last executing test programs:

7.471109059s ago: executing program 4:
syz_mount_image$jfs(&(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x8000, &(0x7f0000000300)=ANY=[@ANYBLOB='usrquota,errors=continue,nodiscard,usrquota,errors=remount-ro,discard,resize=0x0000000000000000,nointegrity,errors=continue,gid=', @ANYRESHEX=0x0, @ANYBLOB=',uid=', @ANYRESHEX=0x0, @ANYBLOB=',noquota,noquota,iocharset=default,uid=', @ANYRESDEC=0x0, @ANYBLOB=',smackfstransmute=noquota,uid=', @ANYRESDEC, @ANYRES32], 0x1, 0x61ac, &(0x7f00000065c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000ac0)=""/4096, 0x1000)

6.025112025s ago: executing program 4:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f00000000c0)={'#! ', './file0'}, 0xb)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0)
r1 = socket$phonet(0x23, 0x2, 0x1)
ioctl$SIOCPNDELRESOURCE(r1, 0x89ef, &(0x7f0000000000))

5.694739837s ago: executing program 4:
syz_mount_image$ext4(&(0x7f0000000340)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x204400, &(0x7f00000003c0)={[{@dioread_nolock}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}, {@nogrpid}, {@quota}]}, 0x1, 0x763, &(0x7f00000019c0)="$eJzs3M9rHGUfAPDvTLNNf+R9Ny+8h/e9VKGFFko3SXNpT8aLeCkUCl7rkmxC2Em2ZDc1iYWm3gShNhcFQfTu0atQ6h/gTQoK3gXRGg/iJTKbzbZNd+O23XRr/Hxgss8zM898v9+dzZMZyGwA/1iv5j+SiJGIuBwRxdb6NCION1tHIta399t8cGM6X5LY2rryc5IPi82tYvtYSev1eDSHxP8i4l4h4ux7T8atr65Vy1lWWWr1xxoL18bqq2vn5hfKc5W5yuLE5MXxC5OTF8Yn+1brqbcuHr3zzRsbG99+2bh9YuhcElPNuqNVW98CPWL7PSnE1K71i/sRbICSHvYZegF5AACwt/w6/1Dr2qwQxTjkKg0AAAAOnK3hLQAAAODAS2LQGQAAAAD7a+f/AHae7d2v52C7+en1iBjtFH+o+QxxxJEoRMSxzeSxJxOS7WHwXNZvRcTdqQ6fv16eaN7b+MPm0f4ckX67m88/U53mn7Q9/0SH+Wdo57sTnlP3+e9h/ENd5r/LPcb46tP/F7rGv1Vfef9Ep/hJO37SJf7bPca/vfHBnW7btj6PON3x70/yWKw9vh9ibHY+6/Sr1U733h9n7nevP+LYE/GTpBk12bv+az3W/+7mr9X1PeKfObn3+d+OP/zYuPwz8WErjzQi7rRe8/7GrhgnF777+snIyfpO/Jku73/n8/9mu/7Peqz/hy+GV3rcFQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJrSiBiJJC2122laKkUcj4j/xrE0q9UbZ2dry4sz+baI0Siks/NZZTwiitv9JO9PNNsP++d39Scj4j/fH90OOp9VStO1bGbQxQMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANB2PCJGIklLEZFGxG/FNC2VBp0VAAAA0Hejg04AAAAA2Hfu/wEAAODge9b7/6TPeQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAH2uVLl/Jla/PBjem8P3N9dblau35uplKvlhaWp0vTtaVrpblabS6rlKZrC391vDQiJi7G8spYo1JvjNVX164u1JYXG1fnF8pzlauVwgupCgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgKc10lyStBQRabOdpqVSxL8iYjQKyex8VhmPiH9HxP1iYTjvTww6aQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPquvrpWLWdZZUnj79iIJOIlSEOjWo54mlE34+U+ca8MemICAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAg6qtr1XKWVZbqg84EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAwUp/TCIiX04XT43s3no4+b3YfI2Idz658tFKudFYmsjX/9Je3/i4tf78IwNvvsgaAAAA4MB77Wl23rlP37mPBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6FV9da1azrLK0j424tagqwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJ7FnwEAAP//jUPDrw==")
chdir(&(0x7f0000000080)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x0, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef9cc093fce47d85272036dc78388e3dc177e9b496", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001"})
write$cgroup_int(r0, &(0x7f0000000380), 0x101bf)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0x4030582b, &(0x7f00000010c0)={0x7, 0xffffffffffffffff, 0x0, 0x800000000})

