
[  343.477125][ T5896] hub 5-1:4.128: config failed, can't get hub status (err -71)
[  344.192570][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  344.462652][   T24] usb 1-1: config 0 descriptor??
[  344.518349][ T5838] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  344.520999][ T5896] usb 5-1: USB disconnect, device number 45
[  345.647387][   T24] ft260 0003:0403:6030.0017: unknown main item tag 0x0
[  346.213627][ T8537] loop4: detected capacity change from 0 to 40427
[  347.670271][   T24] ft260 0003:0403:6030.0017: failed to retrieve chip version
[  347.678187][   T24] ft260 0003:0403:6030.0017: probe with driver ft260 failed with error -71
[  347.687916][ T8537] F2FS-fs (loop4): build fault injection rate: 771
[  347.700231][ T8537] F2FS-fs (loop4): invalid crc value
[  347.712516][   T24] usb 1-1: USB disconnect, device number 46
[  347.760082][ T8537] F2FS-fs (loop4): Failed to initialize F2FS segment manager (-4)
[  349.642232][ T8565] loop3: detected capacity change from 0 to 512
[  349.764188][ T8565] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.829: bg 0: block 393: padding at end of block bitmap is not set
[  349.778780][ T8565] loop3: lost filesystem error report for type 5 error -117
[  349.782914][ T8565] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6687: Corrupt filesystem
[  349.790344][    C1] EXT4-fs (loop3): error count since last fsck: 1
[  349.790387][    C1] EXT4-fs (loop3): initial error at time 2000000219: ext4_validate_block_bitmap:441
[  349.790419][    C1] EXT4-fs (loop3): last error at time 2000000219: ext4_validate_block_bitmap:441
[  349.824686][ T8565] loop3: lost filesystem error report for type 5 error -117
[  349.847621][ T8565] EXT4-fs (loop3): 2 truncates cleaned up
[  349.873393][ T8565] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  352.325451][ T5838] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  353.748442][ T5896] usb 1-1: new high-speed USB device number 47 using dummy_hcd
[  354.069768][ T5896] usb 1-1: Using ep0 maxpacket: 32
[  354.087324][ T5896] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  354.106827][ T5896] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  354.120527][ T5896] usb 1-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  354.129652][ T5896] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  354.607318][ T5896] usb 1-1: config 0 descriptor??
[  354.859842][ T5925] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[  354.867675][ T5903] usb 2-1: new high-speed USB device number 44 using dummy_hcd
[  355.032641][ T5896] ft260 0003:0403:6030.0018: unknown main item tag 0x0
[  355.040864][ T5925] usb 4-1: Using ep0 maxpacket: 32
[  355.050239][ T5925] usb 4-1: config 0 has an invalid interface number: 188 but max is 0
[  355.061676][ T5903] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  355.074406][ T5925] usb 4-1: config 0 has no interface number 0
[  355.081433][ T5903] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  355.091019][ T5925] usb 4-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[  355.141400][ T5925] usb 4-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  356.112021][ T5925] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  356.124239][ T5925] usb 4-1: Product: syz
[  356.146229][ T5903] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  357.138142][ T5925] usb 4-1: Manufacturer: syz
[  357.144571][ T5903] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  357.153110][ T5896] ft260 0003:0403:6030.0018: failed to retrieve chip version
[  357.161254][ T5925] usb 4-1: SerialNumber: syz
[  357.284696][ T8605] loop4: detected capacity change from 0 to 40427
[  357.317516][ T5896] ft260 0003:0403:6030.0018: probe with driver ft260 failed with error -71
[  357.331323][ T5903] usb 2-1: SerialNumber: syz
[  357.372181][ T5896] usb 1-1: USB disconnect, device number 47
[  357.455091][ T8605] F2FS-fs (loop4): build fault injection rate: 771
[  357.473747][ T8605] F2FS-fs (loop4): invalid crc value
[  357.865793][ T5925] usb 4-1: config 0 descriptor??
[  357.908699][ T8605] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  357.949945][ T8605] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  358.035818][ T5903] usb 2-1: can't set config #1, error -71
[  358.047159][ T5903] usb 2-1: USB disconnect, device number 44
[  358.139926][ T5925] usb 4-1: can't set config #0, error -71
[  358.174399][ T5925] usb 4-1: USB disconnect, device number 33
[  358.810018][ T5847] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  359.548248][ T5844] syz-executor: attempt to access beyond end of device
[  359.548248][ T5844] loop4: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  359.673636][ T5844] CPU: 1 UID: 0 PID: 5844 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  359.673668][ T5844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  359.673682][ T5844] Call Trace:
[  359.673691][ T5844]  <TASK>
[  359.673701][ T5844]  dump_stack_lvl+0xe8/0x150
[  359.673737][ T5844]  f2fs_handle_critical_error+0x37c/0x540
[  359.673780][ T5844]  f2fs_write_end_io+0xcdb/0xff0
[  359.673825][ T5844]  __submit_merged_bio+0x256/0x650
[  359.673866][ T5844]  __submit_merged_write_cond+0x3c3/0x4e0
[  359.673909][ T5844]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  359.673969][ T5844]  f2fs_write_data_pages+0x2970/0x35e0
[  359.673992][ T5844]  ? __lock_acquire+0x6b5/0x2cf0
[  359.674058][ T5844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  359.674098][ T5844]  ? css_rstat_updated+0x23a/0x530
[  359.674171][ T5844]  ? rcu_is_watching+0x15/0xb0
[  359.674203][ T5844]  ? __lock_acquire+0x6b5/0x2cf0
[  359.674246][ T5844]  ? __lock_acquire+0x6b5/0x2cf0
[  359.674282][ T5844]  ? do_raw_spin_lock+0x12b/0x2f0
[  359.674328][ T5844]  ? do_raw_spin_unlock+0xf5/0x210
[  359.674362][ T5844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  359.674387][ T5844]  do_writepages+0x32e/0x550
[  359.674426][ T5844]  ? do_raw_spin_unlock+0xf5/0x210
[  359.674465][ T5844]  filemap_fdatawrite+0x1e9/0x2f0
[  359.674496][ T5844]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  359.674577][ T5844]  ? do_raw_spin_unlock+0xf5/0x210
[  359.674615][ T5844]  f2fs_sync_dirty_inodes+0x30e/0x810
[  359.674657][ T5844]  f2fs_write_checkpoint+0x9cf/0x2680
[  359.674722][ T5844]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  359.674794][ T5844]  ? kfree+0x1c1/0x610
[  359.674821][ T5844]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  359.674858][ T5844]  kill_f2fs_super+0x314/0x720
[  359.674890][ T5844]  ? __pfx_kill_f2fs_super+0x10/0x10
[  359.674930][ T5844]  ? lockdep_hardirqs_on+0x7a/0x110
[  359.674971][ T5844]  deactivate_locked_super+0xbc/0x130
[  359.675003][ T5844]  cleanup_mnt+0x437/0x4d0
[  359.675034][ T5844]  ? _raw_spin_unlock_irq+0x23/0x50
[  359.675061][ T5844]  task_work_run+0x1d9/0x270
[  359.675087][ T5844]  ? __pfx_task_work_run+0x10/0x10
[  359.675120][ T5844]  exit_to_user_mode_loop+0xed/0x480
[  359.675145][ T5844]  ? rcu_is_watching+0x15/0xb0
[  359.675183][ T5844]  do_syscall_64+0x2b7/0xf80
[  359.675207][ T5844]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.675229][ T5844]  ? trace_irq_disable+0x37/0x100
[  359.675257][ T5844]  ? clear_bhb_loop+0x40/0x90
[  359.675285][ T5844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.675306][ T5844] RIP: 0033:0x7f4c7cd9c117
[  359.675328][ T5844] Code: a2 c7 05 7c 94 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  359.675346][ T5844] RSP: 002b:00007fffe5a890c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  359.675370][ T5844] RAX: 0000000000000000 RBX: 00007f4c7ce0471f RCX: 00007f4c7cd9c117
[  359.675385][ T5844] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fffe5a89180
[  359.675398][ T5844] RBP: 00007fffe5a89180 R08: 00007fffe5a8a180 R09: 00000000ffffffff
[  359.675413][ T5844] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffe5a8a210
[  359.675426][ T5844] R13: 00007f4c7ce0471f R14: 00000000000577ce R15: 00007fffe5a8a250
[  359.675463][ T5844]  </TASK>
[  359.675503][ T5844] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  360.266895][ T5847] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  360.304097][ T5847] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  360.408927][ T5847] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  360.429343][ T5847] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  360.449749][ T5847] usb 4-1: SerialNumber: syz
[  360.581121][ T5844] CPU: 0 UID: 0 PID: 5844 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  360.581155][ T5844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  360.581168][ T5844] Call Trace:
[  360.581177][ T5844]  <TASK>
[  360.581187][ T5844]  dump_stack_lvl+0xe8/0x150
[  360.581224][ T5844]  f2fs_handle_critical_error+0x37c/0x540
[  360.581267][ T5844]  f2fs_write_end_io+0xcdb/0xff0
[  360.581311][ T5844]  __submit_merged_bio+0x256/0x650
[  360.581350][ T5844]  __submit_merged_write_cond+0x3c3/0x4e0
[  360.581392][ T5844]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  360.581453][ T5844]  f2fs_write_data_pages+0x2970/0x35e0
[  360.581476][ T5844]  ? __lock_acquire+0x6b5/0x2cf0
[  360.581538][ T5844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  360.581580][ T5844]  ? css_rstat_updated+0x23a/0x530
[  360.581643][ T5844]  ? rcu_is_watching+0x15/0xb0
[  360.581675][ T5844]  ? __lock_acquire+0x6b5/0x2cf0
[  360.581718][ T5844]  ? __lock_acquire+0x6b5/0x2cf0
[  360.581753][ T5844]  ? do_raw_spin_lock+0x12b/0x2f0
[  360.581798][ T5844]  ? do_raw_spin_unlock+0xf5/0x210
[  360.581833][ T5844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  360.581858][ T5844]  do_writepages+0x32e/0x550
[  360.581898][ T5844]  ? do_raw_spin_unlock+0xf5/0x210
[  360.581936][ T5844]  filemap_fdatawrite+0x1e9/0x2f0
[  360.581970][ T5844]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  360.582048][ T5844]  ? do_raw_spin_unlock+0xf5/0x210
[  360.582121][ T5844]  f2fs_sync_dirty_inodes+0x30e/0x810
[  360.582164][ T5844]  f2fs_write_checkpoint+0x9cf/0x2680
[  360.582228][ T5844]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  360.582312][ T5844]  ? kfree+0x1c1/0x610
[  360.582340][ T5844]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  360.582376][ T5844]  kill_f2fs_super+0x314/0x720
[  360.582408][ T5844]  ? __pfx_kill_f2fs_super+0x10/0x10
[  360.582446][ T5844]  ? lockdep_hardirqs_on+0x7a/0x110
[  360.582487][ T5844]  deactivate_locked_super+0xbc/0x130
[  360.582519][ T5844]  cleanup_mnt+0x437/0x4d0
[  360.582549][ T5844]  ? _raw_spin_unlock_irq+0x23/0x50
[  360.582575][ T5844]  task_work_run+0x1d9/0x270
[  360.582601][ T5844]  ? __pfx_task_work_run+0x10/0x10
[  360.582633][ T5844]  exit_to_user_mode_loop+0xed/0x480
[  360.582657][ T5844]  ? rcu_is_watching+0x15/0xb0
[  360.582688][ T5844]  do_syscall_64+0x2b7/0xf80
[  360.582713][ T5844]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  360.582734][ T5844]  ? trace_irq_disable+0x37/0x100
[  360.582761][ T5844]  ? clear_bhb_loop+0x40/0x90
[  360.582789][ T5844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  360.582810][ T5844] RIP: 0033:0x7f4c7cd9c117
[  360.582832][ T5844] Code: a2 c7 05 7c 94 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  360.582850][ T5844] RSP: 002b:00007fffe5a890c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  360.582875][ T5844] RAX: 0000000000000000 RBX: 00007f4c7ce0471f RCX: 00007f4c7cd9c117
[  360.582890][ T5844] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fffe5a89180
[  360.582903][ T5844] RBP: 00007fffe5a89180 R08: 00007fffe5a8a180 R09: 00000000ffffffff
[  360.582918][ T5844] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffe5a8a210
[  360.582931][ T5844] R13: 00007f4c7ce0471f R14: 00000000000577ce R15: 00007fffe5a8a250
[  360.582967][ T5844]  </TASK>
[  360.583229][ T5844] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  360.861156][ T5847] usb 4-1: skipping empty audio interface (v1)
[  361.223055][ T5847] snd-usb-audio 4-1:1.0: probe with driver snd-usb-audio failed with error -22
[  361.323013][ T8627] netlink: 'syz.0.847': attribute type 4 has an invalid length.
