last executing test programs:

1.844289964s ago: executing program 2 (id=993):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x88203, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, 0xc})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f00000001c0)=ANY=[@ANYBLOB="0100000000000000ff0f000004"])

1.705161357s ago: executing program 3 (id=995):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r0}, 0x18)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000140)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r1, 0x28, 0x1, &(0x7f0000000100)=0xfffffffffffffffe, 0x112)

1.645167088s ago: executing program 0 (id=996):
r0 = io_uring_setup(0x25b4, &(0x7f00000002c0)={0x0, 0x1670, 0x400, 0x2, 0x3d3})
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001600), 0x0, 0x0)
ioctl$TCSBRKP(r1, 0x5425, 0x0)
ioctl$TCSETSW2(r1, 0x5425, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

1.584411979s ago: executing program 3 (id=997):
mkdir(&(0x7f00000000c0)='./file0\x00', 0x16)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
unlinkat(r0, &(0x7f0000000280)='./file0\x00', 0x200)
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./bus\x00', 0x289c2, 0x1)

1.445074602s ago: executing program 3 (id=998):
r0 = socket$inet6(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r0, 0x29, 0x4e, &(0x7f0000000600)=0x9, 0x4)
setsockopt$inet6_mreq(r0, 0x29, 0x1d, &(0x7f0000000200)={@empty}, 0x14)
bind$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback={0xfec0ffff00000000}}, 0x1c)
syz_emit_ethernet(0x6e, &(0x7f0000000640)={@broadcast, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00318e", 0x38, 0x3a, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[], @time_exceed={0x2, 0x1, 0x0, 0x0, '\x00', {0x0, 0x6, "000006", 0xda34, 0x3a, 0xff, @mcast1, @empty, [], "ed35c6ed59ff7f1b"}}}}}}}, 0x0)

1.444813452s ago: executing program 2 (id=999):
r0 = creat(&(0x7f0000000200)='./file1\x00', 0x2)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0))
r1 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000001200), 0xa, &(0x7f0000000180)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

1.383802733s ago: executing program 3 (id=1000):
mkdir(&(0x7f0000000400)='./file0\x00', 0x54)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000004c0)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0xd5)
openat$cgroup_ro(r0, &(0x7f0000000040)='cpu.stat\x00', 0xf000, 0x0)

1.369380363s ago: executing program 1 (id=1001):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000480)=[<r1=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_SETPLANE(r0, 0xc03064b7, &(0x7f0000000380)={r1, 0x0, 0x0, 0x1, 0x10000, 0x8, 0x2, 0x6, 0x1, 0x7f, 0x2})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r0, 0xc02064b9, &(0x7f0000000740)={&(0x7f0000000440)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000700), 0x4, r1})

1.245185556s ago: executing program 2 (id=1002):
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x4})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
ioctl$UFFDIO_CONTINUE(r0, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})

1.210903827s ago: executing program 3 (id=1003):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546000677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289d01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5467a932b77674e802a0d42bc6099ad238af770b5ed8925161729298700000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eeb1948bf42bc7fc2cb274849c9524154fa24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809b5b9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed3957f813567f7a95435ac15fc0288d9b2a169cdcacc413b48dafb7a2c8cb482bac0ac559eaf39027ceb379a902d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff7a1ef3282830689da6b53b263339863297771429d120000003341bf4abacac94500fca0493cf29b33dcc9ffffffffffffffd39f6ce0c6ff01589646efd1cf870cd7bb2366fdf870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1293b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd000c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c7df8be5877050c91301fb997316dbf17866fb84d4173731efe895ff2e1c55ef08235a0126e01254c44060926e90109b598502d3e959efc71f665c4d75cf2458e3542c9062ece84c99a861887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc74aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7ad333545794f37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f4df90400000000000000d6b2c5ea139376f24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff070000001e48418046c216c1f895778cb25122a2a998de0842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec84ac3571f02f647b3385b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba2f58ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df986741517abf11389b751f4e109b60000000000000000d6d5210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288d139bd3da230ed05a8fe64680b0a3f9f2dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30235b9100000000a55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854356cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c776f4b4ce07e1c6fa66fcfc7a228805f76785efc0ceb1c8e5729c66418d169fc03aa18854693ad2a182068e1e3a0e2505bc7f41019645466ac96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7e478950aa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a8684853abf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab848753203b458b97ec1afb079b4b4ba686fcdf240430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7db3c4be290159f6bcd75f0dda9de5532e71ae9e48b0ed1254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b70ebc660309e1e245b0fdf9743af932cd6db49a47613808bad959719c0000000000378ac2e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6ca0400966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e3030108000000000000c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bffef97dcecc467ace456597685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4cba6e6390a9f302c6eb2df7766411bef0ebb5000000000006065d6735eb7a00e127c0000000000400000000000bfb0bba79344643b1d8daa9f38e4b62c1e2af68c6f500000010000000000944e4505da485a3a4154387a0a88370d9ed9467b09c5888a06431df3f68abf0b366c4d5f8bea7b29c257ed756dff7a21c6b661cbdd43de65afd7f661d5c84f915c90e3d6ea012b68b787eb01d8320000000000000060176dacba0ec503a37fae6b472ec369c79ee6a420c0fd8d8d82fe136d5af6c30bfeb0a7275babfdb96a127aa9386e0671c6454245a18c1c8c49552cff5d27b547cdc34c0858c77a47a9ff86ee9fbd9ceda428716a4218821176d8067997527230fa67d26950d3e4f2750fa7c872874ad3a2d11f9f6eb08e6d7b6fa257b04d8ce36360f524e3dfd2211641f3d2637d86b80681eca50ce0eecafdd22d41fa515c15591e70ded4b70efac3cb42fb352d82e8f7573e8ed8248da356fa91a252976d3a4d8c1843a808000000000000000562a3ea93117076dd4940b7df50d78289fe66197525f6095f8662d232970bef61b03fa83027963a1a2e07cfee30c0d0b4c5877f93b3637ca21eab5afcf5d4638dfe8f9202aaad51c979049dd76d65368cbd4187d9f74257c7c4a23ac4a34eec5aa17e78c5167216f5e72138d20f8325dd5f8f96c32189c904eaef580987f1ce601a7cdc35461db9981ac42f9e24b0699bbe4e3d986e38952b0b7938eefd9e7a292bbb66367ad77045fdc18855c81c031dedd185c723238373fc698d676791d04f1ff5f0825a6619e844892f31ed190233d58ecee949e310bf2b1a51b8a33ae65a06d2b6ad386bf8dc49dd328bcd75d1843a13d68560175a18af7efc3c0f20e32f84f6aaaf000000000000000000000013a6c66bce74a8fb9092023df695da2714a7933d699d42de2bc4a85e0a0e22228290a7a7553ab93a16e42453ed86869a02df2f47d4088fac1772d3cd955c81cbf91c2ca7942942f61723b558079b82547844f92df2499c4b2c2ef2539e5daa8d8727baaa6b57"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='mm_page_alloc\x00', r0}, 0x10)
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x1, 0x6213, &(0x7f000000cb40)="$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")
r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x100)
getdents(r1, &(0x7f0000001fc0)=""/184, 0xb8)

1.147473068s ago: executing program 2 (id=1004):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000280)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000040)={@val={0x0, 0x6003}, @void, @eth={@broadcast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x3ffd, 0x0, 0x3, 0x2f, 0x0, @private=0x1fe1, @multicast1}, {0xa000, 0x86dd, 0xc, 0x0, @gue={{0x1, 0x0, 0x0, 0x9, 0x0, @void}}}}}}}}, 0x32)

1.069170089s ago: executing program 1 (id=1005):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0xfffffffffffffe19}, 0x42)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280))
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000300)=r1, 0x4)
sendmsg$nl_xfrm(r0, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000580)=@allocspi={0xf8, 0x28, 0x339, 0x0, 0x0, {{{@in=@multicast1, @in6=@ipv4={'\x00', '\xff\xff', @private}}, {@in, 0x0, 0x32}, @in6=@loopback}, 0x0, 0x4}}, 0xf8}}, 0x0)

1.0146565s ago: executing program 0 (id=1006):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="9feb01001800000000000000540000005400000002000000000000000100000d000000000000000004"], 0x0, 0x6e, 0x0, 0x1}, 0x28)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3000000013000100000000000000000007000000", @ANYRES32=r2, @ANYBLOB="000000000000000010000c800c0022"], 0x30}, 0x1, 0x0, 0x0, 0x8004}, 0x0)

960.628022ms ago: executing program 1 (id=1007):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d40)={0x11, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000d00)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='contention_end\x00', r1}, 0x10)
ioctl$DRM_IOCTL_SET_VERSION(r0, 0xc0106407, &(0x7f00000000c0)={0x1, 0x2, 0x3, 0x7})
ioctl$DRM_IOCTL_GET_UNIQUE(r0, 0xc0106401, &(0x7f0000000000)={0x0, 0x0})

785.189194ms ago: executing program 1 (id=1008):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000340)={'wpan0\x00', <r3=>0x0})
sendmsg$IEEE802154_LLSEC_ADD_DEV(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x50, r1, 0x852dd6c070cd7e4d, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0xffffffff}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0x2000000}}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0xfe}, @IEEE802154_ATTR_SHORT_ADDR={0x6}]}, 0x50}, 0x4, 0x700000000000000}, 0x0)

785.018144ms ago: executing program 0 (id=1009):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x2, &(0x7f0000000000)=0x7, 0x4)
setsockopt$inet6_int(r0, 0x29, 0x42, &(0x7f0000000040)=0xf2b, 0x4)
getsockopt$inet6_buf(r0, 0x29, 0x6, &(0x7f0000001500)=""/17, &(0x7f0000000080)=0x11)

761.068725ms ago: executing program 2 (id=1010):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="fc0000001900010000000000fcdbdf2500000000000000000000000000000000fe8000000000000000000000000000bb00000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000400000000000000000000a94e000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000001000000000000004400050000000000000000000000000000000000000000022b0000000a000000fe8000000000000000000000000000aa0000000004"], 0xfc}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
r1 = socket$inet(0x2, 0x1, 0x0)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000040)='batadv_slave_0\x00', 0x10)
connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @multicast1}, 0x10)

615.941478ms ago: executing program 0 (id=1011):
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000180)=0x80000004, 0x4)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xffffffff}, 0x1c)
r1 = socket$inet6(0xa, 0x80002, 0x0)
bind$inet6(r1, &(0x7f0000000200)={0xa, 0x4e20, 0x0, @empty, 0x80ad}, 0x1c)

525.24599ms ago: executing program 2 (id=1012):
r0 = syz_usb_connect(0x0, 0x1cb, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000122f0d4071040403dfe4000000010902b901010000003f0904"], 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000480)={0x2c, &(0x7f0000000040)={0x20, 0x30}, 0x0, 0x0, 0x0, 0x0})

525.02122ms ago: executing program 1 (id=1013):
prctl$PR_SET_IO_FLUSHER(0x39, 0x1)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x4)
r1 = dup2(r0, r0)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x4, 0x1})

393.237692ms ago: executing program 0 (id=1014):
syz_mount_image$nilfs2(&(0x7f0000000ec0), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000400)=ANY=[], 0x1, 0xf04, &(0x7f0000000f40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x40042, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x2, 0x11, r0, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='mounts\x00')
read$FUSE(r1, &(0x7f0000000c40)={0x2020}, 0x2020)

364.565872ms ago: executing program 1 (id=1015):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000240)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000080)={0x44, &(0x7f0000000040)=ANY=[@ANYBLOB="00000100000005"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000a00)={0x84, &(0x7f0000000480)=ANY=[@ANYBLOB="00110f"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$printer(r0, 0x0, &(0x7f00000008c0)={0x34, &(0x7f0000000ac0)={0x40, 0xf, 0xf, "04332ae495f42cc5a335fdd7ff59c0"}, 0x0, 0x0, 0x0, 0x0, 0x0})

255.18µs ago: executing program 3 (id=1016):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$CEC_S_MODE(0xffffffffffffffff, 0x40046109, &(0x7f0000000000)=0x31)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r0, &(0x7f0000000000), 0xd)

0s ago: executing program 0 (id=1017):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ppoll(0x0, 0x0, 0x0, &(0x7f0000000280)={[0x5]}, 0x8)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x8)
ioctl$KVM_SET_MSRS(r2, 0x5000aea5, &(0x7f0000000080)=ANY=[])

kernel console output (not intermixed with test programs):