5.203080674s ago: executing program 4:
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x2000480, &(0x7f0000004080), 0x1, 0x762, &(0x7f00000029c0)="$eJzs3c9rHFUcAPDvbJKmTauJIGg9BQQNlG5Mja2Ch4oHESwU9GxdNttQs8mW7KY0IaAighdBxYOgl579UW/exB9X/S88SEvVtFjxIJHZzKbbZrfJpkmWup8PTPt9M7N5892Zee/tzrATQM8aTf/JRRyOiA+TiOFsfhIRA/WoP+Lk2no3V5aL6ZTE6uqrfyT1dW6sLBej6TWpg1nh0Yj48b2II7mN9VYXl2YK5XJpPiuP12bPj1cXl46emy1Ml6ZLc8cnJiePnXjmxPGdy/WvX5YOXf3opSe/PvnPu49c/uCnJE7GoWxZcx47ZTRGs/dkIH0Lb/PiTlfWZUm3N4BtSU/NvrWzPA7HcPTVIwDg/+ytiFgFAHpMov8HgB7T+B7gxspysTF19xuJvXXthYjYv5Z/4/rm2pL+7Jrd/vp10KEbyW1XRpKIGNmB+kcj4vNvX/8ynWKXrkMCtPL2d1mwof1PNtyz0KmntrDO6B1l7R/sne/T8c+zrcZ/ufXxT7QY/wy2OHe3Y/PzP3dlB6ppKx3/Pd90b9vNpvwzI31Z6YH6mG8gOXuuXErbtgcjYiwGBtPyxF3qGLv+7/V2y5rHf39+/OYXaf3p/7fWyF3pH7z9NVOFWuFecm527Z2Ix/pb5Z+s7/+kzfj39BbrePm59z9rtyzNP823MW3Mf3etXop4ouX+v3VHW3LX+xPH64fDeOOgaOGbXz8dald/8/5Pp7T+xmeBvZDu/6G75z+SNN+vWe28jp8vDf/Qbtnm+bc+/vclr9Xjfdm8i4VabX4iYl/yysb5x269tlFurJ/mP/Z4Pf8D2Sob2r9Wx3/6mfCNzRLPNqL/6u9fbT//3ZXmP9XR/u88uHxzpq9d/Vvb/5P1aCybs5X2b6sbeC/vHQAAAAAAAAAAAAAAAAAAAAAAAABsVS4iDkWSy6/HuVw+v/YM74djKFeuVGtHzlYW5qai/qzskRjINX7qcrjp91Anst/Db5SP3VF+OiIeiohPBg/Uy/lipTzV7eQBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIHOwzfP/U78NdnvrAIBds7/bGwAA7Dn9PwD0nk77f+MFALj/6c8BoPfo/wGg9+j/AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA2GWnT51Kp9W/V5aLaXnqwuLCTOXC0alSdSY/u1DMFyvz5/PTlcp0uZQvVmY3+3vlSuX8ZMwtXByvlaq18eri0pnZysJc7cy52cJ06UxpYE+yAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDOVBeXZgrlcmleIBAI1oNut0wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA94f/AgAA///tuiN0")
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b200008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000900)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_loose}]}})
mknod$loop(&(0x7f0000000080)='./file0/bus\x00', 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
setresuid(0x0, 0xee00, 0x0)
llistxattr(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)

4.871051266s ago: executing program 4:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='pids.current\x00', 0x275a, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r3}, 0x10)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r5 = dup(r4)
ioctl$KVM_SET_MSRS(r5, 0xc048aeca, &(0x7f0000000040)=ANY=[@ANYRES16=r0])

4.729328348s ago: executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file1\x00', 0x2808044, &(0x7f0000000080)={[{@iocharset={'iocharset', 0x3d, 'cp852'}}, {@iocharset={'iocharset', 0x3d, 'cp1250'}}, {@shortname_win95}, {@iocharset={'iocharset', 0x3d, 'cp1255'}}, {@shortname_winnt}, {@fat=@dos1xfloppy}, {@iocharset={'iocharset', 0x3d, 'macinuit'}}, {@fat=@check_strict}, {@shortname_winnt}, {@utf8no}, {@iocharset={'iocharset', 0x3d, 'cp869'}}, {@rodir}, {@uni_xlateno}]}, 0x1, 0x299, &(0x7f00000007c0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
write$UHID_INPUT(r0, &(0x7f0000000940)={0x8, {"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", 0x1000}}, 0x1006)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x2200000, 0x0, 0x1, 0x0, &(0x7f0000000000))

4.631000144s ago: executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x10, &(0x7f0000000c80), 0xff, 0x249, &(0x7f0000000880)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mknod(&(0x7f0000000080)='./bus\x00', 0x0, 0x0)
mknod(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
open$dir(&(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
open(&(0x7f00000002c0)='./bus\x00', 0x0, 0x0)
mkdir(&(0x7f0000000300)='./file0/file0\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x0, 0x0)
open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
getdents(r0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.dequeue\x00', 0x275a, 0x0)