[  361.331356][ T5847] usb 4-1: USB disconnect, device number 34
[  361.360440][ T8627] netlink: 1601 bytes leftover after parsing attributes in process `syz.0.847'.
[  361.394155][ T8630] futex_wake_op: syz.1.851 tries to shift op by -1; fix this program
[  361.421734][ T8352] udevd[8352]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  363.115599][ T8649] fuse: Unknown parameter '0x0000000000000003'
[  363.339816][ T5925] usb 5-1: new high-speed USB device number 46 using dummy_hcd
[  363.521987][ T5925] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  363.548102][ T5925] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  363.603302][ T5925] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  363.633591][ T5925] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  363.664071][ T5925] usb 5-1: SerialNumber: syz
[  363.879445][   T30] kauditd_printk_skb: 14 callbacks suppressed
[  363.879464][   T30] audit: type=1326 audit(2000000233.260:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8660 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b0b9aeb9 code=0x7ffc0000
[  363.953653][ T5925] usb 5-1: 0:2 : does not exist
[  363.980224][   T30] audit: type=1326 audit(2000000233.260:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8660 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b0b9aeb9 code=0x7ffc0000
[  364.065303][   T30] audit: type=1326 audit(2000000233.300:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8660 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe0b0b9aeb9 code=0x7ffc0000
[  364.121030][ T5925] usb 5-1: USB disconnect, device number 46
[  364.150049][   T30] audit: type=1326 audit(2000000233.300:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8660 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b0b9aeb9 code=0x7ffc0000
[  364.232482][ T8352] udevd[8352]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  364.249951][   T30] audit: type=1326 audit(2000000233.300:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8660 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b0b9aeb9 code=0x7ffc0000
[  364.335041][   T30] audit: type=1326 audit(2000000233.300:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8660 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fe0b0b9aeb9 code=0x7ffc0000
[  364.447723][   T30] audit: type=1326 audit(2000000233.300:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8660 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b0b9aeb9 code=0x7ffc0000
[  364.499813][   T30] audit: type=1326 audit(2000000233.300:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8660 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b0b9aeb9 code=0x7ffc0000
[  364.522480][   T30] audit: type=1326 audit(2000000233.310:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8660 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fe0b0b9aeb9 code=0x7ffc0000
[  364.565145][   T30] audit: type=1326 audit(2000000233.310:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8660 comm="syz.3.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0b0b9aeb9 code=0x7ffc0000
[  366.360633][ T8668] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  366.395343][ T8683] futex_wake_op: syz.2.865 tries to shift op by -1; fix this program
[  366.609993][    T9] usb 2-1: new high-speed USB device number 45 using dummy_hcd
[  366.634778][ T8688] fuse: Unknown parameter '0x0000000000000003'
[  366.760342][    T9] usb 2-1: Using ep0 maxpacket: 16
[  366.772713][    T9] usb 2-1: config 0 interface 0 has no altsetting 0
[  366.780463][    T9] usb 2-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  366.789553][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  367.676824][ T8695] netlink: 'syz.4.869': attribute type 4 has an invalid length.
[  367.689027][ T8695] netlink: 1601 bytes leftover after parsing attributes in process `syz.4.869'.
[  367.722465][    T9] usb 2-1: config 0 descriptor??
[  367.799263][    T9] usb 2-1: can't set config #0, error -71
[  368.295181][    T9] usb 2-1: USB disconnect, device number 45
[  369.067772][ T8724] fuse: Unknown parameter '0x0000000000000003'
[  369.810817][ T8738] overlay: Unknown parameter 'subj_user'
[  372.263826][ T8751] netlink: 'syz.2.885': attribute type 4 has an invalid length.
[  372.271655][ T8751] netlink: 1601 bytes leftover after parsing attributes in process `syz.2.885'.
[  372.404104][ T5925] usb 2-1: new full-speed USB device number 46 using dummy_hcd
[  372.571770][ T5925] usb 2-1: config 0 has an invalid interface number: 8 but max is 0
[  372.590106][ T5925] usb 2-1: config 0 has no interface number 0
[  372.599872][ T5925] usb 2-1: config 0 interface 8 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  372.615373][ T5925] usb 2-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.04
[  372.626893][ T5925] usb 2-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  372.636353][ T5925] usb 2-1: Product: syz
[  372.640752][ T5925] usb 2-1: SerialNumber: syz
[  372.662996][ T5925] usb 2-1: config 0 descriptor??
[  372.674646][ T5925] cm109 2-1:0.8: invalid payload size 16, expected 4
[  372.712630][ T5925] input: CM109 USB driver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.8/input/input20
[  372.731369][ T5969] usb 5-1: new high-speed USB device number 47 using dummy_hcd
[  372.800086][ T5847] usb 1-1: new high-speed USB device number 48 using dummy_hcd
[  372.878320][    C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71
[  372.885651][ T5963] usb 2-1: USB disconnect, device number 46
[  372.885769][    C0] cm109 2-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  372.900160][ T5969] usb 5-1: Using ep0 maxpacket: 32
[  372.911440][ T5963] cm109 2-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  372.927217][ T5969] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  372.942841][ T5969] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  372.954334][ T5969] usb 5-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  372.966176][ T5969] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  372.978798][ T5847] usb 1-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  372.990525][ T5847] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  373.005054][ T5847] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  373.015383][ T5969] usb 5-1: config 0 descriptor??
[  373.020875][ T5847] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  373.047329][ T5847] usb 1-1: config 0 descriptor??
[  373.057972][ T5847] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  373.409790][ T5963] usb 2-1: new high-speed USB device number 47 using dummy_hcd
[  373.443939][ T5969] ft260 0003:0403:6030.0019: unknown main item tag 0x0
[  373.559815][ T5963] usb 2-1: Using ep0 maxpacket: 16
[  373.567328][ T5963] usb 2-1: config 0 has an invalid interface number: 8 but max is 0
[  373.576326][ T5963] usb 2-1: config 0 has no interface number 0
[  373.582612][ T5963] usb 2-1: config 0 interface 8 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  373.605185][ T5963] usb 2-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.04
[  373.616494][ T5963] usb 2-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  373.624962][ T5963] usb 2-1: Product: syz
[  373.629480][ T5963] usb 2-1: SerialNumber: syz
[  373.643797][ T5963] usb 2-1: config 0 descriptor??