r (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.124: invalid indirect mapped block 8 (level 1)
[  113.719106][ T6275] F2FS-fs (loop3): Image doesn't support compression
[  113.719179][ T6275] F2FS-fs (loop3): Image doesn't support compression
[  113.744191][ T6275] F2FS-fs (loop3): invalid crc value
[  113.766475][ T6289] EXT4-fs (loop1): 1 truncate cleaned up
[  113.779721][ T6289] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.830703][ T6275] F2FS-fs (loop3): Found nat_bits in checkpoint
[  113.896059][ T5801] ocfs2: Unmounting device (7,2) on (node local)
[  113.981355][ T6275] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  114.065919][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.138687][ T6275] F2FS-fs (loop3): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_write+0x5b4/0x19c0
[  114.162796][ T6275] F2FS-fs (loop3): invalid blkaddr: 9728, type: 7, run fsck to fix.
[  114.175654][ T6275] syz.3.116: attempt to access beyond end of device
[  114.175654][ T6275] loop3: rw=2049, sector=77824, nr_sectors = 136 limit=40427
[  114.270803][ T6275] F2FS-fs (loop3): inject lock_op in f2fs_trylock_op of f2fs_write_single_data_page+0x97f/0x19e0
[  114.309082][ T6275] syz.3.116: attempt to access beyond end of device
[  114.309082][ T6275] loop3: rw=2049, sector=77960, nr_sectors = 2272 limit=40427
[  114.344514][ T6275] F2FS-fs (loop3): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_write+0x5b4/0x19c0
[  114.364182][ T6275] F2FS-fs (loop3): invalid blkaddr: 10065, type: 7, run fsck to fix.
[  114.375878][ T6275] syz.3.116: attempt to access beyond end of device
[  114.375878][ T6275] loop3: rw=2049, sector=80232, nr_sectors = 296 limit=40427
[  114.518749][ T5794] syz-executor: attempt to access beyond end of device
[  114.518749][ T5794] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  114.533887][ T5794] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  114.841079][ T5855] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  114.898492][ T6313] loop2: detected capacity change from 0 to 64
[  115.052595][ T5855] usb 2-1: Using ep0 maxpacket: 32
[  115.083407][ T5855] usb 2-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  115.114947][ T5855] usb 2-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  115.128538][ T5855] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  115.149560][ T5855] usb 2-1: Product: syz
[  115.171420][ T5855] usb 2-1: Manufacturer: syz
[  115.176096][ T5855] usb 2-1: SerialNumber: syz
[  115.212338][ T5855] usb 2-1: config 0 descriptor??
[  115.237683][ T5855] usb 2-1: bad CDC descriptors
[  115.257808][ T5855] usb 2-1: unsupported MDLM descriptors
[  115.450907][ T5855] usb 2-1: USB disconnect, device number 2
[  116.457066][ T6349] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  116.471465][    T9] usb 4-1: new full-speed USB device number 3 using dummy_hcd
[  116.674324][    T9] usb 4-1: config 9 has an invalid interface number: 81 but max is 0
[  116.682821][    T9] usb 4-1: config 9 has an invalid descriptor of length 0, skipping remainder of the config
[  116.693324][    T9] usb 4-1: config 9 has no interface number 0
[  116.699455][    T9] usb 4-1: config 9 interface 81 has no altsetting 0
[  116.711333][    T9] usb 4-1: New USB device found, idVendor=05f9, idProduct=ffff, bcdDevice=f0.f4
[  116.721455][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  116.732461][    T9] usb 4-1: Product: syz
[  116.736689][    T9] usb 4-1: Manufacturer: syz
[  116.742302][    T9] usb 4-1: SerialNumber: syz
[  116.971656][    T9] usbserial_generic 4-1:9.81: The "generic" usb-serial driver is only for testing and one-off prototypes.
[  116.988742][    T9] usbserial_generic 4-1:9.81: Tell linux-usb@vger.kernel.org to add your device to a proper driver.
[  116.999977][    T9] usbserial_generic 4-1:9.81: device has no bulk endpoints
[  117.018496][    T9] usb 4-1: USB disconnect, device number 3
[  117.118269][ T6358] sctp: [Deprecated]: syz.1.152 (pid 6358) Use of struct sctp_assoc_value in delayed_ack socket option.
[  117.118269][ T6358] Use struct sctp_sack_info instead
[  117.380149][ T6364] vivid-001: disconnect
[  117.387281][ T6363] vivid-001: reconnect
[  117.412508][ T6356] loop2: detected capacity change from 0 to 32768
[  117.447471][ T6356] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.151 (6356)
[  117.485648][ T6356] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  117.504829][ T6356] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  117.535250][ T6356] BTRFS info (device loop2): turning on sync discard
[  117.550264][ T6356] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  117.579872][ T6356] BTRFS info (device loop2): force zstd compression, level 3
[  117.610375][ T6356] BTRFS info (device loop2): force clearing of disk cache
[  117.633073][ T6356] BTRFS info (device loop2): turning on async discard
[  117.652386][ T6356] BTRFS info (device loop2): using free space tree
[  117.799512][ T6356] BTRFS info (device loop2): enabling ssd optimizations
[  117.820444][ T6356] BTRFS info (device loop2): rebuilding free space tree
[  117.890008][ T6356] BTRFS info (device loop2): checking UUID tree
[  117.981054][   T28] kauditd_printk_skb: 355 callbacks suppressed
[  117.981070][   T28] audit: type=1800 audit(1757010186.383:366): pid=6356 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.151" name="file2" dev="loop2" ino=261 res=0 errno=0
[  118.330361][ T5801] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  119.006901][ T6410] netlink: 36 bytes leftover after parsing attributes in process `syz.3.165'.
[  119.089342][ T6395] loop0: detected capacity change from 0 to 32768
[  119.157315][ T6395] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  119.219367][ T6422] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  119.417964][ T6395] XFS (loop0): Ending clean mount
[  119.433714][ T6395] XFS (loop0): Quotacheck needed: Please wait.
[  119.449889][ T6430] loop3: detected capacity change from 0 to 128
[  119.505158][ T6430] FAT-fs (loop3): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  119.511305][  T786] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  119.546071][ T6395] XFS (loop0): Quotacheck: Done.
[  119.648700][ T6430] syz.3.170: attempt to access beyond end of device
[  119.648700][ T6430] loop3: rw=2049, sector=128, nr_sectors = 1 limit=128
[  119.669939][ T6430] Buffer I/O error on dev loop3, logical block 128, lost async page write
[  119.680745][ T6430] syz.3.170: attempt to access beyond end of device
[  119.680745][ T6430] loop3: rw=2049, sector=129, nr_sectors = 8 limit=128
[  119.727304][  T786] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  119.750160][  T786] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  119.798415][  T786] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  119.822339][ T1127] FAT-fs (loop3): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  119.824192][ T5786] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  119.851267][  T786] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  119.860743][  T786] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  119.931283][  T786] usb 2-1: config 0 descriptor??
[  120.347381][  T786] plantronics 0003:047F:FFFF.0004: unknown main item tag 0xd
[  120.409101][  T786] plantronics 0003:047F:FFFF.0004: No inputs registered, leaving
[  120.464436][  T786] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  120.639407][  T786] usb 2-1: USB disconnect, device number 3
[  120.869847][ T6437] loop2: detected capacity change from 0 to 32768
[  120.911173][ T6437] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  120.956044][ T6460] loop0: detected capacity change from 0 to 512
[  121.011911][ T6460] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2244: inode #15: comm syz.0.181: corrupted in-inode xattr: invalid ea_ino
[  121.031416][ T6460] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.181: couldn't read orphan inode 15 (err -117)
[  121.069773][ T6460] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  121.194858][ T6437] XFS (loop2): Ending clean mount
[  121.238071][ T6437] XFS (loop2): Quotacheck needed: Please wait.
[  121.328607][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.359074][ T6437] XFS (loop2): Quotacheck: Done.
[  121.642390][ T5801] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  122.381256][    T9] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  122.607386][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  122.618537][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  122.632862][    T9] usb 4-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[  122.654664][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.678212][    T9] usb 4-1: config 0 descriptor??
[  122.838434][ T6496] loop1: detected capacity change from 0 to 32768
[  122.940885][ T6496] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  123.103436][    T9] cp2112 0003:10C4:EA90.0005: unknown main item tag 0x0
[  123.110488][    T9] cp2112 0003:10C4:EA90.0005: unknown main item tag 0x0
[  123.167516][    T9] cp2112 0003:10C4:EA90.0005: item fetching failed at offset 2/7
[  123.189243][    T9] cp2112 0003:10C4:EA90.0005: parse failed
[  123.206116][    T9] cp2112: probe of 0003:10C4:EA90.0005 failed with error -22
[  123.256421][ T5787] ocfs2: Unmounting device (7,1) on (node local)
[  123.328530][    T9] usb 4-1: USB disconnect, device number 4
[  123.775168][ T6510] syzkaller1: entered promiscuous mode
[  123.788729][ T6510] syzkaller1: entered allmulticast mode
[  124.145059][ T6506] loop1: detected capacity change from 0 to 32768
[  124.175384][ T6506] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  124.376403][ T6506] XFS (loop1): Ending clean mount
[  124.396526][ T6506] XFS (loop1): Quotacheck needed: Please wait.
[  124.510462][ T6506] XFS (loop1): Quotacheck: Done.
[  124.787781][ T5787] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  124.932222][ T6531] syzkaller1: entered promiscuous mode
[  124.937769][ T6531] syzkaller1: entered allmulticast mode
[  124.979022][ T6533] netlink: 209844 bytes leftover after parsing attributes in process `syz.3.208'.
[  126.523018][ T6537] loop3: detected capacity change from 0 to 40427
[  126.564392][ T6537] F2FS-fs (loop3): Wrong SIT boundary, start(1536) end(50334208) blocks(1024)
[  126.585227][ T6560] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  126.592928][ T6537] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  126.613684][ T6560] batadv_slave_0: entered promiscuous mode
[  126.654333][ T6537] F2FS-fs (loop3): invalid crc value
[  126.735435][ T6537] F2FS-fs (loop3): Found nat_bits in checkpoint
[  126.913657][    T8] hid-generic 0005:0000:0000.0006: hidraw0: BLUETOOTH HID v0.02 Device [syz0] on aa:aa:aa:aa:aa:aa
[  126.990100][ T6537] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  127.026611][ T6537] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  127.164377][ T6566] fido_id[6566]: Failed to open report descriptor at '/sys/devices/virtual/bluetooth/hci3/hci3:200/report_descriptor': No such file or directory
[  127.242777][ T5794] syz-executor: attempt to access beyond end of device
[  127.242777][ T5794] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  127.324770][ T5794] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  127.353744][ T6572] loop1: detected capacity change from 0 to 1024
[  127.367380][ T6572] EXT4-fs: Ignoring removed mblk_io_submit option
[  127.439610][ T6572] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  127.551661][ T6572] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  127.739071][ T6568] loop2: detected capacity change from 0 to 40427
[  127.755515][ T6568] F2FS-fs (loop2): build fault injection attr: rate: 690, type: 0x7ffff
[  127.775695][ T6568] F2FS-fs (loop2): Image doesn't support compression
[  127.812064][ T6568] F2FS-fs (loop2): Image doesn't support compression
[  127.901059][ T6568] F2FS-fs (loop2): invalid crc value
[  127.959255][ T6568] F2FS-fs (loop2): Found nat_bits in checkpoint
[  127.977076][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.130463][ T6568] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  128.297036][ T6582] F2FS-fs (loop2): inject page alloc in f2fs_grab_cache_page of f2fs_new_node_page+0x13a/0x910
[  128.471435][ T6586] netlink: 16 bytes leftover after parsing attributes in process `syz.1.225'.
[  128.681195][ T5841] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  128.818549][ T6590] io-wq is not configured for unbound workers
[  128.891058][ T5841] usb 4-1: Using ep0 maxpacket: 16
[  128.923345][ T5841] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  128.936639][ T5841] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  128.971167][ T5841] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  129.009976][ T5841] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  129.031206][ T6592] netlink: 96 bytes leftover after parsing attributes in process `syz.1.228'.
[  129.050744][ T5841] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  129.073918][ T5841] usb 4-1: config 0 descriptor??
[  129.506795][ T5841] HID 045e:07da: Invalid code 65791 type 1
[  129.519789][ T6498] Set syz1 is full, maxelem 65536 reached
[  129.543042][ T5841] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.0007/input/input9
[  129.595624][ T5841] microsoft 0003:045E:07DA.0007: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  129.780584][ T5841] usb 4-1: USB disconnect, device number 5
[  129.793982][ T6599] loop0: detected capacity change from 0 to 256
[  129.992908][ T6568] syz.2.220 (6568) used greatest stack depth: 20144 bytes left
[  130.000743][   T28] audit: type=1800 audit(1757010198.403:367): pid=6568 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.220" name="file1" dev="loop2" ino=10 res=0 errno=0
[  130.109590][ T5801] syz-executor: attempt to access beyond end of device
[  130.109590][ T5801] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  130.130156][ T5801] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  130.138238][ T5841] IPVS: starting estimator thread 0...
[  130.251206][ T6606] IPVS: using max 17 ests per chain, 40800 per kthread
[  130.311030][   T28] audit: type=1326 audit(1757010198.713:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6609 comm="syz.1.236" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f351038ebe9 code=0x0
[  131.001065][ T5841] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  131.194213][ T5841] usb 4-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  131.224753][ T5841] usb 4-1: config 0 interface 0 has no altsetting 0
[  131.244291][ T5841] usb 4-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  131.258019][ T5841] usb 4-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  131.266563][ T5841] usb 4-1: Product: syz
[  131.273081][ T5841] usb 4-1: Manufacturer: syz
[  131.277750][ T5841] usb 4-1: SerialNumber: syz
[  131.293762][ T5841] usb 4-1: config 0 descriptor??
[  131.322973][ T5841] usb 4-1: selecting invalid altsetting 0
[  131.645367][ T5841] usb 4-1: USB disconnect, device number 6
[  131.999843][ T6650] netlink: 8 bytes leftover after parsing attributes in process `syz.1.253'.
[  133.161631][ T1285] ieee802154 phy0 wpan0: encryption failed: -22
[  133.927937][ T6663] loop3: detected capacity change from 0 to 131072
[  133.961100][ T1285] ieee802154 phy1 wpan1: encryption failed: -22
[  134.509588][ T6663] F2FS-fs (loop3): Test dummy encryption mode enabled
[  134.542638][ T6663] F2FS-fs (loop3): invalid crc value
[  134.581222][ T6663] F2FS-fs (loop3): Found nat_bits in checkpoint
[  134.629403][ T6654] loop1: detected capacity change from 0 to 262144
[  134.639605][ T6654] BTRFS: device fsid 7e32c2af-f87a-45a1-bcba-64dea7c56a53 devid 1 transid 8 /dev/loop1 scanned by syz.1.255 (6654)
[  134.656260][ T6663] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  134.876875][ T6654] BTRFS info (device loop1): first mount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  134.889961][ T6654] BTRFS info (device loop1): using xxhash64 (xxhash64-generic) checksum algorithm
[  134.901289][ T6654] BTRFS info (device loop1): using free space tree
[  134.914382][ T6663] fscrypt (loop3, inode 10): Missing crypto API support for AES-256-CTS-CBC (API name: "cts(cbc(aes))")
[  135.070611][ T6654] BTRFS info (device loop1): enabling ssd optimizations
[  135.410592][ T6666] syz.0.260 (6666): drop_caches: 2
[  135.502568][ T5787] BTRFS info (device loop1): last unmount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  135.637864][ T6701] loop0: detected capacity change from 0 to 128