3.802070884s ago: executing program 2:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x8, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000000000400000000000000000850000005300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000680)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

3.741794773s ago: executing program 2:
syz_usb_connect(0x0, 0x24, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f00000001c0)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d2f2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
setsockopt$MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xc8, &(0x7f00000001c0), 0xc)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000080)={[{0x5}]})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, &(0x7f00000000c0)={0xa0002006})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000200)="0f01c9660fe8ec670f01c5baf80c66b84a8daa8466efbafc0cedf030767a66f30f0967640f1c2666b93c08000066b8fd7f000066ba000000000f30f33ec148000cb800028ee0", 0x46}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2004cb], 0x0, 0x10202})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

3.376160411s ago: executing program 0:
sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000740)=ANY=[], 0x34}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1, 0x3, 0x261, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', r1}, 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000d80)={{r2, <r3=>0xffffffffffffffff}, &(0x7f0000000d00), &(0x7f0000000d40)='%+9llu \x00'}, 0x20)
bpf$MAP_UPDATE_ELEM(0x4, &(0x7f0000000440)={r3, &(0x7f0000000340), &(0x7f0000000400)=@tcp6}, 0x20)

2.943342288s ago: executing program 0:
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x2000480, &(0x7f0000004080), 0x1, 0x762, &(0x7f00000029c0)="$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")
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b200008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000900)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_loose}]}})
mknod$loop(&(0x7f0000000080)='./file0/bus\x00', 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
setresuid(0x0, 0xee00, 0x0)
llistxattr(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)

2.769804466s ago: executing program 1:
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f0000000180), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102400, 0x19000)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c)
recvmmsg(r1, &(0x7f0000008880), 0x45b, 0x44000102, 0x0)

2.592265473s ago: executing program 0:
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000280)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@errors_continue}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f0000000680)="$eJzs3c9rHFUcAPDvbJL+1qZQinqQQA9WajdN4o8KQutRtFjQe12SaSjZdEt2U5pYaHuwFy9SBBEL4h/g3WPxH/CvKGihSAl68BKZzWy7TbL5uXW3zucD0743M5s3b998335nZ5cNoLBGsn9KEa9GxDdJxOG2bYORbxxZ2W/p8Y3JbEliefmzP5NI8nWt/ZP8/4N55ZWI+PWriJOlte3WFxZnKtVqOpfXRxuzV0frC4unLs9WptPp9Mr4xMSZdybG33/v3a719c0Lf3//6f2Pznx9fOm7nx8euZvEuTiUb2vvxy7caq+MxEj+nAzFuVU7jnWhsX6S9PoA2JGBPM6HIpsDDsdAHvXA/9/NiFgGCioR/1BQrTygdW3fpevgF8ajD1cugNb2f3DlvZHY17w2OrCUPHNllF3vDneh/ayNX/64dzdbYpP3IW52oT2Allu3I+L04ODa+S/J57+dO91883hjq9so2usP9NL9LP95a738p/Qk/4l18p+D68TuTmwe/6WHXWimoyz/+2Dd/PfJ1DU8kNdeauZ8Q8mly9X0dES8HBEnYmhvVt/ofs6ZpQfLnba153/ZkrXfygXz43g4uPfZx0xVGpXd9Lndo9sRrz3Nf5NYM//va+a6q8c/ez4ubLGNY+m91ztt27z/7bqfAS//FPHGuuP/9I5WsvH9ydHm+TDaOivW+uvOsd86tb+9/ndfNv4HNu7/cNJ+v7a+/TZ+3PdP2mnbTs//PcnnzfKefN31SqMxNxaxJ/lk7frxp49t1Vv7Z/0/cXzj+W+9839/RHyxxf7fOXqn4679MP5T2xr/7RcefPzlD53a39r4v90sncjXbGX+2+oB7ua5AwAAAAAAgH5TiohDkZTKT8qlUrm88vmOo3GgVK3VGycv1eavTEXzu7LDMVRq3ek+3PZ5iLH887Ct+viq+kREHImIbwf2N+vlyVp1qtedBwAAAAAAAAAAAAAAAAAAgD5xsMP3/zO/D/T66IDnzk9+Q3FtGv/d+KUnoC95/YfiEv9QXOIfikv8Q3GJfygu8Q/FJf6huMQ/AAAAAAAAAAAAAAAAAAAAAAAAAAAAdNWF8+ezZXnp8Y3JrD51bWF+pnbt1FRanynPzk+WJ2tzV8vTtdp0NS1P1mY3+3vVWu3q2HjMXx9tpPXGaH1h8eJsbf5K4+Ll2cp0ejEd+k96BQAAAAAAAAAAAAAAAAAAAC+W+sLiTKVaTecUOhbORl8cxo4LyWajfDY/GXbUxGDvO6jwHAo9npgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoM2/AQAA///fKTPH")
chdir(&(0x7f0000000000)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
readv(0xffffffffffffffff, &(0x7f0000001f80)=[{0x0}, {0x0}, {0xffffffffffffffff}], 0x3)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)