[  373.650915][ T5969] ft260 0003:0403:6030.0019: chip code: 6424 8183
[  373.663671][ T5963] cm109 2-1:0.8: invalid payload size 16, expected 4
[  373.675895][ T5963] input: CM109 USB driver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.8/input/input21
[  373.898022][    C1] cm109 2-1:0.8: cm109_urb_irq_callback: urb status -71
[  374.047142][ T5969] ft260 0003:0403:6030.0019: failed to retrieve system status
[  374.059905][ T5969] ft260 0003:0403:6030.0019: probe with driver ft260 failed with error -32
[  374.097211][    C1] cm109 2-1:0.8: cm109_urb_irq_callback: urb status -71
[  374.124476][ T8781] overlay: Unknown parameter 'subj_user'
[  374.300938][    C1] cm109 2-1:0.8: cm109_urb_irq_callback: urb status -71
[  374.506645][    C1] cm109 2-1:0.8: cm109_urb_irq_callback: urb status -71
[  374.707499][    C1] cm109 2-1:0.8: cm109_urb_irq_callback: urb status -71
[  374.908277][    C1] cm109 2-1:0.8: cm109_urb_irq_callback: urb status -71
[  375.109209][    C1] cm109 2-1:0.8: cm109_urb_irq_callback: urb status -71
[  375.273723][   T30] kauditd_printk_skb: 24 callbacks suppressed
[  375.273744][   T30] audit: type=1326 audit(2000000244.660:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8794 comm="syz.3.904" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe0b0b9aeb9 code=0x0
[  375.312299][    C1] cm109 2-1:0.8: cm109_urb_irq_callback: urb status -71
[  375.489736][ T5925] usb 5-1: USB disconnect, device number 47
[  375.513138][    C1] cm109 2-1:0.8: cm109_urb_irq_callback: urb status -71
[  375.637289][    T9] usb 1-1: USB disconnect, device number 48
[  375.714681][    C1] cm109 2-1:0.8: cm109_urb_irq_callback: urb status -71
[  375.961198][    C1] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71
[  375.962716][ T5925] usb 2-1: USB disconnect, device number 47
[  375.968417][    C1] cm109 2-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  376.021994][ T5925] cm109 2-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  376.208779][    T9] usb 1-1: new high-speed USB device number 49 using dummy_hcd
[  376.360327][ T5847] usb 5-1: new high-speed USB device number 48 using dummy_hcd
[  377.262151][ T5847] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  377.281429][ T5847] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  377.307091][ T5847] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  377.329251][    T9] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  377.341571][ T5847] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  377.387359][ T5847] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  377.407031][ T5847] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  377.425691][ T5847] usb 5-1: Product: syz
[  377.439731][ T5847] usb 5-1: Manufacturer: syz
[  377.493664][ T5847] cdc_wdm 5-1:1.0: skipping garbage
[  377.510024][ T5847] cdc_wdm 5-1:1.0: skipping garbage
[  377.535010][ T5847] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  377.551877][ T5847] cdc_wdm 5-1:1.0: Unknown control protocol
[  377.706582][ T5847] usb 5-1: USB disconnect, device number 48
[  378.105272][    T9] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  378.116018][    T9] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  378.128524][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  378.136700][    T9] usb 1-1: SerialNumber: syz
[  378.150234][ T5847] usb 5-1: new high-speed USB device number 49 using dummy_hcd
[  378.715434][    T9] usb 1-1: 0:2 : does not exist
[  379.076070][    T9] usb 1-1: USB disconnect, device number 49
[  379.188689][ T8352] udevd[8352]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  379.211041][ T5847] usb 5-1: device not accepting address 49, error -71
[  379.479115][   T30] audit: type=1326 audit(2000000248.860:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8841 comm="syz.0.920" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3bfcd9aeb9 code=0x0
[  379.569858][ T5847] usb 5-1: new high-speed USB device number 50 using dummy_hcd
[  379.639801][    T9] usb 4-1: new high-speed USB device number 35 using dummy_hcd
[  379.852789][    T9] usb 4-1: config 0 has no interfaces?
[  379.862020][    T9] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  379.878015][    T9] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  379.880026][ T5847] usb 5-1: Using ep0 maxpacket: 32
[  379.903851][    T9] usb 4-1: Product: syz
[  379.915851][    T9] usb 4-1: Manufacturer: syz
[  379.981376][    T9] usb 4-1: config 0 descriptor??
[  380.101972][ T5847] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  380.117414][ T5847] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  380.241820][ T8838] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  380.273724][ T8838] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  380.471271][ T5847] usb 5-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  380.480542][ T5847] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  380.502940][ T5969] usb 4-1: USB disconnect, device number 35
[  380.542615][ T5847] usb 5-1: config 0 descriptor??
[  380.970633][ T5969] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[  381.026884][ T5847] ft260 0003:0403:6030.001A: unknown main item tag 0x0
[  381.154277][ T5969] usb 4-1: config 0 has an invalid interface number: 168 but max is 0
[  381.175921][ T5969] usb 4-1: config 0 has no interface number 0
[  381.185558][ T5969] usb 4-1: config 0 interface 168 altsetting 0 has an endpoint descriptor with address 0xA1, changing to 0x81
[  381.198286][ T5969] usb 4-1: config 0 interface 168 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 225
[  381.209230][ T5969] usb 4-1: New USB device found, idVendor=06cd, idProduct=0135, bcdDevice=a8.a4
[  381.225154][ T5847] ft260 0003:0403:6030.001A: chip code: 6424 8183
[  381.232154][ T5969] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  381.241979][ T8869] netlink: 15231 bytes leftover after parsing attributes in process `syz.1.927'.
[  381.270823][ T5969] usb 4-1: config 0 descriptor??
[  381.287535][ T8868] netlink: 'syz.1.927': attribute type 10 has an invalid length.
[  381.317322][ T8868] hsr0: entered promiscuous mode
[  381.424293][ T5847] ft260 0003:0403:6030.001A: failed to retrieve system status
[  381.432684][ T5847] ft260 0003:0403:6030.001A: probe with driver ft260 failed with error -32
[  381.522519][ T5969] usb 4-1: string descriptor 0 read error: -71
[  381.558373][ T5969] keyspan 4-1:0.168: Keyspan 2 port adapter converter detected
[  381.585970][ T5969] keyspan 4-1:0.168: found no endpoint descriptor for endpoint 1
[  381.636032][ T5969] keyspan 4-1:0.168: found no endpoint descriptor for endpoint 84
[  381.664988][ T5969] keyspan 4-1:0.168: found no endpoint descriptor for endpoint 2
[  381.705878][ T5969] usb 4-1: Keyspan 2 port adapter converter now attached to ttyUSB0
[  381.755135][ T5969] keyspan 4-1:0.168: found no endpoint descriptor for endpoint 88
[  381.808140][ T5969] keyspan 4-1:0.168: found no endpoint descriptor for endpoint 6
[  381.834508][ T5969] usb 4-1: Keyspan 2 port adapter converter now attached to ttyUSB1
[  381.864517][ T5969] usb 4-1: USB disconnect, device number 36
[  381.891705][ T5969] keyspan_2 ttyUSB0: Keyspan 2 port adapter converter now disconnected from ttyUSB0
[  381.932104][ T5969] keyspan_2 ttyUSB1: Keyspan 2 port adapter converter now disconnected from ttyUSB1
[  381.953849][ T5969] keyspan 4-1:0.168: device disconnected
[  382.040798][ T5847] usb 1-1: new high-speed USB device number 50 using dummy_hcd
[  382.066275][ T8881] netlink: 'syz.2.931': attribute type 10 has an invalid length.
[  382.076849][ T8881] bond0: (slave bond_slave_0): Releasing backup interface
[  382.167183][   T30] audit: type=1326 audit(2000000251.550:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8886 comm="syz.1.934" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f62cb39aeb9 code=0x0
[  382.212050][ T5847] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  382.222494][ T5847] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  382.233188][ T5847] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  382.242440][ T5847] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  382.251334][ T5847] usb 1-1: SerialNumber: syz
[  382.269895][ T5969] usb 4-1: new full-speed USB device number 37 using dummy_hcd
[  382.484603][ T5847] usb 1-1: 0:2 : does not exist
[  382.499419][    T9] usb 5-1: USB disconnect, device number 50
[  382.548335][ T5847] usb 1-1: USB disconnect, device number 50
[  382.557770][ T5969] usb 4-1: config 4 has an invalid interface number: 44 but max is 0
[  382.578376][ T5969] usb 4-1: config 4 has no interface number 0
[  382.599433][ T5969] usb 4-1: config 4 interface 44 altsetting 0 has an endpoint descriptor with address 0xA1, changing to 0x81
[  382.627402][ T5969] usb 4-1: config 4 interface 44 altsetting 0 endpoint 0x81 has invalid maxpacket 225, setting to 64
[  382.647261][ T8352] udevd[8352]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  382.665160][ T5969] usb 4-1: config 4 interface 44 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  382.681914][ T5969] usb 4-1: New USB device found, idVendor=1044, idProduct=7001, bcdDevice= 5.20
[  382.697598][ T5969] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  382.720052][ T5969] usb 4-1: Product: syz
[  382.724314][ T5969] usb 4-1: Manufacturer: syz
[  382.728958][ T5969] usb 4-1: SerialNumber: syz
[  382.765272][ T5969] usb 4-1: can't set config #4, error -71
[  382.773740][ T5969] usb 4-1: USB disconnect, device number 37
[  382.949816][    T9] usb 5-1: new high-speed USB device number 51 using dummy_hcd
[  383.122498][    T9] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  383.154802][    T9] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  383.172062][    T9] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  383.181900][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  383.194375][    T9] usb 5-1: SerialNumber: syz
[  383.404045][ T5969] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[  383.506319][    T9] usb 5-1: 0:2 : does not exist
[  384.463209][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  384.475534][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  384.689802][ T5969] usb 4-1: Using ep0 maxpacket: 32
[  385.375107][ T5969] usb 4-1: config 0 has an invalid interface number: 51 but max is 0
[  385.409795][ T5969] usb 4-1: config 0 has no interface number 0
[  385.423070][ T5969] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  385.442667][ T5969] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  385.480238][ T5969] usb 4-1: Product: syz
[  385.497908][ T5969] usb 4-1: Manufacturer: syz
[  385.774499][ T5969] usb 4-1: SerialNumber: syz
[  385.820719][ T5969] usb 4-1: config 0 descriptor??