[  135.716688][ T6701] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  135.830853][ T6701] ext4 filesystem being mounted at /63/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  135.994756][ T5786] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  136.049464][ T6680] loop2: detected capacity change from 0 to 40427
[  136.141225][ T6680] F2FS-fs (loop2): build fault injection attr: rate: 690, type: 0x7ffff
[  136.149657][ T6680] F2FS-fs (loop2): Image doesn't support compression
[  136.206361][ T6680] F2FS-fs (loop2): Image doesn't support compression
[  136.252195][ T6680] F2FS-fs (loop2): invalid crc value
[  136.285445][ T6680] F2FS-fs (loop2): Found nat_bits in checkpoint
[  136.425582][ T6680] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  136.553023][ T6680] F2FS-fs (loop2): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_write+0x5b4/0x19c0
[  136.591185][ T6680] F2FS-fs (loop2): invalid blkaddr: 9728, type: 7, run fsck to fix.
[  136.600257][ T6680] syz.2.262: attempt to access beyond end of device
[  136.600257][ T6680] loop2: rw=2049, sector=77824, nr_sectors = 136 limit=40427
[  136.732644][ T6680] F2FS-fs (loop2): inject lock_op in f2fs_trylock_op of f2fs_write_single_data_page+0x97f/0x19e0
[  136.798799][ T6680] F2FS-fs (loop2): inject checkpoint error in f2fs_balance_fs of f2fs_write_single_data_page+0x1012/0x19e0
[  136.831051][ T6680] syz.2.262: attempt to access beyond end of device
[  136.831051][ T6680] loop2: rw=2049, sector=77960, nr_sectors = 2568 limit=40427
[  136.895781][ T6680] F2FS-fs (loop2): Stopped filesystem due to reason: 1
[  137.768795][   T11] Bluetooth: hci4: Frame reassembly failed (-84)
[  137.802942][ T6718] Bluetooth: hci4: Frame reassembly failed (-84)
[  137.977011][ T6722] loop0: detected capacity change from 0 to 64
[  138.252096][ T5786] hfs: node 4:3 still has 1 user(s)!
[  138.618079][ T6737] loop0: detected capacity change from 0 to 256
[  138.675603][ T6737] FAT-fs (loop0): Directory bread(block 64) failed
[  138.688761][ T6737] FAT-fs (loop0): Directory bread(block 65) failed
[  138.700034][ T6737] FAT-fs (loop0): Directory bread(block 66) failed
[  138.709556][ T6737] FAT-fs (loop0): Directory bread(block 67) failed
[  138.733710][ T6737] FAT-fs (loop0): Directory bread(block 68) failed
[  138.740412][ T6737] FAT-fs (loop0): Directory bread(block 69) failed
[  138.764187][ T6737] FAT-fs (loop0): Directory bread(block 70) failed
[  138.772569][ T6737] FAT-fs (loop0): Directory bread(block 71) failed
[  138.779377][ T6737] FAT-fs (loop0): Directory bread(block 72) failed
[  138.799541][ T6737] FAT-fs (loop0): Directory bread(block 73) failed
[  139.781352][ T5791] Bluetooth: hci4: command 0xfc11 tx timeout
[  139.788887][ T5104] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  139.895305][ T6748] loop2: detected capacity change from 0 to 512
[  139.940704][ T6748] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  140.305600][ T1127] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  140.581616][ T6765] netlink: 28 bytes leftover after parsing attributes in process `syz.0.288'.
[  141.200323][ T6782] netlink: 20 bytes leftover after parsing attributes in process `syz.2.295'.
[  141.249788][ T6784] netlink: 4 bytes leftover after parsing attributes in process `syz.1.296'.
[  141.265726][ T6786] loop0: detected capacity change from 0 to 1024
[  141.466945][ T6788] loop2: detected capacity change from 0 to 512
[  141.517669][ T6788] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  141.587964][ T6788] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  141.648783][ T6786] hfsplus: xattr searching failed
[  141.675314][ T6794] process 'syz.0.297' launched './file0' with NULL argv: empty string added
[  141.704674][ T6794] hfsplus: xattr searching failed
[  141.710766][ T6794] hfsplus: xattr searching failed
[  141.869405][ T5801] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.794648][ T6803] loop2: detected capacity change from 0 to 32768
[  142.919472][ T6806] loop1: detected capacity change from 0 to 32768
[  142.929333][ T6803] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode.
[  143.013783][ T6806] JBD2: Ignoring recovery information on journal
[  143.179381][ T6806] ocfs2: Mounting device (7,1) on (node local, slot 0) with writeback data mode.
[  143.190099][ T5801] ocfs2: Unmounting device (7,2) on (node local)
[  143.434645][ T5787] ocfs2: Unmounting device (7,1) on (node local)
[  143.743792][ T6820] loop2: detected capacity change from 0 to 512
[  143.859807][ T6820] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.925790][   T28] audit: type=1800 audit(1757010212.333:369): pid=6820 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.308" name="file1" dev="loop2" ino=15 res=0 errno=0
[  144.090260][ T5801] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.098774][ T6715] Set syz1 is full, maxelem 65536 reached
[  144.361281][ T6831] loop2: detected capacity change from 0 to 2048
[  144.473607][ T6836] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  144.599529][   T28] audit: type=1800 audit(1757010213.003:370): pid=6831 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.311" name="file1" dev="loop2" ino=15 res=0 errno=0
[  145.071999][ T6825] loop1: detected capacity change from 0 to 40427
[  145.121235][ T6825] F2FS-fs (loop1): build fault injection attr: rate: 690, type: 0x7ffff
[  145.143667][ T6825] F2FS-fs (loop1): Image doesn't support compression
[  145.161167][ T6825] F2FS-fs (loop1): Image doesn't support compression
[  145.176576][ T6825] F2FS-fs (loop1): invalid crc value
[  145.204395][ T6825] F2FS-fs (loop1): Found nat_bits in checkpoint
[  145.316600][ T6825] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  145.371510][ T6851] loop0: detected capacity change from 0 to 2048
[  145.440693][ T6825] F2FS-fs (loop1): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_write+0x5b4/0x19c0
[  145.452667][ T6825] F2FS-fs (loop1): invalid blkaddr: 9728, type: 7, run fsck to fix.
[  145.462408][ T6825] syz.1.306: attempt to access beyond end of device
[  145.462408][ T6825] loop1: rw=2049, sector=77824, nr_sectors = 136 limit=40427
[  145.509120][ T6851] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  145.512565][ T6825] F2FS-fs (loop1): inject lock_op in f2fs_trylock_op of f2fs_write_single_data_page+0x97f/0x19e0
[  145.544434][ T6825] F2FS-fs (loop1): inject checkpoint error in f2fs_balance_fs of f2fs_write_single_data_page+0x1012/0x19e0
[  145.579072][ T6825] syz.1.306: attempt to access beyond end of device
[  145.579072][ T6825] loop1: rw=2049, sector=77960, nr_sectors = 2568 limit=40427
[  145.649905][ T6825] F2FS-fs (loop1): Stopped filesystem due to reason: 1
[  145.684458][ T6851] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  145.728918][ T6851] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 22 with error 28
[  145.745476][ T6851] EXT4-fs (loop0): This should not happen!! Data will be lost
[  145.745476][ T6851] 
[  145.780132][ T6851] EXT4-fs (loop0): Total free blocks count 0
[  145.798093][ T6851] EXT4-fs (loop0): Free/Dirty block details
[  145.818394][ T6851] EXT4-fs (loop0): free_blocks=2415919504
[  145.847872][ T6851] EXT4-fs (loop0): dirty_blocks=32
[  145.869446][ T6851] EXT4-fs (loop0): Block reservation details
[  145.887524][ T6851] EXT4-fs (loop0): i_reserved_data_blocks=2
[  145.955466][ T6861] loop3: detected capacity change from 0 to 2048
[  145.993771][ T6861] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  146.051208][ T6861] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.072730][ T1127] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  146.325981][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.736547][ T6876] loop0: detected capacity change from 0 to 1024
[  146.814469][ T6876] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.923242][ T6876] EXT4-fs error (device loop0): ext4_get_first_dir_block:3606: inode #11: comm syz.0.329: directory missing '..'
[  146.945173][ T5841] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  147.025438][ T6870] loop2: detected capacity change from 0 to 32768
[  147.089229][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.118469][ T6870] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode.
[  147.157122][ T2926] (kworker/u4:8,2926,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #72: rec_len % 4 != 0 - offset=16, inode=66, rec_len=491, name_len=2
[  147.203046][ T5841] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  147.269333][ T5841] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  147.297789][ T5841] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  147.343389][ T5841] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  147.371797][ T5841] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  147.415635][ T5841] usb 2-1: config 0 descriptor??
[  147.441836][ T5801] ocfs2: Unmounting device (7,2) on (node local)
[  147.455281][ T6884] loop0: detected capacity change from 0 to 2048
[  147.741044][ T6884] hpfs: filesystem error: improperly stopped; already mounted read-only
[  147.791020][ T6884] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  147.840422][ T6884] hpfs: filesystem error: sector(s) 'dir_band_bitmap' badly placed at 7b318cc4
[  147.945544][ T5841] plantronics 0003:047F:FFFF.0008: No inputs registered, leaving
[  148.010832][ T5841] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  148.345334][ T5823] usb 2-1: USB disconnect, device number 4
[  148.437440][ T6878] loop3: detected capacity change from 0 to 40427
[  148.476368][ T6878] F2FS-fs (loop3): Wrong segment_count / block_count (31 > 0)
[  148.542206][ T6878] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[  148.625968][ T6878] F2FS-fs (loop3): invalid crc value
[  148.736708][ T6878] F2FS-fs (loop3): Found nat_bits in checkpoint
[  148.882099][ T6887] loop2: detected capacity change from 0 to 131072
[  148.901442][ T6887] F2FS-fs (loop2): invalid crc value
[  148.946033][ T6887] F2FS-fs (loop2): Found nat_bits in checkpoint
[  149.023247][ T6887] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  149.056097][ T6878] F2FS-fs (loop3): Start checkpoint disabled!
[  149.115770][ T6878] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0
[  149.156841][ T6878] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  149.601224][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  149.851433][ T1133] kworker/u4:7: attempt to access beyond end of device
[  149.851433][ T1133] loop3: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  149.898976][ T1133] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  149.959305][ T1133] kworker/u4:7: attempt to access beyond end of device
[  149.959305][ T1133] loop3: rw=2049, sector=40984, nr_sectors = 8 limit=40427
[  150.043183][ T1133] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  150.052371][    T0] NOHZ tick-stop error: local softirq work is pending, handler #210!!!
[  150.089799][ T6892] loop0: detected capacity change from 0 to 32768
[  150.151293][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  150.152033][ T6892] 
[  150.152033][ T6892]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  150.152033][ T6892] 
[  150.171468][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  150.670880][    T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!!
[  150.679806][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  150.688595][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  150.857289][ T5786] 
[  150.857289][ T5786]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  150.857289][ T5786] 
[  150.931334][ T5786] 
[  150.931334][ T5786]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  150.931334][ T5786] 
[  151.551477][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  151.797736][ T6916] loop1: detected capacity change from 0 to 1024
[  151.891184][ T6916] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  151.939283][ T6916] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  151.979061][ T6916] EXT4-fs (loop1): orphan cleanup on readonly fs
[  152.018060][ T6916] EXT4-fs error (device loop1): ext4_free_blocks:6676: comm syz.1.342: Freeing blocks not in datazone - block = 0, count = 4096
[  152.109963][ T6920] loop2: detected capacity change from 0 to 32768
[  152.119816][ T6916] EXT4-fs (loop1): 1 orphan inode deleted
[  152.125987][ T6920] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.335 (6920)
[  152.139143][ T6916] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  152.171927][ T6920] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  152.182329][ T6920] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  152.191136][ T6920] BTRFS info (device loop2): using free space tree
[  152.198174][    T9] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  152.229927][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.300084][ T6920] BTRFS info (device loop2): enabling ssd optimizations
[  152.308424][ T6920] BTRFS info (device loop2): auto enabling async discard
[  152.344669][ T6940] input: syz1 as /devices/virtual/input/input11
[  152.368304][   T28] audit: type=1800 audit(1757010220.773:371): pid=6920 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.335" name="file1" dev="loop2" ino=260 res=0 errno=0
[  152.381034][    T9] usb 4-1: Using ep0 maxpacket: 16
[  152.397683][    T9] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  152.425568][    T9] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  152.458735][    T9] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  152.480985][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  152.489054][    T9] usb 4-1: Product: syz
[  152.508369][    T9] usb 4-1: Manufacturer: syz
[  152.514574][    T9] usb 4-1: SerialNumber: syz
[  152.612927][ T5801] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  152.758696][ T6947] loop0: detected capacity change from 0 to 1024
[  152.766570][    T9] usb 4-1: 0:2 : does not exist
[  152.787553][    T9] usb 4-1: 5:0: failed to get current value for ch 0 (-22)
[  152.898805][    T9] usb 4-1: USB disconnect, device number 7
[  153.068750][ T5800] udevd[5800]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  153.173073][ T2926] hfsplus: b-tree write err: -5, ino 4
[  153.688937][ T6962] team0: Device ipvlan2 failed to register rx_handler
[  154.133489][ T6958] loop0: detected capacity change from 0 to 32768
[  154.157759][ T6958] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.351 (6958)
[  154.256739][ T6958] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  154.301255][ T6958] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  154.322767][ T6958] BTRFS info (device loop0): using free space tree
[  154.482276][ T6958] BTRFS info (device loop0): enabling ssd optimizations
[  154.500512][ T6958] BTRFS info (device loop0): auto enabling async discard
[  154.526191][ T6992] loop1: detected capacity change from 0 to 512
[  154.622359][ T6992] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.646611][ T6992] ext4 filesystem being mounted at /85/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  154.899029][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.054105][ T5786] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  155.794971][ T6998] loop2: detected capacity change from 0 to 40427
[  155.837592][ T6998] F2FS-fs (loop2): invalid crc value
[  155.891463][ T6998] F2FS-fs (loop2): Found nat_bits in checkpoint
[  156.080362][ T6998] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  156.181904][ T7026] loop3: detected capacity change from 0 to 4096
[  156.311414][   T28] audit: type=1804 audit(1757010224.693:372): pid=6998 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.361" name="/newroot/102/file0/bus" dev="loop2" ino=10 res=1 errno=0
[  156.377375][   T28] audit: type=1800 audit(1757010224.713:373): pid=6998 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.361" name="bus" dev="loop2" ino=10 res=0 errno=0
[  156.512650][ T5801] syz-executor: attempt to access beyond end of device
[  156.512650][ T5801] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  156.573576][ T5801] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  156.990284][ T7042] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  157.426541][ T7059] loop1: detected capacity change from 0 to 64
[  158.133027][ T7076] Bluetooth: MGMT ver 1.22
[  158.450445][ T7071] loop1: detected capacity change from 0 to 32768
[  158.451339][ T7067] loop2: detected capacity change from 0 to 32768
[  158.468222][ T7071] XFS: ikeep mount option is deprecated.
[  158.476153][ T7067] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop2 scanned by syz.2.388 (7067)
[  158.513071][ T7071] XFS: ikeep mount option is deprecated.