2.451176456s ago: executing program 2:
syz_usb_connect(0x0, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="1e0100005c6b4408070a64006e00010203010902240001a82200000904000002ca74360009050303"], 0x0)
syz_mount_image$hfs(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x802, &(0x7f0000000200)=ANY=[@ANYBLOB="636f6465706167653d69736f383835392d312c696f636861727365743d69736f383835392d362c756d61736b3d30303030303030303030303030303030303030303030352c66696c655f756d61736b3d30303030303030303030303030303030303030303130302c756d61736b3d30313737373737373737373737373737373737373737332c009331112d80fe0197fb570b89bcbd54d424dd36484f3659918d4141bb8718d5a115229dbc37aa9bb406abe4cb67a3ccd5b65aa6196000bfe43d2fb51718b109d2fe98ec87258093b61780e71b4d4b2a077a1ec98e812a313195214ea5a5c96585"], 0x7, 0x2db, &(0x7f0000000800)="$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")

2.10400435s ago: executing program 3:
read$FUSE(0xffffffffffffffff, &(0x7f0000000180)={0x2020, 0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x2020)
timer_create(0x4, &(0x7f0000000000)={0x0, 0x5, 0x0, @tid=r0}, &(0x7f0000000040))
clock_gettime(0x0, &(0x7f0000000080))
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0x3, &(0x7f00000021c0)=ANY=[@ANYBLOB="180016a0baae000000000000000000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x0, 0xe40, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
r2 = socket(0x1e, 0x5, 0x0)
setsockopt$sock_int(r2, 0x1, 0x2e, &(0x7f0000000040)=0x3, 0x4)
r3 = epoll_create1(0x0)
listen(r2, 0x0)
mmap$KVM_VCPU(&(0x7f0000ffc000/0x1000)=nil, 0x930, 0x4, 0x4010, 0xffffffffffffffff, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000000)={0xa0179e12})
epoll_wait(r3, &(0x7f0000001080)=[{}], 0x1, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r4}, 0x0, &(0x7f00000002c0)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000002480)='syzkaller\x00', 0x46, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r6, 0x1, 0x25, &(0x7f0000000040)=0x63f8, 0x4)
bind$inet(r6, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900), 0x30}}, 0x0)
mkdir(0x0, 0x0)
chdir(0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xb, &(0x7f0000000440)=@framed={{}, [@printk]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmmsg(r6, &(0x7f0000007fc0), 0x800001d, 0x0)
recvmmsg(r6, &(0x7f0000000040), 0x291962b, 0x45833af92e4b39ff, 0x0)

1.896584372s ago: executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0x2, &(0x7f0000000000)=0x1a, 0x4)

1.862897148s ago: executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000001c030000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021e00209"], 0x364}}, 0x0)

1.702619823s ago: executing program 0:
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x44f, 0xb653, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0xff, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000280)={0x24, 0x0, 0x0, &(0x7f0000000200)={0x0, 0x22, 0x7, {[@local=@item_4={0x3, 0x2, 0xa, "34f5ac2b"}, @global=@item_012={0x1, 0x1, 0x0, '^'}]}}, 0x0}, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)

1.663587819s ago: executing program 3:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xb, 0x8, 0x10001, 0x9, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}, @call={0x85, 0x0, 0x0, 0x2a}]}, &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000a80)='ext4_writepages\x00', r1}, 0x10)
ioctl$TUNSETVNETLE(0xffffffffffffffff, 0x400454dc, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000680)={{r0}, &(0x7f0000000600), &(0x7f0000000640)}, 0x20)
write$cgroup_pid(r2, &(0x7f0000000980), 0x12)

1.515746602s ago: executing program 3:
mq_notify(0xffffffffffffffff, &(0x7f0000000480)={0x20000000, 0x800022, 0x2})

1.392041332s ago: executing program 3:
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20}, 0x1c)
listen(r0, 0x80080400)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000e5c000)={0x2, 0x4e20, @remote}, 0x10)
getsockopt$inet_int(r1, 0x10d, 0x95, &(0x7f0000000000), &(0x7f0000000080)=0x4)

1.27219239s ago: executing program 3:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="120100009e173610ef171e7206de0104000109021200010000000009040000000206"], 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_DRAIN(0xffffffffffffffff, 0x40084146, 0x40944f9c780000)
syz_open_dev$MSR(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x90)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000009c0)={0x84, &(0x7f0000000000)=ANY=[@ANYBLOB="000004"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