[  386.696586][ T8922] loop4: detected capacity change from 0 to 128
[  386.862048][ T5969] usb 4-1: can't set config #0, error -71
[  386.897651][ T5969] usb 4-1: USB disconnect, device number 38
[  387.035594][ T8922] EXT4-fs (loop4): Test dummy encryption mode enabled
[  387.209096][ T8922] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  387.247927][ T8922] ext4 filesystem being mounted at /167/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  387.347088][ T8922] fscrypt: AES-256-XTS using implementation "xts-aes-aesni-avx"
[  387.969780][   T30] audit: type=1326 audit(2000000257.340:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8931 comm="syz.0.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bfcd9aeb9 code=0x7ffc0000
[  388.099917][   T30] audit: type=1326 audit(2000000257.380:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8931 comm="syz.0.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3bfcd9aeb9 code=0x7ffc0000
[  388.181336][   T29] usb 2-1: new high-speed USB device number 48 using dummy_hcd
[  388.299780][   T30] audit: type=1326 audit(2000000257.380:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8931 comm="syz.0.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bfcd9aeb9 code=0x7ffc0000
[  388.461362][   T29] usb 2-1: Using ep0 maxpacket: 32
[  388.479126][   T29] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  388.500973][   T30] audit: type=1326 audit(2000000257.380:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8931 comm="syz.0.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f3bfcd9aeb9 code=0x7ffc0000
[  388.525750][   T29] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  388.596014][    T9] usb 5-1: USB disconnect, device number 51
[  388.775194][   T29] usb 2-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  388.786479][   T29] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  388.855365][   T30] audit: type=1326 audit(2000000257.380:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8931 comm="syz.0.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bfcd9aeb9 code=0x7ffc0000
[  388.927738][   T29] usb 2-1: config 0 descriptor??
[  388.960976][ T5844] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  388.970306][   T30] audit: type=1326 audit(2000000257.380:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8931 comm="syz.0.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bfcd9aeb9 code=0x7ffc0000
[  388.994453][   T30] audit: type=1326 audit(2000000257.380:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8931 comm="syz.0.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f3bfcd9aeb9 code=0x7ffc0000
[  389.019381][   T30] audit: type=1326 audit(2000000257.380:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8931 comm="syz.0.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bfcd9aeb9 code=0x7ffc0000
[  389.048876][   T30] audit: type=1326 audit(2000000257.380:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8931 comm="syz.0.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3bfcd9aeb9 code=0x7ffc0000
[  389.108210][   T30] audit: type=1326 audit(2000000257.380:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8931 comm="syz.0.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bfcd9aeb9 code=0x7ffc0000
[  389.429815][    T9] usb 5-1: new high-speed USB device number 52 using dummy_hcd
[  389.568161][   T29] ft260 0003:0403:6030.001B: unknown main item tag 0x0
[  389.639782][ T5969] usb 4-1: new high-speed USB device number 39 using dummy_hcd
[  389.650209][   T29] ft260 0003:0403:6030.001B: chip code: 6424 8183
[  389.813800][ T5969] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  389.824709][ T5969] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  389.837664][ T5969] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  389.847784][ T5969] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  389.860036][   T29] ft260 0003:0403:6030.001B: failed to retrieve system status
[  389.877173][   T29] ft260 0003:0403:6030.001B: probe with driver ft260 failed with error -32
[  389.886810][ T5969] usb 4-1: SerialNumber: syz
[  390.152943][ T5969] usb 4-1: 0:2 : does not exist
[  390.222874][ T5969] usb 4-1: USB disconnect, device number 39
[  390.274785][ T8352] udevd[8352]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  390.499820][ T5896] usb 1-1: new high-speed USB device number 51 using dummy_hcd
[  390.531930][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  390.546843][    T9] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  390.563045][    T9] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2d50, bcdDevice= 0.00
[  390.905943][ T5969] usb 2-1: USB disconnect, device number 48
[  391.027663][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  391.045407][    T9] usb 5-1: config 0 descriptor??
[  391.117550][ T5896] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  391.128445][ T5896] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  391.157250][ T5896] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  391.167695][ T5896] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  391.176904][ T5896] usb 1-1: SerialNumber: syz
[  391.438651][ T5896] usb 1-1: 0:2 : does not exist
[  391.465649][    T9] usbhid 5-1:0.0: can't add hid device: -71
[  391.483027][    T9] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  391.508153][    T9] usb 5-1: USB disconnect, device number 52
[  391.547350][ T5896] usb 1-1: USB disconnect, device number 51
[  391.618153][ T8352] udevd[8352]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  391.759810][ T5969] usb 2-1: new high-speed USB device number 49 using dummy_hcd
[  392.476256][ T5969] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  392.486975][ T5969] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  392.501490][ T5969] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  392.511216][ T5969] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  392.519256][ T5969] usb 2-1: SerialNumber: syz
[  392.802592][ T5969] usb 2-1: 0:2 : does not exist
[  393.858706][ T5969] usb 2-1: USB disconnect, device number 49
[  393.899757][ T5925] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[  393.907778][ T8352] udevd[8352]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  395.029755][ T5925] usb 4-1: Using ep0 maxpacket: 32
[  395.036837][ T5925] usb 4-1: config 0 has an invalid interface number: 67 but max is 0
[  395.045294][ T5925] usb 4-1: config 0 has no interface number 0
[  395.053804][ T5925] usb 4-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  395.063180][ T5925] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  395.071296][ T5925] usb 4-1: Product: syz
[  395.075510][ T5925] usb 4-1: Manufacturer: syz
[  395.731627][ T5925] usb 4-1: SerialNumber: syz
[  395.740302][ T5925] usb 4-1: config 0 descriptor??
[  395.753754][ T5925] smsc95xx v2.0.0
[  396.101086][  T801] usb 5-1: new high-speed USB device number 53 using dummy_hcd
[  396.157440][ T5925] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[  396.192517][ T5925] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  397.205129][ T5925] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -32
[  397.216222][  T801] usb 5-1: Using ep0 maxpacket: 32
[  397.224815][  T801] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  397.236129][ T5925] smsc95xx 4-1:0.67: probe with driver smsc95xx failed with error -32
[  397.244969][  T801] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  398.077870][ T5925] usb 4-1: USB disconnect, device number 40
[  398.088094][  T801] usb 5-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  398.097328][  T801] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  398.151902][  T801] usb 5-1: config 0 descriptor??
[  398.509846][ T5925] usb 2-1: new high-speed USB device number 50 using dummy_hcd
[  398.596483][  T801] ft260 0003:0403:6030.001C: unknown main item tag 0x0
[  398.662272][ T5925] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  398.673233][ T5925] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  398.692200][ T5925] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  398.703055][ T5925] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  398.711981][ T5925] usb 2-1: SerialNumber: syz
[  398.792910][  T801] ft260 0003:0403:6030.001C: chip code: 6424 8183
[  398.977703][ T5925] usb 2-1: 0:2 : does not exist
[  399.819814][   T24] usb 1-1: new high-speed USB device number 52 using dummy_hcd
[  399.949852][  T801] ft260 0003:0403:6030.001C: failed to retrieve system status
[  399.958459][  T801] ft260 0003:0403:6030.001C: probe with driver ft260 failed with error -32
[  399.993010][   T24] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  400.041269][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  400.076498][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  400.999950][   T24] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  401.070011][   T24] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  401.130958][ T5847] usb 5-1: USB disconnect, device number 53
[  401.139812][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  401.184837][   T24] usb 1-1: config 0 descriptor??
[  401.340506][ T9035] netlink: 'syz.3.977': attribute type 4 has an invalid length.
[  401.391834][ T9035] netlink: 1601 bytes leftover after parsing attributes in process `syz.3.977'.
[  401.669780][ T5847] usb 5-1: new high-speed USB device number 54 using dummy_hcd
[  401.682727][   T24] plantronics 0003:047F:FFFF.001D: ignoring exceeding usage max
[  401.726760][ T5925] usb 2-1: USB disconnect, device number 50
[  401.851806][ T5847] usb 5-1: Using ep0 maxpacket: 32
[  401.868406][ T5847] usb 5-1: config 0 has an invalid interface number: 67 but max is 0
[  401.891255][ T5847] usb 5-1: config 0 has no interface number 0
[  401.913495][ T5847] usb 5-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  401.943423][ T5847] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  401.971956][ T5847] usb 5-1: Product: syz
[  401.989186][ T5847] usb 5-1: Manufacturer: syz
[  402.009071][ T5847] usb 5-1: SerialNumber: syz
[  402.344863][   T24] plantronics 0003:047F:FFFF.001D: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  402.372387][ T8352] udevd[8352]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  402.399469][ T9039] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  402.411711][ T5847] usb 5-1: config 0 descriptor??
[  402.448141][ T9039] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  402.460602][ T5847] smsc95xx v2.0.0
[  402.599784][ T5925] usb 2-1: new high-speed USB device number 51 using dummy_hcd
[  402.757238][ T5925] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  402.772123][ T5925] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  402.783932][ T5925] usb 2-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00
[  402.793162][ T5925] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  402.805997][ T5925] usb 2-1: config 0 descriptor??
[  402.829182][ T5847] smsc95xx 5-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[  402.865248][ T5847] smsc95xx 5-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  402.867841][ T5925] usbhid 2-1:0.0: can't add hid device: -71
[  402.887888][ T9038] usb 1-1: string descriptor 0 read error: -71
[  402.903576][ T5925] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  402.925576][ T5925] usb 2-1: USB disconnect, device number 51
[  403.211460][   T24] usb 1-1: reset high-speed USB device number 52 using dummy_hcd
[  403.222359][ T5847] smsc95xx 5-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -32
[  403.236316][ T5847] smsc95xx 5-1:0.67: probe with driver smsc95xx failed with error -32
[  403.558783][ T9045] loop3: detected capacity change from 0 to 40427
[  404.112865][   T29] usb 1-1: USB disconnect, device number 52
[  404.276519][ T9045] F2FS-fs (loop3): build fault injection rate: 174
[  404.319743][ T9045] F2FS-fs (loop3): build fault injection type: 0x3bfe8c
[  404.368666][ T9045] F2FS-fs (loop3): invalid crc value
[  404.402039][   T29] usb 5-1: USB disconnect, device number 54
[  404.807432][ T9045] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  404.850082][ T9045] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  405.114929][   T29] usb 5-1: new high-speed USB device number 55 using dummy_hcd
[  405.472482][   T29] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  405.489754][   T29] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  405.498872][   T29] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  405.552888][   T29] usb 5-1: config 0 descriptor??