[  158.518795][ T7071] XFS: noikeep mount option is deprecated.
[  158.540223][ T7067] BTRFS info (device loop2): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  158.558145][ T7067] BTRFS info (device loop2): using xxhash64 (xxhash64-generic) checksum algorithm
[  158.569442][ T7067] BTRFS info (device loop2): force zlib compression, level 3
[  158.619004][ T7071] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  158.636465][ T7067] BTRFS info (device loop2): force clearing of disk cache
[  158.690437][ T7067] BTRFS info (device loop2): turning off barriers
[  158.748391][ T7067] BTRFS info (device loop2): doing ref verification
[  158.793035][ T7067] BTRFS info (device loop2): enabling disk space caching
[  158.800161][ T7067] BTRFS info (device loop2): disk space caching is enabled
[  158.839457][ T7093] netlink: 24 bytes leftover after parsing attributes in process `syz.3.396'.
[  159.004838][ T7071] XFS (loop1): Ending clean mount
[  159.010668][ T7067] BTRFS info (device loop2): enabling ssd optimizations
[  159.023007][ T7103] netlink: 24 bytes leftover after parsing attributes in process `syz.3.396'.
[  159.041320][ T7067] BTRFS info (device loop2): auto enabling async discard
[  159.089582][ T7067] BTRFS info (device loop2): rebuilding free space tree
[  159.178987][ T7067] BTRFS info (device loop2): disabling free space tree
[  159.203669][ T7067] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  159.231980][ T7067] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  159.319667][ T7081] loop0: detected capacity change from 0 to 32768
[  159.352739][ T5787] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  159.490799][ T7067] BTRFS info (device loop2): balance: start 
[  159.504901][ T7067] BTRFS info (device loop2): balance: ended with status: 0
[  159.684793][ T5801] BTRFS info (device loop2): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  160.440013][ T7134] loop0: detected capacity change from 0 to 256
[  160.548514][ T7134] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  160.675051][ T7140] syzkaller1: entered promiscuous mode
[  160.689670][ T7140] syzkaller1: entered allmulticast mode
[  160.838680][ T7144] loop0: detected capacity change from 0 to 128
[  160.879855][ T7144] qnx4: no qnx4 filesystem (no root dir).
[  160.901447][    T9] usb 3-1: new full-speed USB device number 6 using dummy_hcd
[  160.932290][ T7146] netlink: 71 bytes leftover after parsing attributes in process `syz.3.409'.
[  161.103467][    T9] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  161.141019][    T9] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  161.166196][    T9] usb 3-1: config 0 interface 0 has no altsetting 0
[  161.187840][    T9] usb 3-1: New USB device found, idVendor=046d, idProduct=c24f, bcdDevice= 0.00
[  161.205976][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  161.225569][    T9] usb 3-1: config 0 descriptor??
[  161.242224][ T7139] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  161.677740][    T9] logitech 0003:046D:C24F.0009: unbalanced collection at end of report description
[  161.716587][    T9] logitech 0003:046D:C24F.0009: parse failed
[  161.723010][    T9] logitech: probe of 0003:046D:C24F.0009 failed with error -22
[  161.757204][ T7168] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  161.940135][    T9] usb 3-1: USB disconnect, device number 6
[  162.168223][ T1127] Bluetooth: hci4: Frame reassembly failed (-84)
[  162.178954][ T7177] Bluetooth: hci4: Frame reassembly failed (-84)
[  162.608704][ T7189] syz.0.428 (7189) used greatest stack depth: 19784 bytes left
[  162.719145][ T7194] loop0: detected capacity change from 0 to 512
[  162.789031][ T7194] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.822112][ T7194] ext4 filesystem being mounted at /128/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  162.877714][ T5823] libceph: connect (1)[c::]:6789 error -101
[  162.907453][ T5823] libceph: mon0 (1)[c::]:6789 connect error
[  162.969502][ T5823] libceph: connect (1)[c::]:6789 error -101
[  162.994792][ T5823] libceph: mon0 (1)[c::]:6789 connect error
[  163.009985][ T7193] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.273153][ T5823] libceph: connect (1)[c::]:6789 error -101
[  163.301264][ T5823] libceph: mon0 (1)[c::]:6789 connect error
[  163.349752][ T7213] netlink: 32 bytes leftover after parsing attributes in process `syz.0.437'.
[  163.578855][ T7207] loop2: detected capacity change from 0 to 32768
[  163.624289][ T7196] ceph: No mds server is up or the cluster is laggy
[  163.637967][ T7207] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  163.782654][ T7207] XFS (loop2): Ending clean mount
[  163.797035][ T7207] XFS (loop2): Quotacheck needed: Please wait.
[  163.866628][ T7207] XFS (loop2): Quotacheck: Done.
[  163.986221][ T5801] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  164.191290][ T5791] Bluetooth: hci4: command 0x1003 tx timeout
[  164.199313][ T5104] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  164.403819][ T7238] loop8: detected capacity change from 0 to 8
[  164.423496][ T5788] Dev loop8: unable to read RDB block 8
[  164.429143][ T5788]  loop8: unable to read partition table
[  164.439183][ T5788] loop8: partition table beyond EOD, truncated
[  164.463913][ T7238] Dev loop8: unable to read RDB block 8
[  164.482224][ T7238]  loop8: unable to read partition table
[  164.488157][ T7238] loop8: partition table beyond EOD, truncated
[  164.506770][ T7238] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5)
[  164.698840][ T7236] loop1: detected capacity change from 0 to 32768
[  164.760552][ T7236] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  164.936261][ T7236] syz.1.445 (7236) used greatest stack depth: 18928 bytes left
[  165.021643][ T5787] ocfs2: Unmounting device (7,1) on (node local)
[  165.789477][ T7262] loop2: detected capacity change from 0 to 4096
[  165.899999][ T7269] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  165.962129][   T28] audit: type=1800 audit(1757010234.363:374): pid=7262 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.455" name="file1" dev="loop2" ino=15 res=0 errno=0
[  165.982608][    C1] vkms_vblank_simulate: vblank timer overrun
[  166.133597][ T5823] hid-generic 0000:0004:0000.000A: unknown main item tag 0x0
[  166.153006][ T5823] hid-generic 0000:0004:0000.000A: unknown main item tag 0x0
[  166.165903][ T5823] hid-generic 0000:0004:0000.000A: unknown main item tag 0x0
[  166.198077][ T5823] hid-generic 0000:0004:0000.000A: hidraw0: <UNKNOWN> HID v0.05 Device [syz0] on syz0
[  166.526579][ T7274] fido_id[7274]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  166.563085][ T7277] netlink: 'syz.2.460': attribute type 12 has an invalid length.
[  167.772385][ T7288] loop1: detected capacity change from 0 to 512
[  167.866463][ T7288] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.464: casefold flag without casefold feature
[  167.942644][ T7288] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.464: couldn't read orphan inode 15 (err -117)
[  168.024773][ T7288] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.462398][ T7294] loop2: detected capacity change from 0 to 4096
[  168.522069][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.725609][ T7273] loop3: detected capacity change from 0 to 262144
[  168.738285][ T7273] BTRFS: device fsid 7e32c2af-f87a-45a1-bcba-64dea7c56a53 devid 1 transid 8 /dev/loop3 scanned by syz.3.459 (7273)
[  168.805479][ T7273] BTRFS info (device loop3): first mount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  168.815836][ T7273] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm
[  168.825942][ T7273] BTRFS info (device loop3): using free space tree
[  168.983379][ T7273] BTRFS info (device loop3): enabling ssd optimizations
[  169.243174][ T7296] loop0: detected capacity change from 0 to 32768
[  169.338650][ T7296] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  169.410251][ T7273] BTRFS warning (device loop3): failed to trim 1 device(s), last error -512
[  169.471470][ T5794] BTRFS info (device loop3): last unmount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  169.624503][ T7296] XFS (loop0): Ending clean mount
[  169.929084][ T5786] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  169.971491][ T5854] usb 3-1: new full-speed USB device number 7 using dummy_hcd
[  170.191724][ T5854] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[  170.220972][ T5854] usb 3-1: config 0 has no interface number 0
[  170.230339][ T5854] usb 3-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e
[  170.271448][ T5854] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  170.334249][ T5854] usb 3-1: config 0 descriptor??
[  170.389577][ T7313] loop1: detected capacity change from 0 to 32768
[  170.396860][ T5854] usb 3-1: selecting invalid altsetting 1
[  170.418234][ T5854] dvb_ttusb_budget: ttusb_init_controller: error
[  170.455566][ T5854] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB)
[  170.555103][ T7333] loop3: detected capacity change from 0 to 2048
[  170.563560][ T7313] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  170.741430][ T7345] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  170.791459][ T5854] DVB: Unable to find symbol cx22700_attach()
[  170.868108][ T5854] DVB: Unable to find symbol tda10046_attach()
[  170.908181][ T5854] dvb_ttusb_budget: no frontend driver found for device [0b48:1005]
[  170.937517][ T5854] usb 3-1: USB disconnect, device number 7
[  170.995719][ T7313] XFS (loop1): Ending clean mount
[  171.029006][ T7313] XFS (loop1): Quotacheck needed: Please wait.
[  171.201197][ T7313] XFS (loop1): Quotacheck: Done.
[  171.228486][ T7349] loop0: detected capacity change from 0 to 2048
[  171.328298][ T7349] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.386053][ T7349] ext4 filesystem being mounted at /146/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.425106][ T7356] netlink: 4 bytes leftover after parsing attributes in process `syz.2.477'.
[  171.448479][ T5787] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  171.617493][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.739906][ T7363] syzkaller1: entered promiscuous mode
[  171.757027][ T7363] syzkaller1: entered allmulticast mode
[  171.896188][ T7367] loop3: detected capacity change from 0 to 512
[  171.913216][ T7367] EXT4-fs (loop3): Test dummy encryption mode enabled
[  171.920310][ T7367] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  171.958526][ T7367] EXT4-fs (loop3): 1 truncate cleaned up
[  171.983709][ T7367] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.110713][ T7367] EXT4-fs warning (device loop3): __ext4fs_dirhash:270: inode #12: comm syz.3.482: Siphash requires key
[  172.240434][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.299099][ T7374] Illegal XDP return value 3457 on prog  (id 73) dev syz_tun, expect packet loss!
[  172.464028][  T786] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  172.495610][  T786] hid-generic 0000:0000:0000.000B: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  173.191254][  T786] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  173.390125][  T786] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  173.408350][  T786] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  173.427886][  T786] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  173.439819][  T786] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  173.463701][  T786] usb 3-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  173.475074][  T786] usb 3-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  173.483730][ T7395] loop0: detected capacity change from 0 to 4096
[  173.490270][  T786] usb 3-1: Manufacturer: syz
[  173.506354][  T786] usb 3-1: config 0 descriptor??
[  173.522964][ T7395] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.758678][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.950690][  T786] appleir 0003:05AC:8243.000C: unknown main item tag 0x0
[  173.986574][  T786] appleir 0003:05AC:8243.000C: No inputs registered, leaving
[  174.014388][  T786] appleir 0003:05AC:8243.000C: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0
[  174.047373][ T7403] syzkaller1: entered promiscuous mode
[  174.059815][ T7403] syzkaller1: entered allmulticast mode
[  174.126995][ T7398] loop3: detected capacity change from 0 to 32768
[  174.176780][ T7398] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop3 scanned by syz.3.493 (7398)
[  174.243028][ T7398] BTRFS info (device loop3): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  174.261408][ T7398] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[  174.271695][ T7398] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  174.283609][ T7398] BTRFS info (device loop3): use zstd compression, level 3
[  174.290884][ T7398] BTRFS info (device loop3): using free space tree
[  174.353440][ T5841] usb 3-1: USB disconnect, device number 8
[  174.425549][ T7398] BTRFS info (device loop3): enabling ssd optimizations
[  174.451911][ T7398] BTRFS info (device loop3): auto enabling async discard
[  174.589814][   T28] audit: type=1800 audit(1757010242.993:375): pid=7398 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.493" name="file1" dev="loop3" ino=260 res=0 errno=0
[  174.828998][ T5794] BTRFS info (device loop3): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  174.847417][ T7432] loop0: detected capacity change from 0 to 1024
[  175.082812][ T7435] loop1: detected capacity change from 0 to 256
[  175.104906][ T7432] hfsplus: xattr search failed
[  175.134387][ T7435] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  175.171850][ T7435] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[  175.240403][ T7435] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  175.253602][ T5800] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 10 /dev/loop3 scanned by udevd (5800)
[  175.295468][   T42] hfsplus: b-tree write err: -5, ino 3
[  175.886779][ T7455] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem
[  176.051361][   T27] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  176.250994][   T27] usb 3-1: Using ep0 maxpacket: 32
[  176.282167][   T27] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[  176.290333][   T27] usb 3-1: config 0 has no interface number 0
[  176.313179][   T27] usb 3-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  176.336872][   T27] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  176.371071][   T27] usb 3-1: Product: syz
[  176.375311][   T27] usb 3-1: Manufacturer: syz
[  176.379949][   T27] usb 3-1: SerialNumber: syz
[  176.409184][   T27] usb 3-1: config 0 descriptor??
[  176.437243][   T27] usb 3-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[  176.471098][   T27] usb 3-1: selecting invalid altsetting 1
[  176.477154][   T27] usb 3-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[  176.514907][   T27] usb 3-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  176.535841][   T27] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[  176.552558][   T27] usb 3-1: media controller created
[  176.610045][   T27] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  176.726724][   T27] usb 3-1: dvb_usb_ce6230: usb_control_msg() failed=-71
[  176.753317][   T27] zl10353_read_register: readreg error (reg=127, ret==-71)
[  176.775478][   T27] usb 3-1: dvb_usb_ce6230: usb_set_interface() failed=-71
[  176.815716][ T7472] loop3: detected capacity change from 0 to 512
[  176.843621][    T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!!
[  176.921567][   T27] usb 3-1: USB disconnect, device number 9
[  176.934433][ T7472] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2244: inode #15: comm syz.3.517: corrupted in-inode xattr: invalid ea_ino
[  177.002116][ T7472] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.517: couldn't read orphan inode 15 (err -117)
[  177.040740][ T7465] loop1: detected capacity change from 0 to 32768
[  177.069110][ T7465] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.514 (7465)
[  177.080088][ T7472] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  177.121480][ T7465] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  177.161921][ T7465] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  177.206949][ T7465] BTRFS info (device loop1): enabling auto defrag
[  177.235551][ T7465] BTRFS info (device loop1): max_inline at 0
[  177.247123][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.266591][ T7465] BTRFS info (device loop1): force clearing of disk cache
[  177.297421][ T7465] BTRFS info (device loop1): turning on sync discard
[  177.329536][ T7465] BTRFS info (device loop1): using free space tree