1.173185396s ago: executing program 1:
mkdir(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000480)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000002c0)='./file0\x00', 0x0)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
shutdown(r1, 0x1)
r2 = dup(r1)
r3 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
mount$9p_fd(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000040)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}})

1.08570411s ago: executing program 1:
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x2000480, &(0x7f0000004080), 0x1, 0x762, &(0x7f00000029c0)="$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")
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b200008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000900)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_loose}]}})
mknod$loop(&(0x7f0000000080)='./file0/bus\x00', 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)
setresuid(0x0, 0xee00, 0x0)
llistxattr(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)

800.509494ms ago: executing program 1:
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0xc8, 0x0, &(0x7f0000000540)="3b1c2fac82e71ea0f1bbe02f0ad1b15996fbfe43c3f08570e4620c27de4fb7a9ef938c50e54dc305e9a909460d81b23b4f044033e830cdbb39f254076857cd5cc0069622d0699f12c8bd517fd931d066ce8782807cc7e7e73177f9df90d50579d0de679d05fbb8228e8c137b7ec42ce70e7a1fbc2376ec04d3b407780bd5fd035b8f42de945fbdc9d057edc560fdf5a21b8d9ede02000000a9083e8c8829996faf0d5ac5a96fc90fc0160ac32a2d8f32f5ac932c9070eb225c1008dfd76567fa328c47cb9a167d04", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c0000001a000f"], 0x1c}}, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x4000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

618.173493ms ago: executing program 2:
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xe, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@p, {0x3, 0x0}, {}, {}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0xa}, {}, {0x85, 0x0, 0x0, 0x63}}]}, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

498.915382ms ago: executing program 2:
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000280)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@errors_continue}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f0000000680)="$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")
chdir(&(0x7f0000000000)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
readv(0xffffffffffffffff, &(0x7f0000001f80)=[{0x0}, {0x0}, {0xffffffffffffffff}], 0x3)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)

188.083531ms ago: executing program 1:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0)
write$vga_arbiter(r0, 0x0, 0x0)

50.412142ms ago: executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0)
r1 = socket(0xa, 0x6, 0x0)
getsockopt$inet6_mreq(r1, 0x10d, 0x6, 0x0, &(0x7f0000000040))

0s ago: executing program 2:
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000080)='./file0\x00', 0x810094, &(0x7f0000003780)=ANY=[@ANYBLOB="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", @ANYRESDEC, @ANYRES8], 0x6, 0x2d6, &(0x7f0000003940)="$eJzs3b9rJHUUAPA3m9nZVYvdwkoEB7SwOi7X2myQOxBTeWxxWmjw7kCyi3CBiD9wvUrsbCz9CwTBP8TGzlKwFew84WBkZmeyP27Y20g24uXzKZKX+b438+ZHkmny8sHL0+O7edx/+MVv0e8n0Rn1Ih4lMYxONL6KFaNvAwD4P3tUFPFnMdey/Os3G2r7O+wLANidp/z+r6XVxztlxk+X1xsAsBu377z79sHh4c138rwft6Zfn46TiCg/z9cP7sdHMYl7cT0G8TiielHoRvW2UIa3iqKYpXlpGK9NZ6fjsnL6/s/1/g/+iKjq92MQw2rT2dtGVf/W4c39fG6pflb28Xx9/FFZfyMG8eJZ8Ur9jZb6GGfx+qtL/V+LQfzyYXwck7hbNbGo/3I/z98svvvr8/fK9sr6ZHY67lV5C8Vec/DZJd8jAAAAAAAAAAAAAAAAAAAAAACePdfq2Tm9qOb3lJvq+Tt7j8svupE3hqvzeeb1SbOjxXyg6BRFMSvi+2a+zvU8z4s6cVGfxktpPVgQAAAAAAAAAAAAAAAAAAAArriTTz87PppM7j24kKCZBpBGxN+3I/7tfkZLW16Jzcm9+phHk0mnDldz0uUtsdfkJBEb2yhP4oIuy9OC557ouQ5++LG1qjyjkzTalvplkLUuNUG3/VjnDD7pzq9ja07zdB0fJe3XsHfWYb+8cbF+47JoP3o31rZkzf1cT24exe1OJ2tdGpz7smQvVMFsQ04km74v3vh95XSSWEvOqokbreXdOmi7GvNnY6vnOfrz8id/ViSmdQAAAAAAAAAAAAAAAAAAwE4t/vq3ZfHhxtJO0dtZWwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwqRb//3+bIF0t3qIqiwcn/9W5AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcHX8EwAA///aiVC9")
creat(&(0x7f0000000200)='./file0\x00', 0x0)

kernel console output (not intermixed with test programs):