[  405.598712][   T29] pwc: Askey VC010 type 2 USB webcam detected.
[  406.080263][   T29] pwc: recv_control_msg error -32 req 02 val 2b00
[  406.099841][   T29] pwc: recv_control_msg error -32 req 02 val 2700
[  406.150637][   T29] pwc: recv_control_msg error -32 req 02 val 2c00
[  406.190544][   T29] pwc: recv_control_msg error -32 req 04 val 1000
[  406.207181][   T29] pwc: recv_control_msg error -32 req 04 val 1300
[  406.227799][   T29] pwc: recv_control_msg error -32 req 04 val 1400
[  406.246385][   T29] pwc: recv_control_msg error -32 req 02 val 2000
[  406.472709][   T29] pwc: recv_control_msg error -32 req 02 val 2100
[  406.480047][   T29] pwc: recv_control_msg error -32 req 04 val 1500
[  406.487435][   T29] pwc: recv_control_msg error -32 req 02 val 2500
[  406.495658][   T29] pwc: recv_control_msg error -32 req 02 val 2400
[  406.503188][   T29] pwc: recv_control_msg error -32 req 02 val 2600
[  406.510715][   T29] pwc: recv_control_msg error -32 req 02 val 2900
[  406.518234][   T29] pwc: recv_control_msg error -32 req 02 val 2800
[  406.744575][   T29] pwc: recv_control_msg error -71 req 04 val 1200
[  406.941137][   T29] pwc: Registered as video103.
[  407.260236][   T29] input: PWC snapshot button as /devices/platform/dummy_hcd.4/usb5/5-1/input/input22
[  407.297734][   T29] usb 5-1: USB disconnect, device number 55
[  409.806409][ T9087] netlink: 'syz.4.990': attribute type 4 has an invalid length.
[  409.814220][ T9087] netlink: 1601 bytes leftover after parsing attributes in process `syz.4.990'.
[  410.867227][ T9098] overlay: filesystem on ./bus not supported
[  410.933770][ T9102] loop4: detected capacity change from 0 to 256
[  410.960986][ T9102] vfat: Unknown parameter 'shor†name'
[  411.019750][ T5925] usb 2-1: new high-speed USB device number 52 using dummy_hcd
[  411.212801][ T5925] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  411.254282][ T5925] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  411.484312][ T5925] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  411.494109][ T5925] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  411.507393][ T5925] usb 2-1: SerialNumber: syz
[  411.748820][ T5925] usb 2-1: 0:2 : does not exist
[  411.923042][ T5925] usb 2-1: USB disconnect, device number 52
[  412.045616][ T8352] udevd[8352]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  412.079800][   T29] usb 4-1: new high-speed USB device number 41 using dummy_hcd
[  412.249746][ T5896] usb 5-1: new high-speed USB device number 56 using dummy_hcd
[  412.268476][   T29] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  412.283498][   T29] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  412.299082][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  412.320043][   T29] usb 4-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00
[  412.342727][   T29] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  412.533201][ T5896] usb 5-1: Using ep0 maxpacket: 8
[  412.537429][   T29] usb 4-1: config 0 descriptor??
[  412.583423][ T5896] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  412.596866][ T5896] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  412.623572][ T5896] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  412.646183][ T5896] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  412.682722][ T5896] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  412.883729][ T5896] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  413.040047][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[  413.721136][ T5896] usb 5-1: GET_CAPABILITIES returned 0
[  413.726836][ T5896] usbtmc 5-1:16.0: can't read capabilities
[  413.755085][   T29] usbhid 4-1:0.0: can't add hid device: -71
[  413.764722][   T29] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  413.950019][ T5847] usb 5-1: USB disconnect, device number 56
[  413.963700][   T29] usb 4-1: USB disconnect, device number 41
[  414.103455][ T9126] 9pnet_virtio: no channels available for device syz
[  414.146160][ T9126] overlay: Unknown parameter '/'
[  416.176331][ T9129] loop3: detected capacity change from 0 to 1024
[  416.390058][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  416.399581][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  417.929897][   T24] usb 5-1: new high-speed USB device number 57 using dummy_hcd
[  418.053658][ T9141] loop3: detected capacity change from 0 to 256
[  418.082432][ T9141] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  418.125268][ T9141] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010364, chksum : 0x43f9f21b, utbl_chksum : 0xe619d30d)
[  418.139774][   T24] usb 5-1: Using ep0 maxpacket: 8
[  418.147739][   T24] usb 5-1: config index 0 descriptor too short (expected 6427, got 27)
[  418.171568][   T24] usb 5-1: config 0 has an invalid interface number: 21 but max is 0
[  418.193495][   T24] usb 5-1: config 0 has no interface number 0
[  418.203671][   T24] usb 5-1: config 0 interface 21 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  418.218776][   T24] usb 5-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=92.d4
[  418.228931][   T24] usb 5-1: New USB device strings: Mfr=0, Product=1, SerialNumber=0
[  418.260896][   T24] usb 5-1: Product: syz
[  418.276461][   T24] usb 5-1: config 0 descriptor??
[  418.351016][ T5896] usb 1-1: new high-speed USB device number 53 using dummy_hcd
[  418.532598][ T5896] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  418.552257][ T5896] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  418.563570][ T5896] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  418.574611][ T5896] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  418.586367][ T5896] usb 1-1: SerialNumber: syz
[  418.694378][   T30] kauditd_printk_skb: 6 callbacks suppressed
[  418.694401][   T30] audit: type=1326 audit(2000000288.080:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9154 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26159aeb9 code=0x7ffc0000
[  418.768791][   T30] audit: type=1326 audit(2000000288.120:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9154 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc26159aeb9 code=0x7ffc0000
[  418.792762][   T30] audit: type=1326 audit(2000000288.120:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9154 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26159aeb9 code=0x7ffc0000
[  418.821588][   T30] audit: type=1326 audit(2000000288.120:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9154 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26159aeb9 code=0x7ffc0000
[  418.856693][ T5896] usb 1-1: 0:2 : does not exist
[  418.910263][   T30] audit: type=1326 audit(2000000288.120:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9154 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fc26159aeb9 code=0x7ffc0000
[  418.941244][   T24] usb 5-1: USB disconnect, device number 57
[  418.951596][ T9157] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1012'.
[  418.980507][   T30] audit: type=1326 audit(2000000288.120:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9154 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26159aeb9 code=0x7ffc0000
[  419.021021][ T5896] usb 1-1: USB disconnect, device number 53
[  419.029893][   T30] audit: type=1326 audit(2000000288.120:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9154 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26159aeb9 code=0x7ffc0000
[  419.069097][ T9157] geneve2: entered promiscuous mode
[  419.089919][   T30] audit: type=1326 audit(2000000288.120:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9154 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fc26159aeb9 code=0x7ffc0000
[  419.149852][   T30] audit: type=1326 audit(2000000288.120:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9154 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26159aeb9 code=0x7ffc0000
[  419.205782][   T30] audit: type=1326 audit(2000000288.120:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9154 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26159aeb9 code=0x7ffc0000
[  419.909740][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  420.870513][ T5896] usb 1-1: new high-speed USB device number 54 using dummy_hcd
[  421.409766][ T5896] usb 1-1: Using ep0 maxpacket: 32
[  421.419018][ T5896] usb 1-1: config 0 has an invalid interface number: 51 but max is 0
[  421.427440][ T5896] usb 1-1: config 0 has no interface number 0
[  421.436160][ T5896] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  421.457176][ T5896] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  421.469580][ T5896] usb 1-1: Product: syz
[  421.488322][ T5896] usb 1-1: Manufacturer: syz
[  421.497144][ T5896] usb 1-1: SerialNumber: syz
[  421.519203][ T5896] usb 1-1: config 0 descriptor??
[  421.555780][ T5896] quatech2 1-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  421.896980][ T5896] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  421.928714][ T5896] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  421.950927][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[  422.128892][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[  422.149789][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[  422.158185][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[  422.239900][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[  422.850692][    C0] usb 1-1: qt2_read_bulk_callback - non-zero urb status: -71
[  422.859414][ T5847] usb 1-1: USB disconnect, device number 54
[  422.886358][ T5847] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  422.951218][ T5847] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  423.004340][ T5847] quatech2 1-1:0.51: device disconnected
[  423.753747][ T5925] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[  423.964394][ T9205] 8021q: adding VLAN 0 to HW filter on device batadv1
[  424.121729][ T9205] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  424.642049][ T5925] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  424.679932][ T5925] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  424.730374][ T5925] usb 4-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00
[  424.773656][ T5925] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  424.847106][ T5925] usb 4-1: config 0 descriptor??
[  425.187359][ T9214] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1029'.
[  425.775807][ T5925] usbhid 4-1:0.0: can't add hid device: -71
[  425.870134][ T5925] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  427.229120][ T5925] usb 4-1: USB disconnect, device number 42
[  430.099753][ T5925] usb 4-1: new high-speed USB device number 43 using dummy_hcd
[  430.305332][ T5925] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  430.385561][    T9] usb 2-1: new high-speed USB device number 53 using dummy_hcd
[  430.395177][ T5925] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  430.407025][ T5925] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  430.416724][ T5925] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  430.425629][ T5925] usb 4-1: SerialNumber: syz
[  430.570057][    T9] usb 2-1: Using ep0 maxpacket: 32
[  430.579438][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  430.596135][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  430.606810][    T9] usb 2-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  430.616551][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  430.647076][    T9] usb 2-1: config 0 descriptor??
[  430.699832][ T5847] usb 5-1: new high-speed USB device number 58 using dummy_hcd
[  430.814696][ T5925] usb 4-1: 0:2 : does not exist
[  430.845168][ T9250] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1040'.