[  177.487677][ T7465] BTRFS info (device loop1): enabling ssd optimizations
[  177.550609][ T7465] BTRFS info (device loop1): rebuilding free space tree
[  177.990515][ T5787] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  178.465649][ T7515] loop2: detected capacity change from 0 to 256
[  178.501065][ T7515] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  178.545337][ T7515] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  178.565628][ T7515] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  178.681099][   T27] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  178.871110][   T27] usb 1-1: Using ep0 maxpacket: 32
[  178.883579][   T27] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  178.901881][   T27] usb 1-1: config 0 has no interface number 0
[  178.911261][   T27] usb 1-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  178.927455][   T27] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  178.946104][   T27] usb 1-1: Product: syz
[  178.960590][   T27] usb 1-1: Manufacturer: syz
[  178.974232][   T27] usb 1-1: SerialNumber: syz
[  179.002200][   T27] usb 1-1: config 0 descriptor??
[  179.020879][   T27] usb 1-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[  179.061170][   T27] usb 1-1: selecting invalid altsetting 1
[  179.070625][   T27] usb 1-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[  179.099384][   T27] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  179.116623][   T27] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[  179.125552][   T27] usb 1-1: media controller created
[  179.165275][   T27] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  179.364820][ T7527] loop3: detected capacity change from 0 to 32768
[  179.389181][ T7527] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.534 (7527)
[  179.409236][ T7527] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  179.425426][ T7527] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  179.434881][ T7527] BTRFS info (device loop3): enabling auto defrag
[  179.446687][ T7527] BTRFS info (device loop3): max_inline at 0
[  179.453200][ T7527] BTRFS info (device loop3): force clearing of disk cache
[  179.460375][ T7527] BTRFS info (device loop3): turning on sync discard
[  179.467877][ T7527] BTRFS info (device loop3): using free space tree
[  179.522279][ T7527] BTRFS info (device loop3): enabling ssd optimizations
[  179.533059][ T7527] BTRFS info (device loop3): rebuilding free space tree
[  179.711585][ T5794] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  180.004220][ T5800] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 11 /dev/loop3 scanned by udevd (5800)
[  180.153611][ T7552] netlink: 12 bytes leftover after parsing attributes in process `syz.2.539'.
[  180.261429][   T27] usb 1-1: dvb_usb_ce6230: usb_control_msg() failed=-110
[  180.274651][   T27] zl10353_read_register: readreg error (reg=127, ret==-110)
[  180.292841][   T27] usb 1-1: dvb_usb_ce6230: usb_set_interface() failed=-71
[  180.411823][   T27] usb 1-1: USB disconnect, device number 4
[  182.361041][ T5854] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  182.561047][ T5854] usb 4-1: Using ep0 maxpacket: 32
[  182.576967][ T5854] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[  182.599920][ T5854] usb 4-1: config 0 has no interface number 0
[  182.615486][ T5854] usb 4-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  182.648693][ T5854] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  182.663811][ T5854] usb 4-1: Product: syz
[  182.668218][ T5854] usb 4-1: Manufacturer: syz
[  182.672929][ T5854] usb 4-1: SerialNumber: syz
[  182.682643][ T5854] usb 4-1: config 0 descriptor??
[  182.694162][ T5854] usb 4-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[  182.703234][ T5854] usb 4-1: selecting invalid altsetting 1
[  182.709088][ T5854] usb 4-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[  182.722454][ T5854] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  182.734452][ T5854] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[  182.743534][ T5854] usb 4-1: media controller created
[  182.806965][ T5854] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  182.907891][ T7607] input: syz1 as /devices/virtual/input/input12
[  182.920204][ T7608] netlink: 156 bytes leftover after parsing attributes in process `syz.2.563'.
[  183.631156][ T7612] loop2: detected capacity change from 0 to 32768
[  183.662509][ T7612] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 11
[  183.888744][ T5800] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 11
[  183.944654][ T5854] usb 4-1: dvb_usb_ce6230: usb_control_msg() failed=-110
[  183.956771][ T5854] zl10353_read_register: readreg error (reg=127, ret==-110)
[  183.990384][ T5854] usb 4-1: dvb_usb_ce6230: usb_set_interface() failed=-71
[  184.089829][ T5854] usb 4-1: USB disconnect, device number 8
[  184.444682][ T7618] loop0: detected capacity change from 0 to 32768
[  184.479126][ T7618] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  184.488119][ T7618] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  184.552363][ T7618] XFS (loop0): Ending clean mount
[  184.571188][ T7618] XFS (loop0): Quotacheck needed: Please wait.
[  184.652143][ T7618] XFS (loop0): Quotacheck: Done.
[  184.874708][ T5786] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  185.104888][ T5854] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  185.291003][ T5854] usb 2-1: Using ep0 maxpacket: 32
[  185.298182][ T5854] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  185.306445][ T5854] usb 2-1: config 0 has no interface number 0
[  185.316189][ T5854] usb 2-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  185.325456][ T5854] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  185.333527][ T5854] usb 2-1: Product: syz
[  185.337720][ T5854] usb 2-1: Manufacturer: syz
[  185.342458][ T5854] usb 2-1: SerialNumber: syz
[  185.350152][ T5854] usb 2-1: config 0 descriptor??
[  185.358218][ T5854] usb 2-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[  185.367341][ T5854] usb 2-1: selecting invalid altsetting 1
[  185.373221][ T5854] usb 2-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[  185.387508][ T5854] usb 2-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  185.398566][ T5854] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[  185.407112][ T5854] usb 2-1: media controller created
[  185.428426][ T5854] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  185.930680][ T7650] vivid-000: disconnect
[  185.945498][ T7650] vivid-000: reconnect
[  186.508507][ T5854] usb 2-1: dvb_usb_ce6230: usb_control_msg() failed=-110
[  186.528748][ T5854] zl10353_read_register: readreg error (reg=127, ret==-110)
[  186.548469][ T5854] usb 2-1: dvb_usb_ce6230: usb_set_interface() failed=-71
[  186.701538][ T5854] usb 2-1: USB disconnect, device number 5
[  187.079408][ T7668] netlink: 60 bytes leftover after parsing attributes in process `syz.3.583'.
[  187.091527][ T7668] netlink: 60 bytes leftover after parsing attributes in process `syz.3.583'.
[  187.120150][ T7660] loop0: detected capacity change from 0 to 32768
[  187.129630][ T7660] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.571 (7660)
[  187.156817][ T7660] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  187.167964][ T7660] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  187.178308][ T7660] BTRFS info (device loop0): turning off barriers
[  187.190163][ T7660] BTRFS info (device loop0): setting nodatasum
[  187.197209][ T7660] BTRFS info (device loop0): turning on barriers
[  187.204808][ T7660] BTRFS info (device loop0): using free space tree
[  187.211578][  T786] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  187.400989][  T786] usb 3-1: Using ep0 maxpacket: 16
[  187.412510][  T786] usb 3-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[  187.441107][  T786] usb 3-1: config 7 interface 0 altsetting 5 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  187.475379][  T786] usb 3-1: config 7 interface 0 altsetting 5 endpoint 0x81 has invalid wMaxPacketSize 0
[  187.498609][ T5786] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  187.510443][  T786] usb 3-1: config 7 interface 0 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  187.540167][  T786] usb 3-1: config 7 interface 0 has no altsetting 0
[  187.557568][  T786] usb 3-1: New USB device found, idVendor=0458, idProduct=5010, bcdDevice= 0.00
[  187.570044][  T786] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  187.784521][ T7692] vivid-000: disconnect
[  187.800486][ T7691] vivid-000: reconnect
[  187.845339][ T5788] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 9 /dev/loop0 scanned by udevd (5788)
[  188.075370][  T786] input: HID 0458:5010 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:7.0/0003:0458:5010.000D/input/input13
[  188.149551][ T7700] loop3: detected capacity change from 0 to 512
[  188.168849][ T7700] EXT4-fs: Ignoring removed mblk_io_submit option
[  188.204467][ T7700] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  188.304310][  T786] kye 0003:0458:5010.000D: input,hiddev0,hidraw0: USB HID v2.00 Device [HID 0458:5010] on usb-dummy_hcd.2-1/input0
[  188.367943][ T7700] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  188.406831][  T786] usb 3-1: USB disconnect, device number 10
[  188.411187][ T7700] ext4 filesystem being mounted at /134/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  188.662140][ T7705] fido_id[7705]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/3-1/report_descriptor': No such file or directory
[  188.803849][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.975302][ T7712] netlink: 'syz.0.594': attribute type 1 has an invalid length.
[  189.021207][ T7712] netlink: 'syz.0.594': attribute type 2 has an invalid length.
[  189.475972][ T7729] loop2: detected capacity change from 0 to 4096
[  189.507968][   T27] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  189.571545][ T7729] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  189.639193][ T5855] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  189.701140][   T27] usb 1-1: Using ep0 maxpacket: 8
[  189.732671][   T27] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  189.751602][   T27] usb 1-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[  189.764663][   T27] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  189.783264][   T27] usb 1-1: config 0 descriptor??
[  189.795098][   T27] gspca_main: vc032x-2.14.0 probing 046d:0892
[  189.815387][ T7737] netlink: 12 bytes leftover after parsing attributes in process `syz.3.605'.
[  189.841124][ T5855] usb 2-1: Using ep0 maxpacket: 16
[  189.849039][ T5855] usb 2-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[  189.885877][ T5855] usb 2-1: config 7 interface 0 altsetting 5 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  189.908053][ T5855] usb 2-1: config 7 interface 0 altsetting 5 endpoint 0x81 has invalid wMaxPacketSize 0
[  189.926645][ T5855] usb 2-1: config 7 interface 0 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  189.939889][ T5855] usb 2-1: config 7 interface 0 has no altsetting 0
[  189.946723][ T5855] usb 2-1: New USB device found, idVendor=0458, idProduct=5010, bcdDevice= 0.00
[  189.956969][ T5855] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.014563][ T7739] syzkaller1: entered promiscuous mode
[  190.020669][ T7739] syzkaller1: entered allmulticast mode
[  190.409832][ T5855] input: HID 0458:5010 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:7.0/0003:0458:5010.000E/input/input14
[  190.520009][ T5855] kye 0003:0458:5010.000E: input,hiddev0,hidraw0: USB HID v2.00 Device [HID 0458:5010] on usb-dummy_hcd.1-1/input0
[  190.727721][ T5823] usb 2-1: USB disconnect, device number 6
[  190.823654][   T27] gspca_vc032x: reg_r err -71
[  190.830648][   T27] vc032x: probe of 1-1:0.0 failed with error -71
[  190.841338][   T27] usb 1-1: USB disconnect, device number 5
[  191.434219][ T7746] loop3: detected capacity change from 0 to 4096
[  191.710328][ T7756] loop1: detected capacity change from 0 to 64
[  191.730563][ T7754] overlayfs: workdir and upperdir must be separate subtrees
[  192.110873][ T7765] loop2: detected capacity change from 0 to 512
[  192.135841][ T7765] EXT4-fs: Ignoring removed nobh option
[  192.168385][ T7765] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  192.193153][ T7765] EXT4-fs (loop2): 1 truncate cleaned up
[  192.200224][ T7765] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  192.315879][   T28] audit: type=1800 audit(1757010260.723:376): pid=7765 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.617" name="file1" dev="loop2" ino=15 res=0 errno=0
[  192.324962][ T7765] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2244: inode #15: comm syz.2.617: corrupted in-inode xattr: overlapping e_value 
[  192.407295][ T7765] EXT4-fs (loop2): Remounting filesystem read-only
[  192.427603][ T7765] EXT4-fs warning (device loop2): ext4_xattr_set_entry:1781: inode #15: comm syz.2.617: unable to update i_inline_off
[  192.440862][ T7768] loop3: detected capacity change from 0 to 8192
[  192.593637][ T5801] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.775158][ T7773] loop1: detected capacity change from 0 to 512
[  192.807307][ T7773] EXT4-fs: Ignoring removed nobh option
[  192.843045][ T7773] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  192.912443][ T7773] EXT4-fs (loop1): 1 truncate cleaned up
[  192.923377][ T7773] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  193.099812][   T28] audit: type=1800 audit(1757010261.503:377): pid=7773 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.630" name="file1" dev="loop1" ino=15 res=0 errno=0
[  193.123956][ T7773] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2244: inode #15: comm syz.1.630: corrupted in-inode xattr: overlapping e_value 
[  193.159566][ T7773] EXT4-fs (loop1): Remounting filesystem read-only
[  193.185702][ T7773] EXT4-fs warning (device loop1): ext4_xattr_set_entry:1781: inode #15: comm syz.1.630: unable to update i_inline_off
[  193.368561][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.417456][ T7769] loop0: detected capacity change from 0 to 65536
[  193.478331][ T7769] XFS (loop0): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[  193.537391][ T7769] XFS (loop0): Ending clean mount
[  193.568839][ T7769] XFS (loop0): Quotacheck needed: Please wait.
[  193.641080][    T9] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  193.661737][ T7769] XFS (loop0): Quotacheck: Done.
[  193.801029][ T5786] XFS (loop0): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[  193.833518][    T9] usb 4-1: Using ep0 maxpacket: 16
[  193.841875][    T9] usb 4-1: config 1 has an invalid interface number: 105 but max is 0
[  193.851221][  T786] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  193.876381][    T9] usb 4-1: config 1 has no interface number 0
[  193.898267][    T9] usb 4-1: config 1 interface 105 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[  193.908676][    T9] usb 4-1: config 1 interface 105 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  193.921917][    T9] usb 4-1: config 1 interface 105 has no altsetting 0
[  193.932818][    T9] usb 4-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[  193.947524][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  193.961022][    T9] usb 4-1: Product: syz
[  193.972227][    T9] usb 4-1: Manufacturer: syz
[  193.976896][    T9] usb 4-1: SerialNumber: syz
[  193.997102][ T7787] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  194.018784][ T7787] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  194.061914][  T786] usb 2-1: Using ep0 maxpacket: 32
[  194.110039][  T786] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  194.131186][  T786] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  194.155812][  T786] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  194.175763][  T786] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.206595][  T786] usb 2-1: config 0 descriptor??
[  194.254514][   T28] audit: type=1326 audit(1757010262.663:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7801 comm="syz.2.627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa197b8ebe9 code=0x7ffc0000
[  194.306399][   T28] audit: type=1326 audit(1757010262.683:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7801 comm="syz.2.627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa197b2adb9 code=0x7ffc0000
[  194.390552][   T28] audit: type=1326 audit(1757010262.683:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7801 comm="syz.2.627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa197b2adb9 code=0x7ffc0000