 type 2 family 0 port 6081 - 0
[  105.715451][ T3945] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  105.748925][ T3945] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  105.780453][ T3945] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  105.812123][ T3575] EXT4-fs (loop0): unmounting filesystem.
[  106.105024][ T4087] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.132013][ T4087] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.010488][ T3864] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  107.039231][ T3864] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.068339][ T3735] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  107.085271][ T4122] loop3: detected capacity change from 0 to 32768
[  107.118348][ T3614] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  107.127031][ T4122] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz-executor.3 (4122)
[  107.159689][ T4142] loop2: detected capacity change from 0 to 2048
[  107.231845][ T4142] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  107.257327][ T4122] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  107.289729][ T4150] capability: warning: `syz-executor.0' uses 32-bit capabilities (legacy support in use)
[  107.315489][ T4122] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  107.344238][ T4122] BTRFS info (device loop3): using free space tree
[  107.459987][ T3579] Bluetooth: hci1: ISO packet too small
[  107.507937][ T4168] loop2: detected capacity change from 0 to 1024
[  107.525467][ T4168] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  107.605037][ T4122] BTRFS info (device loop3): enabling ssd optimizations
[  107.658828][ T3912] EXT4-fs (loop2): unmounting filesystem.
[  107.673975][ T3735] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  107.702730][   T26] audit: type=1800 audit(1718732890.576:83): pid=4122 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file2" dev="loop3" ino=261 res=0 errno=0
[  107.933961][  T152] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  108.016545][ T3578] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  108.054836][ T3735] usb 2-1: config 0 has an invalid interface number: 244 but max is 0
[  108.073418][ T3735] usb 2-1: config 0 has no interface number 0
[  108.079791][ T3735] usb 2-1: New USB device found, idVendor=0af7, idProduct=0101, bcdDevice=2d.62
[  108.103835][ T3735] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  108.141531][ T3735] usb 2-1: config 0 descriptor??
[  108.214876][ T3735] flexcop_usb: set interface failed.
[  108.233455][ T3735] b2c2_flexcop_usb: probe of 2-1:0.244 failed with error -22
[  108.250194][ T4146] loop4: detected capacity change from 0 to 32768
[  108.294660][ T4146] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz-executor.4 (4146)
[  108.304268][  T152] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  108.322473][ T4146] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  108.343033][  T152] usb 1-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.09
[  108.343109][ T4146] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  108.372848][  T152] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  108.382454][ T4146] BTRFS info (device loop4): using free space tree
[  108.392738][  T152] usb 1-1: config 0 descriptor??
[  108.428046][ T3735] usb 2-1: USB disconnect, device number 3
[  108.446232][  T152] go7007: probe of 1-1:0.0 failed with error -12
[  108.519481][ T4146] BTRFS info (device loop4): enabling ssd optimizations
[  108.537379][ T4180] loop2: detected capacity change from 0 to 32768
[  108.549259][ T4180] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz-executor.2 (4180)
[  108.572728][ T4180] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  108.583738][ T4180] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  108.600788][ T4180] BTRFS info (device loop2): enabling auto defrag
[  108.609350][ T4180] BTRFS info (device loop2): doing ref verification
[  108.616885][ T4180] BTRFS info (device loop2): doing ref verification
[  108.625670][ T4180] BTRFS info (device loop2): force clearing of disk cache
[  108.627877][ T3852] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  108.632841][ T4180] BTRFS info (device loop2): setting nodatacow, compression disabled
[  108.651841][ T4180] BTRFS info (device loop2): doing ref verification
[  108.658738][ T4180] BTRFS info (device loop2): using free space tree
[  108.661751][ T3735] usb 1-1: USB disconnect, device number 7
[  108.773957][ T4184] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  108.778286][ T4180] BTRFS info (device loop2): enabling ssd optimizations
[  108.796314][ T4180] BTRFS info (device loop2): rebuilding free space tree
[  108.918990][ T3912] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  109.019621][ T4184] usb 4-1: Using ep0 maxpacket: 32
[  109.164317][ T4184] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  109.197830][ T4184] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  109.234094][ T4184] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  109.263672][ T4184] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  109.279153][ T4236] loop1: detected capacity change from 0 to 1024