[  430.922850][ T5847] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  430.945960][ T5847] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  430.977187][ T5925] usb 4-1: USB disconnect, device number 43
[  430.978528][ T5847] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  431.034976][ T8352] udevd[8352]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  431.064296][ T5847] usb 5-1: config 0 descriptor??
[  431.075462][    T9] ft260 0003:0403:6030.001E: unknown main item tag 0x0
[  431.099230][ T5847] pwc: Askey VC010 type 2 USB webcam detected.
[  431.320837][    T9] ft260 0003:0403:6030.001E: chip code: 6424 8183
[  431.528488][    T9] ft260 0003:0403:6030.001E: failed to retrieve system status
[  431.536928][ T5847] pwc: recv_control_msg error -32 req 02 val 2b00
[  431.537738][    T9] ft260 0003:0403:6030.001E: probe with driver ft260 failed with error -5
[  431.599005][ T5847] pwc: recv_control_msg error -32 req 02 val 2700
[  431.663385][ T5847] pwc: recv_control_msg error -32 req 02 val 2c00
[  431.712649][ T5847] pwc: recv_control_msg error -32 req 04 val 1000
[  431.750182][   T29] usb 4-1: new high-speed USB device number 44 using dummy_hcd
[  431.785115][ T5847] pwc: recv_control_msg error -32 req 04 val 1300
[  431.843350][ T5847] pwc: recv_control_msg error -32 req 04 val 1400
[  431.955112][ T5847] pwc: recv_control_msg error -32 req 02 val 2000
[  432.198280][ T5969] usb 1-1: new high-speed USB device number 55 using dummy_hcd
[  432.216352][   T29] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  432.242160][   T29] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  432.252242][   T29] usb 4-1: config 1 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  432.263761][   T29] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  432.282256][   T29] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  432.294226][ T5847] pwc: recv_control_msg error -32 req 04 val 1500
[  432.302031][   T29] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  432.318369][ T5847] pwc: recv_control_msg error -32 req 02 val 2500
[  432.326236][   T29] usb 4-1: SerialNumber: syz
[  432.332472][ T5847] pwc: recv_control_msg error -32 req 02 val 2400
[  432.342785][ T5847] pwc: recv_control_msg error -32 req 02 val 2600
[  432.350721][ T5847] pwc: recv_control_msg error -32 req 02 val 2900
[  432.358335][ T5847] pwc: recv_control_msg error -32 req 02 val 2800
[  432.386452][ T5969] usb 1-1: Using ep0 maxpacket: 32
[  432.401572][ T5969] usb 1-1: config 0 has an invalid interface number: 188 but max is 0
[  432.410477][ T5969] usb 1-1: config 0 has no interface number 0
[  432.417612][ T5969] usb 1-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[  432.437059][ T5969] usb 1-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  432.447342][ T5969] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  432.456659][ T5969] usb 1-1: Product: syz
[  432.461825][ T5969] usb 1-1: Manufacturer: syz
[  432.466504][ T5969] usb 1-1: SerialNumber: syz
[  432.485256][ T5969] usb 1-1: config 0 descriptor??
[  432.493715][ T9262] raw-gadget.3 gadget.0: fail, usb_ep_enable returned -22
[  432.568017][ T5847] pwc: recv_control_msg error -71 req 04 val 1200
[  432.592633][ T5847] pwc: Registered as video103.
[  432.616455][   T29] usb 4-1: 0:2 : does not exist
[  432.638077][ T5847] input: PWC snapshot button as /devices/platform/dummy_hcd.4/usb5/5-1/input/input24
[  432.655008][   T29] usb 4-1: unit 5 not found!
[  432.689245][ T5847] usb 5-1: USB disconnect, device number 58
[  432.710067][ T9262] raw-gadget.3 gadget.0: fail, usb_ep_enable returned -22
[  432.775467][   T29] usb 4-1: USB disconnect, device number 44
[  432.859949][ T8352] udevd[8352]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  433.046286][   T29] usb 2-1: USB disconnect, device number 53
[  433.346316][ T5969] asix 1-1:0.188 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61
[  433.404615][ T5969] asix 1-1:0.188: probe with driver asix failed with error -61
[  433.984875][ T9282] sp0: Synchronizing with TNC
[  434.284189][    T9] usb 5-1: new high-speed USB device number 59 using dummy_hcd
[  434.469750][    T9] usb 5-1: Using ep0 maxpacket: 8
[  434.479362][    T9] usb 5-1: config 3 has an invalid interface number: 116 but max is 0
[  434.587173][    T9] usb 5-1: config 3 has no interface number 0
[  434.607430][    T9] usb 5-1: config 3 interface 116 has no altsetting 0
[  434.628087][    T9] usb 5-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=26.6d
[  434.645358][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  434.684971][    T9] usb 5-1: Product: syz
[  434.739088][    T9] usb 5-1: Manufacturer: syz
[  434.749268][    T9] usb 5-1: SerialNumber: syz
[  434.760396][ T5969] usb 1-1: USB disconnect, device number 55
[  435.091363][    T9] viperboard 5-1:3.116: version 0.00 found at bus 005 address 059
[  435.134998][    T9] viperboard-i2c viperboard-i2c.2.auto: error -EIO: failure setting i2c_bus_freq to 100
[  435.169950][   T29] usb 4-1: new high-speed USB device number 45 using dummy_hcd
[  435.185922][    T9] viperboard-i2c viperboard-i2c.2.auto: probe with driver viperboard-i2c failed with error -5
[  435.243209][    T9] usb 5-1: USB disconnect, device number 59
[  435.311756][ T5969] usb 1-1: new high-speed USB device number 56 using dummy_hcd
[  435.359842][   T29] usb 4-1: Using ep0 maxpacket: 32
[  435.417392][   T29] usb 4-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb
[  435.433390][   T29] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  435.469929][   T29] usb 4-1: Product: syz
[  435.474502][   T29] usb 4-1: Manufacturer: syz
[  435.479418][   T29] usb 4-1: SerialNumber: syz
[  435.500236][ T5969] usb 1-1: Using ep0 maxpacket: 32
[  435.584202][ T5969] usb 1-1: config 0 has an invalid interface number: 89 but max is 0
[  435.592940][ T5969] usb 1-1: config 0 has no interface number 0
[  435.601521][ T5969] usb 1-1: New USB device found, idVendor=12d1, idProduct=7ef3, bcdDevice=54.68
[  435.611572][ T5969] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  435.623280][   T29] usb 4-1: config 0 descriptor??
[  435.628560][ T5969] usb 1-1: Product: syz
[  435.634306][ T5969] usb 1-1: Manufacturer: syz
[  435.639071][ T5969] usb 1-1: SerialNumber: syz
[  435.653129][   T29] gspca_main: ov534_9-2.14.0 probing 05a9:1550
[  435.660880][ T5969] usb 1-1: config 0 descriptor??
[  435.686675][ T5969] hub 1-1:0.89: bad descriptor, ignoring hub
[  435.697190][ T5969] hub 1-1:0.89: probe with driver hub failed with error -5
[  435.708625][ T5969] option 1-1:0.89: GSM modem (1-port) converter detected
[  435.980160][    T9] usb 1-1: USB disconnect, device number 56
[  435.994557][    T9] option 1-1:0.89: device disconnected
[  436.400655][    T9] usb 2-1: new high-speed USB device number 54 using dummy_hcd
[  437.300858][   T29] gspca_ov534_9: reg_w failed -110
[  437.619761][    T9] usb 2-1: Using ep0 maxpacket: 32
[  437.641520][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  438.103460][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  438.114520][    T9] usb 2-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  438.126023][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  438.164093][    T9] usb 2-1: config 0 descriptor??
[  438.229884][   T29] gspca_ov534_9: Unknown sensor 0000
[  438.230023][   T29] ov534_9 4-1:0.0: probe with driver ov534_9 failed with error -22
[  438.364960][ T9291] Process accounting resumed
[  438.660888][ T9315] netlink: 'syz.4.1058': attribute type 4 has an invalid length.
[  438.670869][ T9315] netlink: 3657 bytes leftover after parsing attributes in process `syz.4.1058'.
[  438.708620][ T5969] usb 4-1: USB disconnect, device number 45
[  439.232667][   T29] usb 1-1: new high-speed USB device number 57 using dummy_hcd
[  439.261350][    T9] ft260 0003:0403:6030.001F: unknown main item tag 0x0
[  439.426762][   T29] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  439.453763][    T9] ft260 0003:0403:6030.001F: chip code: 6424 8183
[  439.703409][   T29] usb 1-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  439.713722][   T29] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  439.736014][    T9] ft260 0003:0403:6030.001F: failed to retrieve system status
[  439.737083][   T29] usb 1-1: config 0 descriptor??
[  439.768442][   T29] pwc: Askey VC010 type 2 USB webcam detected.
[  440.730361][    T9] ft260 0003:0403:6030.001F: probe with driver ft260 failed with error -5
[  441.780182][ T5903] usb 2-1: reset high-speed USB device number 54 using dummy_hcd
[  441.849779][ T5969] usb 5-1: new high-speed USB device number 60 using dummy_hcd
[  441.974517][   T29] pwc: recv_control_msg error -32 req 02 val 2b00
[  441.993073][   T29] pwc: recv_control_msg error -32 req 02 val 2700
[  442.016493][   T29] pwc: recv_control_msg error -32 req 02 val 2c00
[  442.026763][ T5969] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  442.043745][   T29] pwc: recv_control_msg error -32 req 04 val 1000
[  442.056355][ T5969] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  442.073665][   T29] pwc: recv_control_msg error -32 req 04 val 1300
[  442.113338][   T29] pwc: recv_control_msg error -32 req 04 val 1400
[  442.133772][ T5969] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  442.146343][   T29] pwc: recv_control_msg error -32 req 02 val 2000
[  442.161678][ T5969] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  442.186014][ T5969] usb 5-1: SerialNumber: syz
[  442.360462][   T29] pwc: recv_control_msg error -32 req 04 val 1500
[  442.386756][   T29] pwc: recv_control_msg error -32 req 02 val 2500
[  442.401002][   T29] pwc: recv_control_msg error -32 req 02 val 2400
[  442.421486][   T29] pwc: recv_control_msg error -32 req 02 val 2600
[  442.447936][   T29] pwc: recv_control_msg error -32 req 02 val 2900
[  442.462101][   T29] pwc: recv_control_msg error -32 req 02 val 2800
[  442.686299][ T5969] usb 5-1: 0:2 : does not exist
[  442.710348][   T29] pwc: recv_control_msg error -32 req 04 val 1100
[  442.729849][   T29] pwc: recv_control_msg error -71 req 04 val 1200
[  442.809892][ T9339] 9pnet_virtio: no channels available for device syz
[  443.757703][ T5903] usb 2-1: device descriptor read/64, error -71
[  443.801141][   T29] pwc: Registered as video103.