[  194.449232][   T28] audit: type=1326 audit(1757010262.683:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7801 comm="syz.2.627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa197b8ebe9 code=0x7ffc0000
[  194.481112][   T28] audit: type=1326 audit(1757010262.683:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7801 comm="syz.2.627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa197b2adb9 code=0x7ffc0000
[  194.484494][ T7787] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  194.509017][   T28] audit: type=1326 audit(1757010262.683:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7801 comm="syz.2.627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa197b8ebe9 code=0x7ffc0000
[  194.543719][   T28] audit: type=1326 audit(1757010262.683:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7801 comm="syz.2.627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa197b2adb9 code=0x7ffc0000
[  194.587780][   T28] audit: type=1326 audit(1757010262.683:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7801 comm="syz.2.627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa197b8ebe9 code=0x7ffc0000
[  194.615217][ T7787] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  194.623376][ T1285] ieee802154 phy0 wpan0: encryption failed: -22
[  194.635864][ T1285] ieee802154 phy1 wpan1: encryption failed: -22
[  194.690566][  T786] savu 0003:1E7D:2D5A.000F: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.1-1/input0
[  194.874442][ T7805] loop2: detected capacity change from 0 to 1024
[  194.986331][ T7805] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.098974][ T5854] usb 2-1: USB disconnect, device number 7
[  195.239330][ T5801] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.347217][    T9] aqc111 4-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -71
[  195.371096][    T9] aqc111 4-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -71
[  195.379635][ T7812] loop2: detected capacity change from 0 to 128
[  195.395164][ T7812] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  195.411880][    T9] aqc111 4-1:1.105 eth1: register 'aqc111' at usb-dummy_hcd.3-1, USB-C 3.1 to 5GBASE-T Ethernet Adapter, 8a:35:53:15:2b:a4
[  195.447714][    T9] usb 4-1: USB disconnect, device number 9
[  195.472837][ T7812] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  195.495423][    T9] aqc111 4-1:1.105 eth1: unregister 'aqc111' usb-dummy_hcd.3-1, USB-C 3.1 to 5GBASE-T Ethernet Adapter
[  195.602433][    T9] aqc111 4-1:1.105 eth1 (unregistered): Failed to write(0x1) reg index 0x0002: -19
[  195.614486][    T9] aqc111 4-1:1.105 eth1 (unregistered): Failed to write(0x1) reg index 0x0002: -19
[  195.624556][    T9] aqc111 4-1:1.105 eth1 (unregistered): Failed to write(0x61) reg index 0x0000: -19
[  195.823608][ T7810] loop0: detected capacity change from 0 to 40427
[  195.839872][ T7810] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  195.851663][ T7810] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  195.879513][ T7816] loop1: detected capacity change from 0 to 1024
[  195.907086][ T7810] F2FS-fs (loop0): invalid crc value
[  195.967313][ T7810] F2FS-fs (loop0): Found nat_bits in checkpoint
[  195.988914][ T7816] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.635: Failed to acquire dquot type 0
[  196.130000][ T7816] EXT4-fs (loop1): 1 truncate cleaned up
[  196.152971][ T7816] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  196.249296][ T7810] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  196.271024][ T7810] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  196.404595][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.461828][ T7810] syz.0.631: attempt to access beyond end of device
[  196.461828][ T7810] loop0: rw=2049, sector=45096, nr_sectors = 32 limit=40427
[  196.635478][ T7824] loop2: detected capacity change from 0 to 32768
[  196.702656][ T7824] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 9
[  196.769447][ T7831] overlayfs: workdir and upperdir must be separate subtrees
[  196.897688][ T5788] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 9
[  197.277893][ T7839] loop3: detected capacity change from 0 to 1024
[  197.363756][ T7839] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.501150][ T7841] loop1: detected capacity change from 0 to 4096
[  197.579464][ T7841] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  197.600000][ T7846] loop0: detected capacity change from 0 to 512
[  197.694215][ T7846] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.649: invalid indirect mapped block 10 (level 1)
[  197.768948][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.791015][ T7846] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.649: invalid indirect mapped block 8 (level 1)
[  197.838766][ T7846] EXT4-fs (loop0): 1 truncate cleaned up
[  197.867007][ T7846] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.056236][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.364693][ T7861] loop0: detected capacity change from 0 to 128
[  198.381136][ T5855] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  198.392163][ T7861] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  198.409749][ T7861] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  198.572072][ T5855] usb 3-1: Using ep0 maxpacket: 16
[  198.596994][ T5855] usb 3-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[  198.602322][ T7864] netlink: 12 bytes leftover after parsing attributes in process `syz.1.654'.
[  198.631549][ T5855] usb 3-1: config 7 interface 0 altsetting 5 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  198.644169][ T7865] netlink: 4 bytes leftover after parsing attributes in process `syz.0.652'.
[  198.662526][ T5855] usb 3-1: config 7 interface 0 altsetting 5 endpoint 0x81 has invalid wMaxPacketSize 0
[  198.684762][ T5855] usb 3-1: config 7 interface 0 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  198.721150][ T5855] usb 3-1: config 7 interface 0 has no altsetting 0
[  198.741142][ T5855] usb 3-1: New USB device found, idVendor=0458, idProduct=5010, bcdDevice= 0.00
[  198.761462][ T5855] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.804357][ T7853] loop3: detected capacity change from 0 to 32768
[  198.877502][ T7853] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  198.925694][ T7853] (syz.3.646,7853,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: rec_len is too small for name_len - offset=0, inode=65, rec_len=16, name_len=8
[  198.948521][ T7853] (syz.3.646,7853,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: rec_len is too small for name_len - offset=0, inode=65, rec_len=16, name_len=8
[  199.027957][ T5794] ocfs2: Unmounting device (7,3) on (node local)
[  199.242686][ T5855] input: HID 0458:5010 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:7.0/0003:0458:5010.0010/input/input15
[  199.282283][ T5855] kye 0003:0458:5010.0010: input,hiddev0,hidraw0: USB HID v2.00 Device [HID 0458:5010] on usb-dummy_hcd.2-1/input0
[  199.548062][ T5855] usb 3-1: USB disconnect, device number 11
[  199.597818][ T7878] loop3: detected capacity change from 0 to 64
[  200.109531][ T7890] loop3: detected capacity change from 0 to 4096
[  200.169022][ T7890] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  200.847049][ T7899] netlink: 4 bytes leftover after parsing attributes in process `syz.3.669'.
[  200.862926][ T7897] loop2: detected capacity change from 0 to 4096
[  200.974192][ T7897] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  201.260075][ T7904] loop3: detected capacity change from 0 to 512
[  201.315174][ T7904] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.671: invalid indirect mapped block 10 (level 1)
[  201.393490][ T7908] loop1: detected capacity change from 0 to 64
[  201.406586][ T7904] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.671: invalid indirect mapped block 8 (level 1)
[  201.427939][ T7904] EXT4-fs (loop3): 1 truncate cleaned up
[  201.436687][ T7904] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  201.577233][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.781376][ T5796] Bluetooth: hci1: command 0x0406 tx timeout
[  201.788913][   T50] Bluetooth: hci0: command 0x0406 tx timeout
[  201.793713][ T5793] Bluetooth: hci2: command 0x0406 tx timeout
[  202.222150][    T9] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  202.411444][    T9] usb 1-1: Using ep0 maxpacket: 32
[  202.420623][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  202.436031][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  202.445939][    T9] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  202.459437][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  202.470761][    T9] usb 1-1: config 0 descriptor??
[  202.641175][    T8] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  202.855652][ T7941] loop2: detected capacity change from 0 to 512
[  202.861158][    T8] usb 4-1: Using ep0 maxpacket: 32
[  202.895856][    T8] usb 4-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  202.903601][ T7941] EXT4-fs error (device loop2): ext4_get_branch:178: inode #13: block 2: comm syz.2.687: invalid block
[  202.922866][ T7941] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.687: invalid indirect mapped block 10 (level 1)
[  202.948020][ T7941] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.687: invalid indirect mapped block 8 (level 1)
[  202.962940][    T9] savu 0003:1E7D:2D5A.0011: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.0-1/input0
[  202.996386][    T8] usb 4-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  203.015793][    T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  203.031730][ T7941] EXT4-fs (loop2): 1 truncate cleaned up
[  203.043114][    T8] usb 4-1: Product: syz
[  203.047346][    T8] usb 4-1: Manufacturer: syz
[  203.058097][ T7941] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.075607][    T8] usb 4-1: SerialNumber: syz
[  203.094729][    T8] usb 4-1: config 0 descriptor??
[  203.105869][    T8] usb 4-1: bad CDC descriptors
[  203.112347][    T8] usb 4-1: unsupported MDLM descriptors
[  203.189576][ T5801] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.262932][    T8] usb 1-1: USB disconnect, device number 6
[  203.320323][   T27] usb 4-1: USB disconnect, device number 10
[  204.487174][ T7961] loop2: detected capacity change from 0 to 32768
[  204.511089][ T7961] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  204.561540][ T5823] usb 1-1: new full-speed USB device number 7 using dummy_hcd
[  204.596855][ T7961] XFS (loop2): Ending clean mount
[  204.605867][ T7961] XFS (loop2): Quotacheck needed: Please wait.
[  204.652102][ T7961] XFS (loop2): Quotacheck: Done.
[  204.753301][ T5823] usb 1-1: config 9 has an invalid interface number: 81 but max is 0
[  204.767575][ T5823] usb 1-1: config 9 has an invalid descriptor of length 0, skipping remainder of the config
[  204.772195][ T5801] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  204.778221][ T5823] usb 1-1: config 9 has no interface number 0
[  204.793830][ T5823] usb 1-1: config 9 interface 81 has no altsetting 0
[  204.803812][ T5823] usb 1-1: New USB device found, idVendor=05f9, idProduct=ffff, bcdDevice=f0.f4
[  204.813181][ T5823] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  204.834595][ T5823] usb 1-1: Product: syz
[  204.846621][ T5823] usb 1-1: Manufacturer: syz
[  204.852057][ T5823] usb 1-1: SerialNumber: syz
[  205.119251][ T5823] usbserial_generic 1-1:9.81: The "generic" usb-serial driver is only for testing and one-off prototypes.
[  205.144127][ T5823] usbserial_generic 1-1:9.81: Tell linux-usb@vger.kernel.org to add your device to a proper driver.
[  205.171722][ T5823] usbserial_generic 1-1:9.81: device has no bulk endpoints
[  205.187722][ T5823] usb 1-1: USB disconnect, device number 7
[  205.772990][ T7982] loop0: detected capacity change from 0 to 64
[  205.960407][ T7989] netlink: 36 bytes leftover after parsing attributes in process `syz.1.706'.
[  206.376343][ T8003] loop3: detected capacity change from 0 to 512
[  206.406277][ T8003] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2244: inode #15: comm syz.3.719: corrupted in-inode xattr: invalid ea_ino
[  206.450802][ T8003] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.719: couldn't read orphan inode 15 (err -117)
[  206.494130][ T8003] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  206.705985][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  207.398016][ T8014] loop3: detected capacity change from 0 to 32768
[  207.465261][ T8014] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  207.651188][ T8014] XFS (loop3): Ending clean mount
[  207.679337][ T8014] XFS (loop3): Quotacheck needed: Please wait.
[  207.803201][ T8014] XFS (loop3): Quotacheck: Done.
[  207.986936][ T5794] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  208.558886][ T8059] syzkaller1: entered promiscuous mode
[  208.572576][ T8059] syzkaller1: entered allmulticast mode
[  208.669279][ T8052] loop1: detected capacity change from 0 to 32768
[  208.678000][ T8052] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 9
[  208.855205][ T5788] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 9
[  209.284394][ T8074] loop1: detected capacity change from 0 to 128
[  209.334199][ T8074] FAT-fs (loop1): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  209.536376][ T8074] syz.1.739: attempt to access beyond end of device
[  209.536376][ T8074] loop1: rw=2049, sector=128, nr_sectors = 1 limit=128
[  209.565488][ T8074] Buffer I/O error on dev loop1, logical block 128, lost async page write
[  209.586108][ T8074] syz.1.739: attempt to access beyond end of device
[  209.586108][ T8074] loop1: rw=2049, sector=129, nr_sectors = 7 limit=128
[  209.714823][ T1091] FAT-fs (loop1): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  211.818892][ T8112] netlink: 16 bytes leftover after parsing attributes in process `syz.2.757'.
[  212.760449][ T8126] netlink: 96 bytes leftover after parsing attributes in process `syz.3.764'.
[  213.371025][    T8] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  213.578980][    T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  213.600385][    T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  213.628539][    T8] usb 3-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[  213.641198][    T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  213.662374][    T8] usb 3-1: config 0 descriptor??
[  213.858327][ T8136] loop0: detected capacity change from 0 to 40427
[  213.872293][ T8136] F2FS-fs (loop0): Wrong SIT boundary, start(1536) end(50334208) blocks(1024)
[  213.926069][ T8136] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  213.931901][ T8143] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.780'.
[  213.975732][ T8136] F2FS-fs (loop0): invalid crc value
[  214.011571][ T8136] F2FS-fs (loop0): Found nat_bits in checkpoint
[  214.087772][    T8] cp2112 0003:10C4:EA90.0012: unknown main item tag 0x0
[  214.118727][    T8] cp2112 0003:10C4:EA90.0012: unknown main item tag 0x0
[  214.136573][    T8] cp2112 0003:10C4:EA90.0012: item fetching failed at offset 2/7
[  214.159071][    T8] cp2112 0003:10C4:EA90.0012: parse failed
[  214.188585][    T8] cp2112: probe of 0003:10C4:EA90.0012 failed with error -22
[  214.199032][ T8136] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  214.250103][ T8136] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  214.317117][ T5855] usb 3-1: USB disconnect, device number 12
[  214.508824][ T5786] syz-executor: attempt to access beyond end of device
[  214.508824][ T5786] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  214.539144][ T5786] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  215.432391][ T8178] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.784'.
[  215.536552][   T28] kauditd_printk_skb: 191 callbacks suppressed
[  215.536569][   T28] audit: type=1326 audit(1757010283.943:575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8179 comm="syz.0.777" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f608398ebe9 code=0x0
[  215.681285][ T5854] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  215.718453][ T8183] loop2: detected capacity change from 0 to 1024
[  215.730613][ T8183] EXT4-fs: Ignoring removed mblk_io_submit option
[  215.741599][ T8183] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  215.772562][ T8183] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  215.873311][ T5854] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  215.886807][ T5854] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  215.896952][ T5854] usb 2-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[  215.906173][ T5854] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  215.917992][ T5854] usb 2-1: config 0 descriptor??