[  109.296906][ T4184] usb 4-1: config 0 descriptor??
[  109.302814][   T26] audit: type=1800 audit(1718732892.156:84): pid=4238 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1963 res=0 errno=0
[  109.324170][ T4196] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  109.345309][ T4184] hub 4-1:0.0: USB hub found
[  109.356924][   T26] audit: type=1804 audit(1718732892.166:85): pid=4238 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3119310782/syzkaller.CTSpiF/48/bus" dev="sda1" ino=1963 res=1 errno=0
[  109.386748][   T26] audit: type=1804 audit(1718732892.166:86): pid=4238 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir3119310782/syzkaller.CTSpiF/48/bus" dev="sda1" ino=1963 res=1 errno=0
[  109.557166][ T4184] hub 4-1:0.0: config failed, hub doesn't have any ports! (err -19)
[  109.609477][ T4247] loop2: detected capacity change from 0 to 1024
[  109.643585][   T34] hfsplus: b-tree write err: -5, ino 4
[  109.653007][ T4247] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  109.801590][ T3912] EXT4-fs (loop2): unmounting filesystem.
[  109.867715][ T4184] usbhid 4-1:0.0: can't add hid device: -71
[  109.879538][ T4184] usbhid: probe of 4-1:0.0 failed with error -71
[  109.922500][ T4252] netlink: 'syz-executor.1': attribute type 10 has an invalid length.
[  109.953151][ T4245] loop0: detected capacity change from 0 to 32768
[  109.961133][ T4245] XFS: noikeep mount option is deprecated.
[  109.974893][ T4184] usb 4-1: USB disconnect, device number 7
[  110.033703][ T4252] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  110.051224][ T4245] XFS (loop0): Mounting V5 Filesystem
[  110.172241][ T4245] XFS (loop0): Ending clean mount
[  110.190154][ T4245] XFS (loop0): Quotacheck needed: Please wait.
[  110.244560][ T4245] XFS (loop0): Quotacheck: Done.
[  110.342904][ T3575] XFS (loop0): Unmounting Filesystem
[  110.784086][ T4229] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  110.949738][ T4265] loop4: detected capacity change from 0 to 32768
[  110.981891][ T4265] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 scanned by syz-executor.4 (4265)
[  111.013586][ T4284] loop1: detected capacity change from 0 to 1024
[  111.039673][ T4265] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  111.062143][ T4265] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  111.093891][ T4265] BTRFS info (device loop4): enabling auto defrag
[  111.100430][ T4265] BTRFS info (device loop4): doing ref verification
[  111.118084][ T4270] loop2: detected capacity change from 0 to 32768
[  111.128416][ T4265] BTRFS info (device loop4): doing ref verification
[  111.135356][ T4265] BTRFS info (device loop4): force clearing of disk cache
[  111.142520][ T4265] BTRFS info (device loop4): setting nodatacow, compression disabled
[  111.151945][ T4270] XFS: ikeep mount option is deprecated.
[  111.161798][ T4265] BTRFS info (device loop4): doing ref verification
[  111.168769][ T4229] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  111.182484][ T4265] BTRFS info (device loop4): using free space tree
[  111.192299][ T4229] usb 4-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.09
[  111.202411][ T4229] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  111.213217][ T4229] usb 4-1: config 0 descriptor??
[  111.221091][ T4270] XFS (loop2): Mounting V5 Filesystem
[  111.232803][ T3864] hfsplus: b-tree write err: -5, ino 4
[  111.271811][ T4229] go7007: probe of 4-1:0.0 failed with error -12
[  111.305189][ T4270] XFS (loop2): Ending clean mount
[  111.312426][ T4270] XFS (loop2): Quotacheck needed: Please wait.
[  111.373152][ T4270] XFS (loop2): Quotacheck: Done.
[  111.378438][ T4316] Bluetooth: MGMT ver 1.22
[  111.388718][ T4265] BTRFS info (device loop4): enabling ssd optimizations
[  111.405670][ T4265] BTRFS info (device loop4): rebuilding free space tree
[  111.440449][ T3912] XFS (loop2): Unmounting Filesystem
[  111.465505][ T4229] usb 4-1: USB disconnect, device number 8
[  111.544817][ T3852] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  111.635403][ T3612] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  112.139590][ T4321] loop0: detected capacity change from 0 to 32768
[  112.161505][ T4321] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz-executor.0 (4321)
[  112.180085][ T3612] usb 2-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  112.203383][ T3612] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  112.221787][ T3612] usb 2-1: Product: syz
[  112.238833][ T3612] usb 2-1: Manufacturer: syz
[  112.243617][ T3612] usb 2-1: SerialNumber: syz
[  112.257907][ T4321] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  112.277949][ T3612] usb 2-1: config 0 descriptor??
[  112.283338][ T4321] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  112.301210][ T4321] BTRFS info (device loop0): using free space tree
[  112.335294][ T3612] ch341 2-1:0.0: ch341-uart converter detected
[  112.522763][ T4321] BTRFS info (device loop0): enabling ssd optimizations
[  112.583050][   T26] audit: type=1800 audit(1718732895.446:87): pid=4321 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file2" dev="loop0" ino=261 res=0 errno=0
[  112.708389][ T4325] loop4: detected capacity change from 0 to 32768