[  444.188192][   T29] input: PWC snapshot button as /devices/platform/dummy_hcd.0/usb1/1-1/input/input25
[  444.245193][ T5969] usb 5-1: USB disconnect, device number 60
[  444.279811][   T29] usb 1-1: USB disconnect, device number 57
[  444.419096][ T5903] usb 2-1: reset high-speed USB device number 54 using dummy_hcd
[  444.447732][ T5903] usb 2-1: device reset changed ep0 maxpacket size!
[  444.473584][  T801] usb 2-1: USB disconnect, device number 54
[  444.514565][ T8352] udevd[8352]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  444.700032][  T801] usb 2-1: new high-speed USB device number 55 using dummy_hcd
[  444.890169][  T801] usb 2-1: Using ep0 maxpacket: 8
[  444.919098][  T801] usb 2-1: config 3 has an invalid interface number: 116 but max is 0
[  444.952498][  T801] usb 2-1: config 3 has no interface number 0
[  444.961988][  T801] usb 2-1: config 3 interface 116 has no altsetting 0
[  444.975144][  T801] usb 2-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=26.6d
[  444.984826][  T801] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  445.050692][  T801] usb 2-1: Product: syz
[  445.413816][ T9359] netlink: 'syz.0.1070': attribute type 4 has an invalid length.
[  445.422206][ T9359] netlink: 1601 bytes leftover after parsing attributes in process `syz.0.1070'.
[  445.452028][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  445.856610][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  445.869874][  T801] usb 2-1: Manufacturer: syz
[  445.874568][  T801] usb 2-1: SerialNumber: syz
[  446.118801][  T801] usb 2-1: can't set config #3, error -71
[  446.885455][  T801] usb 2-1: USB disconnect, device number 55
[  448.439763][ T5969] usb 2-1: new high-speed USB device number 56 using dummy_hcd
[  448.733720][ T5969] usb 2-1: Using ep0 maxpacket: 32
[  448.877885][ T5969] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  448.895352][ T5969] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  448.929417][ T5969] usb 2-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  449.018291][ T5969] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  449.058063][ T5969] usb 2-1: config 0 descriptor??
[  449.178205][ T9385] comedi comedi3: Cannot bond this driver to itself!
[  449.528198][ T5969] ft260 0003:0403:6030.0020: unknown main item tag 0x0
[  449.624312][ T9390] 9pnet_virtio: no channels available for device syz
[  451.133350][ T5969] ft260 0003:0403:6030.0020: failed to retrieve chip version
[  451.175356][ T5969] ft260 0003:0403:6030.0020: probe with driver ft260 failed with error -71
[  451.428669][ T5969] usb 2-1: USB disconnect, device number 56
[  452.772373][ T9400] tipc: Started in network mode
[  452.778929][ T9400] tipc: Node identity 765d943ddf4b, cluster identity 4711
[  452.818542][ T9400] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  452.858513][ T9398] tipc: Resetting bearer <eth:syzkaller0>
[  453.153350][  T801] usb 5-1: new high-speed USB device number 61 using dummy_hcd
[  453.213374][ T5903] usb 1-1: new high-speed USB device number 58 using dummy_hcd
[  453.310362][  T801] usb 5-1: Using ep0 maxpacket: 32
[  453.353043][  T801] usb 5-1: config 0 has an invalid interface number: 51 but max is 0
[  453.379947][ T5903] usb 1-1: Using ep0 maxpacket: 8
[  453.385174][  T801] usb 5-1: config 0 has no interface number 0
[  453.400383][ T5903] usb 1-1: config 3 has an invalid interface number: 116 but max is 0
[  453.429856][  T801] usb 5-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  453.440167][ T5903] usb 1-1: config 3 has no interface number 0
[  453.455980][  T801] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  453.465441][ T5903] usb 1-1: config 3 interface 116 has no altsetting 0
[  453.473374][  T801] usb 5-1: Product: syz
[  453.477988][  T801] usb 5-1: Manufacturer: syz
[  453.483714][  T801] usb 5-1: SerialNumber: syz
[  453.500158][ T5903] usb 1-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=26.6d
[  454.471655][  T801] usb 5-1: config 0 descriptor??
[  454.477241][ T5903] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  454.486381][ T5903] usb 1-1: Product: syz
[  454.491639][ T5903] usb 1-1: Manufacturer: syz
[  454.498486][  T801] quatech2 5-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  454.508719][ T5903] usb 1-1: SerialNumber: syz
[  455.216980][    C0] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000038: 0000 [#1] SMP KASAN PTI
[  455.229046][    C0] KASAN: null-ptr-deref in range [0x00000000000001c0-0x00000000000001c7]
[  455.237556][    C0] CPU: 0 UID: 0 PID: 801 Comm: kworker/0:2 Not tainted syzkaller #0 PREEMPT(full) 
[  455.247170][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/13/2026
[  455.257310][    C0] Workqueue: usb_hub_wq hub_event
[  455.262452][    C0] RIP: 0010:__queue_work+0xa2/0xf90
[  455.267728][    C0] Code: 11 31 ff 89 ee e8 4e f4 37 00 85 ed 0f 85 ef 0c 00 00 e8 01 f0 37 00 4d 8d b7 c0 01 00 00 4c 89 f0 48 c1 e8 03 48 89 44 24 28 <42> 0f b6 04 20 84 c0 0f 85 22 0d 00 00 4c 89 34 24 41 8b 2e 89 ee
[  455.287446][    C0] RSP: 0018:ffffc900000077f8 EFLAGS: 00010002
[  455.293724][    C0] RAX: 0000000000000038 RBX: 0000000000000008 RCX: 0000000000040000
[  455.301767][    C0] RDX: ffffc90002141000 RSI: 0000000000000208 RDI: 0000000000000209
[  455.309846][    C0] RBP: 0000000000000000 R08: ffff888025bba01f R09: 1ffff11004b77403
[  455.318165][    C0] R10: dffffc0000000000 R11: ffffed1004b77404 R12: dffffc0000000000
[  455.326655][    C0] R13: ffff888025bba018 R14: 00000000000001c0 R15: 0000000000000000
[  455.334695][    C0] FS:  0000000000000000(0000) GS:ffff8881252b4000(0000) knlGS:0000000000000000
[  455.343687][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  455.350350][    C0] CR2: 00007f3bfcde8600 CR3: 0000000051394000 CR4: 00000000003526f0
[  455.358587][    C0] Call Trace:
[  455.361933][    C0]  <IRQ>
[  455.364865][    C0]  ? __asan_memcpy+0x40/0x70
[  455.369553][    C0]  ? __tty_insert_flip_string_flags+0x3e9/0x430
[  455.375989][    C0]  queue_work_on+0x106/0x1d0
[  455.380677][    C0]  qt2_read_bulk_callback+0xe96/0x1030
[  455.386445][    C0]  ? __pfx_qt2_read_bulk_callback+0x10/0x10
[  455.392674][    C0]  ? kcov_remote_start+0x88/0x7a0
[  455.397800][    C0]  ? kcov_remote_start+0x88/0x7a0
[  455.402915][    C0]  __usb_hcd_giveback_urb+0x376/0x540
[  455.408549][    C0]  dummy_timer+0xbbd/0x45d0
[  455.413176][    C0]  ? __pfx_dummy_timer+0x10/0x10
[  455.418187][    C0]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  455.424109][    C0]  ? __pfx_dummy_timer+0x10/0x10
[  455.429335][    C0]  ? __pfx_dummy_timer+0x10/0x10
[  455.434515][    C0]  __hrtimer_run_queues+0x529/0xc30
[  455.439827][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  455.445633][    C0]  ? read_tsc+0x9/0x20
[  455.449788][    C0]  hrtimer_run_softirq+0x182/0x5a0
[  455.454993][    C0]  handle_softirqs+0x22a/0x7c0
[  455.459868][    C0]  ? __irq_exit_rcu+0x5f/0x150
[  455.464748][    C0]  __irq_exit_rcu+0x5f/0x150
[  455.469409][    C0]  irq_exit_rcu+0x9/0x30
[  455.473745][    C0]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  455.479463][    C0]  </IRQ>
[  455.482434][    C0]  <TASK>
[  455.485710][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  455.491798][    C0] RIP: 0010:lock_acquire+0x221/0x330
[  455.497158][    C0] Code: ff ff ff e8 e1 1d fe 09 f7 44 24 08 00 02 00 00 0f 84 3a ff ff ff 65 48 8b 05 fb bd 75 11 48 3b 44 24 58 75 33 fb 48 83 c4 60 <5b> 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc 48 8d 3d 88 6b 72
[  455.516936][    C0] RSP: 0018:ffffc90003226778 EFLAGS: 00000286
[  455.523076][    C0] RAX: 2a4894baab0dff00 RBX: 0000000000000000 RCX: 0000000000000046