[  215.963011][ T5801] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.346924][ T5854] cp2112 0003:10C4:EA90.0013: unknown main item tag 0x0
[  216.361638][ T5854] cp2112 0003:10C4:EA90.0013: unknown main item tag 0x0
[  216.371089][ T5854] cp2112 0003:10C4:EA90.0013: item fetching failed at offset 2/7
[  216.390118][ T5854] cp2112 0003:10C4:EA90.0013: parse failed
[  216.405587][ T5854] cp2112: probe of 0003:10C4:EA90.0013 failed with error -22
[  216.603933][   T27] usb 2-1: USB disconnect, device number 8
[  217.094555][ T8200] netlink: 8 bytes leftover after parsing attributes in process `syz.2.793'.
[  217.097370][ T8196] syzkaller1: entered promiscuous mode
[  217.113947][ T8196] syzkaller1: entered allmulticast mode
[  217.286995][ T8202] netlink: 16 bytes leftover after parsing attributes in process `syz.3.795'.
[  217.526934][ T8211] loop3: detected capacity change from 0 to 1024
[  217.550229][ T8211] EXT4-fs: Ignoring removed mblk_io_submit option
[  217.592464][ T8211] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  217.688423][ T8211] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  217.851334][   T28] audit: type=1326 audit(1757010286.263:576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8217 comm="syz.2.799" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa197b8ebe9 code=0x0
[  218.018567][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  218.207044][ T8214] loop1: detected capacity change from 0 to 40427
[  218.222202][ T8214] F2FS-fs (loop1): Wrong SIT boundary, start(1536) end(50334208) blocks(1024)
[  218.258784][ T8214] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  218.271851][ T8214] F2FS-fs (loop1): invalid crc value
[  218.282619][ T8214] F2FS-fs (loop1): Found nat_bits in checkpoint
[  218.367585][ T8214] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  218.381018][ T8214] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  218.557714][ T5787] syz-executor: attempt to access beyond end of device
[  218.557714][ T5787] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  218.591056][ T5787] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  218.616065][ T8212] loop0: detected capacity change from 0 to 40427
[  218.652701][ T8212] F2FS-fs (loop0): build fault injection attr: rate: 690, type: 0x7ffff
[  218.675422][ T8212] F2FS-fs (loop0): Image doesn't support compression
[  218.697147][ T8212] F2FS-fs (loop0): Image doesn't support compression
[  218.724643][ T8212] F2FS-fs (loop0): invalid crc value
[  218.793111][ T8212] F2FS-fs (loop0): Found nat_bits in checkpoint
[  218.941329][ T8212] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  219.190798][ T8236] F2FS-fs (loop0): inject page alloc in f2fs_grab_cache_page of f2fs_new_node_page+0x13a/0x910
[  219.658786][ T8249] loop3: detected capacity change from 0 to 128
[  220.289621][ T8244] syz.2.810 (8244): drop_caches: 2
[  220.322374][ T8249] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  220.377132][ T8249] ext4 filesystem being mounted at /199/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  220.591070][   T28] audit: type=1800 audit(1757010288.993:577): pid=8212 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.796" name="file1" dev="loop0" ino=10 res=0 errno=0
[  220.681361][ T5786] syz-executor: attempt to access beyond end of device
[  220.681361][ T5786] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  220.716665][ T5794] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  220.734257][ T5786] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  221.476991][ T8283] loop1: detected capacity change from 0 to 64
[  221.490012][ T8285] netlink: 4 bytes leftover after parsing attributes in process `syz.2.826'.
[  221.843193][ T8291] netlink: 4 bytes leftover after parsing attributes in process `syz.1.829'.
[  221.998524][ T8293] loop2: detected capacity change from 0 to 1024
[  222.124058][ T8293] hfsplus: xattr searching failed
[  222.146805][ T8293] hfsplus: xattr searching failed
[  222.171408][ T8293] hfsplus: xattr searching failed
[  222.245807][ T8297] syzkaller1: entered promiscuous mode
[  222.257641][ T8297] syzkaller1: entered allmulticast mode
[  222.528345][ T8287] loop3: detected capacity change from 0 to 32768
[  222.614507][ T8287] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  222.628056][ T8310] loop1: detected capacity change from 0 to 1024
[  222.640849][ T8310] EXT4-fs: Ignoring removed nobh option
[  222.658938][ T8310] EXT4-fs: Ignoring removed bh option
[  222.667112][ T8310] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  222.723223][ T8310] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.781280][   T27] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  222.818793][ T8287] XFS (loop3): Ending clean mount
[  222.833123][ T8299] loop0: detected capacity change from 0 to 32768
[  222.845423][ T8287] XFS (loop3): Quotacheck needed: Please wait.
[  222.892901][ T8299] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  222.934262][   T28] audit: type=1800 audit(1757010291.343:578): pid=8299 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.832" name="file1" dev="loop0" ino=17058 res=0 errno=0
[  223.002445][   T27] usb 3-1: Using ep0 maxpacket: 32
[  223.009146][ T8287] XFS (loop3): Quotacheck: Done.
[  223.018816][   T27] usb 3-1: config index 0 descriptor too short (expected 35577, got 27)
[  223.021338][ T5786] ocfs2: Unmounting device (7,0) on (node local)
[  223.039192][   T27] usb 3-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  223.078342][   T28] audit: type=1800 audit(1757010291.473:579): pid=8287 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.827" name="file1" dev="loop3" ino=6150 res=0 errno=0
[  223.118083][   T27] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 92
[  223.138150][   T27] usb 3-1: config 1 has no interface number 0
[  223.144885][   T27] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  223.171471][   T27] usb 3-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  223.190269][ T8287] Direct I/O collision with buffered writes! File: /file1 Comm: syz.3.827
[  223.223899][   T27] usb 3-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  223.243983][   T27] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  223.297493][   T27] snd_usb_pod 3-1:1.1: Line 6 Pocket POD found
[  223.346373][ T5794] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  223.369236][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.534812][   T27] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now attached
[  223.970456][   T27] usb 3-1: USB disconnect, device number 13
[  223.994196][   T27] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now disconnected
[  224.070100][ T8335] loop3: detected capacity change from 0 to 512
[  224.095962][ T8335] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  224.142357][ T8335] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  224.249696][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.304041][ T8341] loop0: detected capacity change from 0 to 2048
[  224.349899][ T8341] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  224.654463][ T8350] loop2: detected capacity change from 0 to 2048
[  224.700003][ T8350] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  224.767351][ T8350] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  224.788983][ T8350] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 22 with error 28
[  224.882545][ T8350] EXT4-fs (loop2): This should not happen!! Data will be lost
[  224.882545][ T8350] 
[  224.906177][ T8350] EXT4-fs (loop2): Total free blocks count 0
[  224.931086][ T8350] EXT4-fs (loop2): Free/Dirty block details
[  224.937710][ T8350] EXT4-fs (loop2): free_blocks=2415919504
[  224.959105][ T8350] EXT4-fs (loop2): dirty_blocks=32
[  224.981568][ T8350] EXT4-fs (loop2): Block reservation details
[  224.988561][ T8350] EXT4-fs (loop2): i_reserved_data_blocks=2
[  225.107815][ T1091] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  225.373443][ T8368] loop2: detected capacity change from 0 to 1024
[  225.485320][ T8368] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.627757][ T8372] loop3: detected capacity change from 0 to 512
[  225.640528][ T8368] EXT4-fs error (device loop2): ext4_get_first_dir_block:3606: inode #11: comm syz.2.854: directory missing '..'
[  225.659651][ T8365] loop1: detected capacity change from 0 to 32768
[  225.709790][ T8372] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  225.732060][ T8356] loop0: detected capacity change from 0 to 32768
[  225.775363][ T8365] ocfs2: Mounting device (7,1) on (node local, slot 0) with writeback data mode.
[  225.818290][ T5801] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.838824][ T2926] (kworker/u4:8,2926,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #72: rec_len % 4 != 0 - offset=16, inode=66, rec_len=491, name_len=2
[  225.891979][ T8356] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[  226.074587][   T42] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  226.100291][ T5787] ocfs2: Unmounting device (7,1) on (node local)
[  226.107847][ T5786] ocfs2: Unmounting device (7,0) on (node local)
[  226.620791][ T8394] netlink: 28 bytes leftover after parsing attributes in process `syz.3.863'.
[  226.811157][ T5854] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  227.821958][ T8401] loop1: detected capacity change from 0 to 131072
[  227.836222][ T8401] F2FS-fs (loop1): invalid crc value
[  227.878611][ T8401] F2FS-fs (loop1): Found nat_bits in checkpoint
[  227.938653][ T8401] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  227.950836][ T5854] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  227.961926][ T5854] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  227.972252][ T5854] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  227.985249][ T5854] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  227.994360][ T5854] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  228.004877][ T5854] usb 3-1: config 0 descriptor??
[  228.358366][ T8417] loop0: detected capacity change from 0 to 1024
[  228.396162][ T8417] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  228.422190][ T8417] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  228.447636][ T8417] EXT4-fs (loop0): orphan cleanup on readonly fs
[  228.450535][ T5854] plantronics 0003:047F:FFFF.0014: No inputs registered, leaving
[  228.454461][ T8417] EXT4-fs error (device loop0): ext4_free_blocks:6676: comm syz.0.870: Freeing blocks not in datazone - block = 0, count = 4096
[  228.476663][ T8417] EXT4-fs (loop0): 1 orphan inode deleted
[  228.485691][ T8417] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  228.537638][ T5854] plantronics 0003:047F:FFFF.0014: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  228.593182][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.831505][ T5841] usb 3-1: USB disconnect, device number 14
[  229.071230][   T27] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  229.175656][ T8430] team0: Device ipvlan2 failed to register rx_handler
[  229.261010][   T27] usb 1-1: Using ep0 maxpacket: 16
[  229.268695][   T27] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  229.279679][   T27] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  229.292394][   T27] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  229.309553][   T27] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  229.318380][   T27] usb 1-1: Product: syz
[  229.323145][   T27] usb 1-1: Manufacturer: syz
[  229.327798][   T27] usb 1-1: SerialNumber: syz
[  229.569056][   T27] usb 1-1: 0:2 : does not exist
[  229.591946][   T27] usb 1-1: 5:0: failed to get current value for ch 0 (-22)
[  229.600019][ T8434] loop1: detected capacity change from 0 to 1024
[  229.668366][   T27] usb 1-1: USB disconnect, device number 8
[  229.754400][ T5788] udevd[5788]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  229.775207][   T42] hfsplus: b-tree write err: -5, ino 4
[  230.793903][ T8444] loop3: detected capacity change from 0 to 40427
[  230.826135][ T8444] F2FS-fs (loop3): invalid crc value
[  230.864242][ T8444] F2FS-fs (loop3): Found nat_bits in checkpoint
[  230.971382][  T786] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  230.995577][ T8444] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  231.113358][   T28] audit: type=1804 audit(1757010299.523:580): pid=8444 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.881" name="/newroot/220/file0/bus" dev="loop3" ino=10 res=1 errno=0
[  231.136706][   T28] audit: type=1800 audit(1757010299.523:581): pid=8444 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.881" name="bus" dev="loop3" ino=10 res=0 errno=0
[  231.211081][  T786] usb 3-1: Using ep0 maxpacket: 16
[  231.226476][  T786] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  231.252413][  T786] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  231.271417][  T786] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  231.296944][  T786] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  231.307527][ T5794] syz-executor: attempt to access beyond end of device
[  231.307527][ T5794] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  231.307933][  T786] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  231.341199][ T5794] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  231.349389][  T786] usb 3-1: config 0 descriptor??
[  231.367273][ T8460] loop1: detected capacity change from 0 to 40427
[  231.378539][ T8460] F2FS-fs (loop1): build fault injection attr: rate: 690, type: 0x7ffff
[  231.415502][ T8460] F2FS-fs (loop1): Image doesn't support compression
[  231.448182][ T8460] F2FS-fs (loop1): Image doesn't support compression
[  231.491967][ T8460] F2FS-fs (loop1): invalid crc value
[  231.506663][ T8460] F2FS-fs (loop1): Found nat_bits in checkpoint
[  231.571689][ T8460] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  231.784328][  T786] HID 045e:07da: Invalid code 65791 type 1
[  231.785288][ T8469] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_page of f2fs_new_node_page+0x13a/0x910
[  231.824708][  T786] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.0015/input/input17
[  231.859514][  T786] microsoft 0003:045E:07DA.0015: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  232.085334][ T5823] usb 3-1: USB disconnect, device number 15
[  232.889040][ T8485] syzkaller1: entered promiscuous mode
[  232.894914][ T8485] syzkaller1: entered allmulticast mode
[  232.984432][ T8489] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  233.110072][ T8491] netlink: 24 bytes leftover after parsing attributes in process `syz.2.897'.
[  233.251858][ T8491] netlink: 24 bytes leftover after parsing attributes in process `syz.2.897'.
[  233.704813][   T28] audit: type=1800 audit(1757010302.113:582): pid=8460 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.887" name="file1" dev="loop1" ino=10 res=0 errno=0
[  234.127387][ T5787] syz-executor: attempt to access beyond end of device
[  234.127387][ T5787] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  234.129382][ T8503] syz.3.900 (8503): drop_caches: 2
[  234.149875][ T5787] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  234.470684][ T8516] netlink: 71 bytes leftover after parsing attributes in process `syz.0.908'.
[  234.526213][ T8518] loop3: detected capacity change from 0 to 128
[  234.551747][ T8518] qnx4: no qnx4 filesystem (no root dir).
[  235.589723][ T8521] loop0: detected capacity change from 0 to 32768
[  235.615992][ T8521] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 scanned by syz.0.920 (8521)
[  235.672384][ T8521] BTRFS info (device loop0): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  235.710326][ T8521] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  235.721241][ T8521] BTRFS info (device loop0): force zlib compression, level 3
[  235.728909][ T8521] BTRFS info (device loop0): force clearing of disk cache
[  235.731607][ T8544] loop2: detected capacity change from 0 to 256
[  235.746288][ T8521] BTRFS info (device loop0): turning off barriers
[  235.761340][ T8521] BTRFS info (device loop0): doing ref verification
[  235.768196][ T8521] BTRFS info (device loop0): enabling disk space caching
[  235.797976][ T8521] BTRFS info (device loop0): disk space caching is enabled
[  235.810606][ T8544] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  235.851013][  T786] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  235.946325][ T5823] libceph: connect (1)[c::]:6789 error -101
[  235.952927][ T5823] libceph: mon0 (1)[c::]:6789 connect error