[  455.531275][    C0] RDX: 0000000045052151 RSI: ffffffff8e14e200 RDI: ffffffff8c273e00
[  455.539312][    C0] RBP: ffffffff81762295 R08: ffffffff81762295 R09: ffffffff8e75dee0
[  455.547444][    C0] R10: ffffc900032268d8 R11: ffffffff81b01a80 R12: 0000000000000002
[  455.555447][    C0] R13: ffffffff8e75dee0 R14: 0000000000000000 R15: 0000000000000246
[  455.563475][    C0]  ? unwind_next_frame+0xa5/0x23c0
[  455.568683][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  455.574980][    C0]  ? unwind_next_frame+0xa5/0x23c0
[  455.580232][    C0]  ? bus_for_each_drv+0x258/0x2f0
[  455.585304][    C0]  ? unwind_next_frame+0xa5/0x23c0
[  455.590458][    C0]  unwind_next_frame+0xc2/0x23c0
[  455.595525][    C0]  ? unwind_next_frame+0xa5/0x23c0
[  455.600772][    C0]  ? unwind_next_frame+0xa5/0x23c0
[  455.605982][    C0]  ? __device_attach_driver+0x2d4/0x4c0
[  455.611589][    C0]  ? bus_for_each_drv+0x258/0x2f0
[  455.616657][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  455.622866][    C0]  arch_stack_walk+0x11b/0x150
[  455.627778][    C0]  ? bus_for_each_drv+0x258/0x2f0
[  455.632887][    C0]  stack_trace_save+0xa9/0x100
[  455.637958][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  455.643411][    C0]  ? number+0xe1/0xf80
[  455.647527][    C0]  ? __pfx_number+0x10/0x10
[  455.652122][    C0]  kasan_save_track+0x3e/0x80
[  455.656850][    C0]  ? kasan_save_track+0x3e/0x80
[  455.661796][    C0]  ? __kasan_kmalloc+0x93/0xb0
[  455.666811][    C0]  ? __kmalloc_cache_noprof+0x31c/0x660
[  455.672438][    C0]  ? device_add+0xbe/0xb70
[  455.676906][    C0]  ? usb_serial_probe+0x26f4/0x2e50
[  455.682357][    C0]  ? usb_probe_interface+0x668/0xc90
[  455.687688][    C0]  ? really_probe+0x267/0xaf0
[  455.692418][    C0]  ? __driver_probe_device+0x18c/0x320
[  455.698007][    C0]  ? driver_probe_device+0x4f/0x240
[  455.703292][    C0]  ? __device_attach_driver+0x2d4/0x4c0
[  455.709058][    C0]  ? bus_for_each_drv+0x258/0x2f0
[  455.714115][    C0]  ? __device_attach+0x2c5/0x450
[  455.719129][    C0]  ? device_initial_probe+0xa1/0xd0
[  455.724474][    C0]  ? bus_probe_device+0x12a/0x220
[  455.729537][    C0]  ? device_add+0x7b6/0xb70
[  455.734084][    C0]  ? usb_set_configuration+0x1a87/0x2110
[  455.740299][    C0]  ? usb_generic_driver_probe+0x8d/0x150
[  455.745982][    C0]  ? usb_probe_device+0x1c4/0x3b0
[  455.751060][    C0]  ? really_probe+0x267/0xaf0
[  455.755781][    C0]  ? __driver_probe_device+0x18c/0x320
[  455.761280][    C0]  ? driver_probe_device+0x4f/0x240
[  455.766529][    C0]  ? __device_attach_driver+0x2d4/0x4c0
[  455.772211][    C0]  ? bus_for_each_drv+0x258/0x2f0
[  455.777287][    C0]  __kasan_kmalloc+0x93/0xb0
[  455.782017][    C0]  __kmalloc_cache_noprof+0x31c/0x660
[  455.787628][    C0]  ? device_add+0xbe/0xb70
[  455.792347][    C0]  ? __kmalloc_cache_noprof+0x15b/0x660
[  455.797974][    C0]  device_add+0xbe/0xb70
[  455.802360][    C0]  ? allocate_minors+0x206/0x2b0
[  455.807336][    C0]  usb_serial_probe+0x26f4/0x2e50
[  455.812527][    C0]  ? __pfx_usb_serial_generic_read_bulk_callback+0x10/0x10
[  455.819771][    C0]  ? __pfx_usb_serial_generic_read_bulk_callback+0x10/0x10
[  455.827039][    C0]  usb_probe_interface+0x668/0xc90
[  455.832225][    C0]  ? __pfx_usb_probe_interface+0x10/0x10
[  455.837997][    C0]  really_probe+0x267/0xaf0
[  455.842645][    C0]  __driver_probe_device+0x18c/0x320
[  455.847992][    C0]  driver_probe_device+0x4f/0x240
[  455.853071][    C0]  __device_attach_driver+0x2d4/0x4c0
[  455.858487][    C0]  bus_for_each_drv+0x258/0x2f0
[  455.863819][    C0]  ? __pfx___device_attach_driver+0x10/0x10
[  455.869940][    C0]  ? __pfx_bus_for_each_drv+0x10/0x10
[  455.875360][    C0]  ? lockdep_hardirqs_on+0x7a/0x110
[  455.880969][    C0]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  455.886996][    C0]  __device_attach+0x2c5/0x450
[  455.891809][    C0]  ? __pfx___device_attach+0x10/0x10
[  455.897402][    C0]  ? _raw_spin_unlock+0x28/0x50
[  455.902289][    C0]  device_initial_probe+0xa1/0xd0
[  455.907378][    C0]  bus_probe_device+0x12a/0x220
[  455.912274][    C0]  ? device_add+0x726/0xb70
[  455.916826][    C0]  device_add+0x7b6/0xb70
[  455.921208][    C0]  usb_set_configuration+0x1a87/0x2110
[  455.926747][    C0]  usb_generic_driver_probe+0x8d/0x150
[  455.932251][    C0]  usb_probe_device+0x1c4/0x3b0
[  455.937144][    C0]  ? __pfx_usb_probe_device+0x10/0x10
[  455.942556][    C0]  really_probe+0x267/0xaf0
[  455.947113][    C0]  __driver_probe_device+0x18c/0x320
[  455.952441][    C0]  driver_probe_device+0x4f/0x240
[  455.957531][    C0]  __device_attach_driver+0x2d4/0x4c0
[  455.962985][    C0]  bus_for_each_drv+0x258/0x2f0
[  455.967886][    C0]  ? __pfx___device_attach_driver+0x10/0x10
[  455.974830][    C0]  ? __pfx_bus_for_each_drv+0x10/0x10
[  455.980547][    C0]  ? lockdep_hardirqs_on+0x7a/0x110
[  455.985979][    C0]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  455.992010][    C0]  __device_attach+0x2c5/0x450
[  455.997017][    C0]  ? __pfx___device_attach+0x10/0x10
[  456.004292][    C0]  ? _raw_spin_unlock+0x28/0x50
[  456.009416][    C0]  device_initial_probe+0xa1/0xd0
[  456.016171][    C0]  bus_probe_device+0x12a/0x220
[  456.021954][    C0]  ? device_add+0x726/0xb70
[  456.026599][    C0]  device_add+0x7b6/0xb70
[  456.030982][    C0]  usb_new_device+0xa08/0x16f0
[  456.035847][    C0]  ? __pfx_usb_new_device+0x10/0x10
[  456.041202][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  456.046656][    C0]  hub_event+0x2a1c/0x4f30
[  456.051189][    C0]  ? __lock_acquire+0x6b5/0x2cf0
[  456.056295][    C0]  ? __pfx_hub_event+0x10/0x10
[  456.061278][    C0]  ? process_one_work+0x87c/0x15a0
[  456.066643][    C0]  ? process_one_work+0x87c/0x15a0
[  456.071860][    C0]  process_one_work+0x949/0x15a0
[  456.077118][    C0]  ? __pfx_process_one_work+0x10/0x10
[  456.082627][    C0]  ? do_raw_spin_lock+0x12b/0x2f0
[  456.087933][    C0]  worker_thread+0xb46/0x1140
[  456.093543][    C0]  kthread+0x388/0x470
[  456.097759][    C0]  ? __pfx_worker_thread+0x10/0x10
[  456.102926][    C0]  ? __pfx_kthread+0x10/0x10
[  456.107659][    C0]  ret_from_fork+0x51b/0xa40
[  456.112293][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  456.117681][    C0]  ? __switch_to+0xc7d/0x1400
[  456.122402][    C0]  ? __pfx_kthread+0x10/0x10
[  456.127145][    C0]  ret_from_fork_asm+0x1a/0x30
[  456.131971][    C0]  </TASK>
[  456.135173][    C0] Modules linked in:
[  456.139301][    C0] ---[ end trace 0000000000000000 ]---
[  456.144879][    C0] RIP: 0010:__queue_work+0xa2/0xf90
[  456.150310][    C0] Code: 11 31 ff 89 ee e8 4e f4 37 00 85 ed 0f 85 ef 0c 00 00 e8 01 f0 37 00 4d 8d b7 c0 01 00 00 4c 89 f0 48 c1 e8 03 48 89 44 24 28 <42> 0f b6 04 20 84 c0 0f 85 22 0d 00 00 4c 89 34 24 41 8b 2e 89 ee
[  456.171258][    C0] RSP: 0018:ffffc900000077f8 EFLAGS: 00010002
[  456.177469][    C0] RAX: 0000000000000038 RBX: 0000000000000008 RCX: 0000000000040000
[  456.185511][    C0] RDX: ffffc90002141000 RSI: 0000000000000208 RDI: 0000000000000209
[  456.193620][    C0] RBP: 0000000000000000 R08: ffff888025bba01f R09: 1ffff11004b77403
[  456.201766][    C0] R10: dffffc0000000000 R11: ffffed1004b77404 R12: dffffc0000000000
[  456.210033][    C0] R13: ffff888025bba018 R14: 00000000000001c0 R15: 0000000000000000
[  456.218123][    C0] FS:  0000000000000000(0000) GS:ffff8881252b4000(0000) knlGS:0000000000000000
[  456.227381][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  456.234119][    C0] CR2: 00007f3bfcde8600 CR3: 0000000051394000 CR4: 00000000003526f0
[  456.243382][    C0] Kernel panic - not syncing: Fatal exception in interrupt
[  456.251241][    C0] Kernel Offset: disabled
[  456.256369][    C0] Rebooting in 86400 seconds..