[  235.986789][ T8521] BTRFS info (device loop0): enabling ssd optimizations
[  235.994744][ T8521] BTRFS info (device loop0): auto enabling async discard
[  236.009288][ T8521] BTRFS info (device loop0): rebuilding free space tree
[  236.029023][ T8521] BTRFS info (device loop0): disabling free space tree
[  236.038346][ T8521] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  236.048660][ T8521] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  236.061486][  T786] usb 2-1: Using ep0 maxpacket: 16
[  236.090626][  T786] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  236.120155][  T786] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  236.151907][  T786] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  236.192382][  T786] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  236.214466][ T5823] libceph: connect (1)[c::]:6789 error -101
[  236.228666][ T5823] libceph: mon0 (1)[c::]:6789 connect error
[  236.235040][  T786] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  236.245011][  T786] usb 2-1: config 0 descriptor??
[  236.287764][ T8521] BTRFS info (device loop0): balance: start 
[  236.307778][ T8521] BTRFS info (device loop0): balance: ended with status: 0
[  236.442754][ T5786] BTRFS info (device loop0): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  236.654280][ T5788] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 13 /dev/loop0 scanned by udevd (5788)
[  236.725815][  T786] HID 045e:07da: Invalid code 65791 type 1
[  236.763701][ T5823] libceph: connect (1)[c::]:6789 error -101
[  236.773013][  T786] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0016/input/input18
[  236.792024][ T5823] libceph: mon0 (1)[c::]:6789 connect error
[  236.853250][ T8560] ceph: No mds server is up or the cluster is laggy
[  236.872363][  T786] microsoft 0003:045E:07DA.0016: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  236.977174][  T786] usb 2-1: USB disconnect, device number 9
[  237.153911][ T8571] fido_id[8571]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  237.364040][ T8569] loop2: detected capacity change from 0 to 32768
[  237.779742][ T8577] loop0: detected capacity change from 0 to 512
[  237.845176][ T8579] loop3: detected capacity change from 0 to 1024
[  238.028829][ T8581] syz.1.927 (8581): drop_caches: 2
[  238.039572][ T8577] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  238.099275][ T8579] hfsplus: xattr searching failed
[  238.121622][ T8579] hfsplus: xattr searching failed
[  238.127090][ T8579] hfsplus: xattr searching failed
[  238.281939][ T1133] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  239.079285][ T8587] loop1: detected capacity change from 0 to 32768
[  239.122574][ T8587] ocfs2: Mounting device (7,1) on (node local, slot 0) with writeback data mode.
[  239.723452][ T5787] ocfs2: Unmounting device (7,1) on (node local)
[  240.251878][ T8606] loop2: detected capacity change from 0 to 512
[  240.335481][ T8606] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.939: casefold flag without casefold feature
[  240.438159][ T8606] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.939: couldn't read orphan inode 15 (err -117)
[  240.512336][ T8606] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  240.857989][ T5801] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  240.973582][ T8612] netlink: 4 bytes leftover after parsing attributes in process `syz.1.949'.
[  240.999342][ T8594] loop3: detected capacity change from 0 to 262144
[  241.010985][ T8594] BTRFS: device fsid 7e32c2af-f87a-45a1-bcba-64dea7c56a53 devid 1 transid 8 /dev/loop3 scanned by syz.3.932 (8594)
[  241.028847][ T8594] BTRFS info (device loop3): first mount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  241.039201][ T8594] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm
[  241.048522][ T8594] BTRFS info (device loop3): using free space tree
[  241.139761][ T8602] loop0: detected capacity change from 0 to 32768
[  241.195062][ T8594] BTRFS info (device loop3): enabling ssd optimizations
[  241.231519][ T8602] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  241.404562][ T8636] loop1: detected capacity change from 0 to 4096
[  241.529849][ T5794] BTRFS info (device loop3): last unmount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  241.571612][ T8639] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  241.592701][ T5786] ocfs2: Unmounting device (7,0) on (node local)
[  241.645632][   T28] audit: type=1800 audit(1757010310.043:583): pid=8636 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.943" name="file1" dev="loop1" ino=15 res=0 errno=0
[  242.023676][ T8650] netlink: 32 bytes leftover after parsing attributes in process `syz.1.946'.
[  242.316500][ T8653] loop2: detected capacity change from 0 to 512
[  242.464195][ T8653] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  242.538028][ T8653] ext4 filesystem being mounted at /245/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  242.671218][  T786] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  242.739972][ T8653] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  242.913097][  T786] usb 1-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  242.931058][  T786] usb 1-1: config 0 interface 0 has no altsetting 0
[  242.945269][  T786] usb 1-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  242.961039][  T786] usb 1-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  242.979560][  T786] usb 1-1: Product: syz
[  242.984346][  T786] usb 1-1: Manufacturer: syz
[  242.989221][ T8647] loop3: detected capacity change from 0 to 32768
[  242.995805][  T786] usb 1-1: SerialNumber: syz
[  243.018313][  T786] usb 1-1: config 0 descriptor??
[  243.058917][ T8647] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  243.081679][  T786] usb 1-1: selecting invalid altsetting 0
[  243.394554][ T8647] XFS (loop3): Ending clean mount
[  243.421959][ T8647] XFS (loop3): Quotacheck needed: Please wait.
[  243.457838][  T786] usb 1-1: USB disconnect, device number 9
[  243.512125][ T8647] XFS (loop3): Quotacheck: Done.
[  243.748536][ T5794] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  243.772190][ T5823] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  243.797465][ T5823] hid-generic 0000:0000:0000.0017: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  244.131292][  T786] usb 2-1: new full-speed USB device number 10 using dummy_hcd
[  244.336500][  T786] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  244.346657][  T786] usb 2-1: config 0 has no interface number 0
[  244.353010][  T786] usb 2-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e
[  244.363134][  T786] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  244.381798][  T786] usb 2-1: config 0 descriptor??
[  244.394858][  T786] usb 2-1: selecting invalid altsetting 1
[  244.406251][  T786] dvb_ttusb_budget: ttusb_init_controller: error
[  244.413391][  T786] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB)
[  244.500168][  T786] DVB: Unable to find symbol cx22700_attach()
[  244.569319][  T786] DVB: Unable to find symbol tda10046_attach()
[  244.576683][  T786] dvb_ttusb_budget: no frontend driver found for device [0b48:1005]
[  244.651606][  T786] usb 2-1: USB disconnect, device number 10
[  245.242936][ T8700] loop3: detected capacity change from 0 to 4096
[  245.318061][ T8700] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  245.533424][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  245.575963][ T8708] syzkaller1: entered promiscuous mode
[  245.581956][ T8708] syzkaller1: entered allmulticast mode
[  245.658652][ T8698] loop0: detected capacity change from 0 to 32768
[  245.691137][  T786] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  245.721333][ T8698] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  245.771197][ T8698] XFS (loop0): Ending clean mount
[  245.805870][ T8698] XFS (loop0): Quotacheck needed: Please wait.
[  245.902031][  T786] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  245.937994][ T8698] XFS (loop0): Quotacheck: Done.
[  245.949471][  T786] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  245.983916][  T786] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  246.004142][  T786] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  246.039421][  T786] usb 2-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  246.051677][  T786] usb 2-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  246.067877][  T786] usb 2-1: Manufacturer: syz
[  246.080290][  T786] usb 2-1: config 0 descriptor??
[  246.162501][ T5786] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  246.517493][  T786] appleir 0003:05AC:8243.0018: unknown main item tag 0x0
[  246.526270][  T786] appleir 0003:05AC:8243.0018: No inputs registered, leaving
[  246.544481][  T786] appleir 0003:05AC:8243.0018: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0
[  246.771177][    T9] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  246.841147][  T786] usb 2-1: USB disconnect, device number 11
[  246.963584][    T9] usb 3-1: Using ep0 maxpacket: 8
[  246.973637][    T9] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  247.004376][    T9] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  247.015685][    T9] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  247.028243][    T9] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  247.046856][    T9] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  247.058825][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  247.213626][ T5841] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  247.283006][    T9] usb 3-1: GET_CAPABILITIES returned 0
[  247.288681][    T9] usbtmc 3-1:16.0: can't read capabilities
[  247.401290][ T5841] usb 1-1: Using ep0 maxpacket: 32
[  247.423687][ T5841] usb 1-1: config 0 has an invalid interface number: 184 but max is 0
[  247.432619][ T5841] usb 1-1: config 0 has no interface number 0
[  247.439254][ T5841] usb 1-1: config 0 interface 184 has no altsetting 0
[  247.450294][ T5841] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  247.460197][ T5841] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  247.469851][ T5841] usb 1-1: Product: syz
[  247.474785][ T5841] usb 1-1: Manufacturer: syz
[  247.479436][ T5841] usb 1-1: SerialNumber: syz
[  247.499888][ T5841] usb 1-1: config 0 descriptor??
[  247.506540][ T5823] usb 3-1: USB disconnect, device number 16
[  247.526131][ T5841] smsc75xx v1.0.0
[  247.538693][ T8749] loop1: detected capacity change from 0 to 64
[  247.599060][   T28] audit: type=1800 audit(1757010316.003:584): pid=8749 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.982" name="file1" dev="loop1" ino=21 res=0 errno=0
[  247.945761][ T8756] loop3: detected capacity change from 0 to 4096
[  248.003729][ T8756] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  248.198095][ T5794] ntfs3: loop3: ino=9, ntfs_sync_fs failed, -22.
[  248.248005][ T8763] netlink: 4 bytes leftover after parsing attributes in process `syz.2.988'.
[  248.344521][ T5841] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -71
[  248.377934][ T5841] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  248.409232][ T5841] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  248.462900][ T5841] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[  248.503558][ T5841] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_reset
[  248.532624][ T5841] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[  248.558400][ T5841] smsc75xx: probe of 1-1:0.184 failed with error -71
[  248.591412][ T5841] usb 1-1: USB disconnect, device number 10
[  249.724049][ T8805] netlink: 'syz.0.1006': attribute type 34 has an invalid length.
[  250.360341][ T8821] loop0: detected capacity change from 0 to 4096
[  250.372674][ T8799] loop3: detected capacity change from 0 to 32768
[  250.391188][ T5823] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  250.412286][ T8799] 
[  250.412286][ T8799]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  250.412286][ T8799] 
[  250.432819][ T8824] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  250.456551][ T8799] ERROR: (device loop3): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 0
[  250.456551][ T8799] 
[  250.478595][ T8799] JFS: Invalid stbl[1] = -128 for inode 2, block = 0
[  250.550851][ T1091] 
[  250.550851][ T1091]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  250.550851][ T1091] 
[  250.578659][ T1091] 
[  250.578659][ T1091]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  250.578659][ T1091] 
[  250.584141][ T5823] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  250.598297][    T9] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  250.609974][ T5823] usb 3-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  250.617893][ T5794] 
[  250.617893][ T5794]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  250.617893][ T5794] 
[  250.634333][ T5823] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  250.643967][ T5794] 
[  250.643967][ T5794]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  250.643967][ T5794] 
[  250.663248][ T5823] usb 3-1: config 0 descriptor??
[  250.665239][  T112] general protection fault, probably for non-canonical address 0xdffffc0000000008: 0000 [#1] PREEMPT SMP KASAN
[  250.673537][ T5823] pwc: Askey VC010 type 2 USB webcam detected.
[  250.680049][  T112] KASAN: null-ptr-deref in range [0x0000000000000040-0x0000000000000047]
[  250.680081][  T112] CPU: 0 PID: 112 Comm: jfsCommit Not tainted syzkaller #0
[  250.701906][  T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  250.712083][  T112] RIP: 0010:lmLogSync+0xfc/0x9c0
[  250.717046][  T112] Code: c7 85 fe 4d 8d 7e d8 4c 89 f8 48 c1 e8 03 80 3c 18 00 74 08 4c 89 ff e8 52 0d dd fe 4d 8b 3f 49 83 c7 40 4c 89 f8 48 c1 e8 03 <80> 3c 18 00 74 08 4c 89 ff e8 36 0d dd fe 49 8b 3f e8 be 2f b3 fe
[  250.736671][  T112] RSP: 0018:ffffc90002cc7c40 EFLAGS: 00010202
[  250.742763][  T112] RAX: 0000000000000008 RBX: dffffc0000000000 RCX: 0000000000000000
[  250.750831][  T112] RDX: ffff888018f45a00 RSI: 0000000000000001 RDI: 0000000000000000
[  250.758840][  T112] RBP: ffffc90002cc7d48 R08: 0000000000000003 R09: 0000000000000000
[  250.766852][  T112] R10: ffffc90002cc7ca0 R11: fffff52000598f98 R12: ffff8880205d6000
[  250.774843][  T112] R13: dffffc0000000000 R14: ffff88807d82dc38 R15: 0000000000000040
[  250.782942][  T112] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  250.791976][  T112] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  250.798590][  T112] CR2: 0000555565aec5c8 CR3: 0000000066269000 CR4: 00000000003506f0
[  250.806768][  T112] Call Trace:
[  250.810066][  T112]  <TASK>
[  250.813063][  T112]  ? lmWriteRecord+0x1ac0/0x1ac0
[  250.818020][  T112]  ? __rwlock_init+0x150/0x150
[  250.822810][  T112]  jfs_syncpt+0x7b/0x90
[  250.827002][  T112]  txEnd+0x2e5/0x520
[  250.830914][  T112]  jfs_lazycommit+0x5a6/0xa60
[  250.835609][  T112]  ? txFreelock+0x5a0/0x5a0
[  250.840319][  T112]  ? do_task_dead+0xd0/0xd0
[  250.844865][  T112]  ? __kthread_parkme+0x7a/0x1c0
[  250.849858][  T112]  kthread+0x2fa/0x390
[  250.853951][  T112]  ? txFreelock+0x5a0/0x5a0
[  250.858502][  T112]  ? kthread_blkcg+0xd0/0xd0
[  250.863115][  T112]  ret_from_fork+0x48/0x80
[  250.867559][  T112]  ? kthread_blkcg+0xd0/0xd0
[  250.872429][  T112]  ret_from_fork_asm+0x11/0x20
[  250.877219][  T112]  </TASK>
[  250.880274][  T112] Modules linked in:
[  250.884231][    C0] vkms_vblank_simulate: vblank timer overrun
[  250.914696][  T112] ---[ end trace 0000000000000000 ]---
[  250.922024][  T112] RIP: 0010:lmLogSync+0xfc/0x9c0
[  250.927098][  T112] Code: c7 85 fe 4d 8d 7e d8 4c 89 f8 48 c1 e8 03 80 3c 18 00 74 08 4c 89 ff e8 52 0d dd fe 4d 8b 3f 49 83 c7 40 4c 89 f8 48 c1 e8 03 <80> 3c 18 00 74 08 4c 89 ff e8 36 0d dd fe 49 8b 3f e8 be 2f b3 fe
[  250.949568][  T112] RSP: 0018:ffffc90002cc7c40 EFLAGS: 00010202
[  250.958086][  T112] RAX: 0000000000000008 RBX: dffffc0000000000 RCX: 0000000000000000
[  250.966459][  T112] RDX: ffff888018f45a00 RSI: 0000000000000001 RDI: 0000000000000000
[  250.976777][  T112] RBP: ffffc90002cc7d48 R08: 0000000000000003 R09: 0000000000000000
[  250.985662][  T112] R10: ffffc90002cc7ca0 R11: fffff52000598f98 R12: ffff8880205d6000
[  250.993878][  T112] R13: dffffc0000000000 R14: ffff88807d82dc38 R15: 0000000000000040
[  251.002450][  T112] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  251.011787][  T112] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  251.018446][  T112] CR2: 0000001b2e823ff8 CR3: 000000002d9cb000 CR4: 00000000003526e0
[  251.027037][  T112] Kernel panic - not syncing: Fatal exception
[  251.033437][  T112] Kernel Offset: disabled
[  251.037790][  T112] Rebooting in 86400 seconds..