[  112.749171][ T4325] XFS: noikeep mount option is deprecated.
[  112.774894][ T4334] loop3: detected capacity change from 0 to 32768
[  112.784530][ T4334] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz-executor.3 (4334)
[  112.790527][ T3575] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  112.817482][ T4334] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  112.823221][ T4325] XFS (loop4): Mounting V5 Filesystem
[  112.851491][ T4334] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  112.863937][ T4334] BTRFS info (device loop3): turning on flush-on-commit
[  112.874627][ T4334] BTRFS info (device loop3): turning off barriers
[  112.882445][ T4334] BTRFS info (device loop3): doing ref verification
[  113.296032][ T4334] BTRFS info (device loop3): force clearing of disk cache
[  113.504170][ T3612] usb 2-1: failed to send control message: -71
[  113.513540][ T3612] ch341-uart: probe of ttyUSB0 failed with error -71
[  113.551656][ T3612] usb 2-1: USB disconnect, device number 4
[  113.561734][ T4334] BTRFS info (device loop3): enabling disk space caching
[  113.573338][ T3612] ch341 2-1:0.0: device disconnected
[  113.582124][ T4334] BTRFS info (device loop3): turning on sync discard
[  113.635379][ T4334] BTRFS info (device loop3): using default commit interval 30s
[  113.643009][ T4334] BTRFS info (device loop3): disk space caching is enabled
[  113.683400][ T4325] XFS (loop4): Ending clean mount
[  113.697788][ T4325] XFS (loop4): Quotacheck needed: Please wait.
[  113.735269][ T4325] XFS (loop4): Quotacheck: Done.
[  113.830862][ T3577] Bluetooth: hci2: Unknown advertising packet type: 0x8500
[  113.852401][ T3852] XFS (loop4): Unmounting Filesystem
[  113.902159][ T4334] BTRFS info (device loop3): enabling ssd optimizations
[  113.935385][ T4334] BTRFS info (device loop3): rebuilding free space tree
[  114.084159][ T4334] BTRFS info (device loop3): disabling free space tree
[  114.091259][ T4334] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  114.123924][ T4334] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  114.370704][ T3578] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  114.464089][ T4370] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  115.325664][ T4370] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  115.350000][ T4370] usb 2-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.09
[  115.375686][ T4370] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  115.402958][ T4370] usb 2-1: config 0 descriptor??
[  115.462266][ T4370] go7007: probe of 2-1:0.0 failed with error -12
[  115.492750][ T4398] loop2: detected capacity change from 0 to 32768
[  115.501333][ T4398] XFS: ikeep mount option is deprecated.
[  115.590922][ T4398] XFS (loop2): Mounting V5 Filesystem
[  115.700097][ T4427] usb 2-1: USB disconnect, device number 5
[  115.724899][ T4398] XFS (loop2): Ending clean mount
[  115.739119][ T4398] XFS (loop2): Quotacheck needed: Please wait.
[  115.789165][ T4398] XFS (loop2): Quotacheck: Done.
[  115.791650][ T4409] loop4: detected capacity change from 0 to 32768
[  115.808359][ T4409] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz-executor.4 (4409)
[  115.816697][ T4434] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  115.824049][ T4424] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  115.847306][ T4409] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  115.867162][ T4409] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  115.879263][ T4409] BTRFS info (device loop4): using free space tree
[  115.891863][ T3912] XFS (loop2): Unmounting Filesystem
[  115.994614][ T4409] BTRFS info (device loop4): enabling ssd optimizations
[  116.022070][   T26] audit: type=1800 audit(1718732898.886:88): pid=4409 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="file2" dev="loop4" ino=261 res=0 errno=0
[  116.083851][ T4424] usb 1-1: Using ep0 maxpacket: 8
[  116.102691][ T3852] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  116.194778][ T3612] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  116.204141][ T4424] usb 1-1: config index 0 descriptor too short (expected 1307, got 27)
[  116.212765][ T4424] usb 1-1: config 0 has an invalid interface number: 0 but max is -1
[  116.247076][ T4424] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  116.293922][ T4424] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 0
[  116.355271][ T4460] loop1: detected capacity change from 0 to 1024
[  116.379534][ T4460] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  116.401613][   T26] audit: type=1800 audit(1718732899.266:89): pid=4460 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file1" dev="loop1" ino=15 res=0 errno=0
[  116.444087][ T3612] usb 4-1: Using ep0 maxpacket: 8
[  116.454182][ T4424] usb 1-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[  116.464512][ T4424] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  116.471591][ T3945] EXT4-fs (loop1): unmounting filesystem.
[  116.472550][ T4424] usb 1-1: Product: syz
[  116.482980][ T4424] usb 1-1: Manufacturer: syz
[  116.487737][ T4424] usb 1-1: SerialNumber: syz
[  116.494803][ T4424] usb 1-1: config 0 descriptor??
[  116.544497][ T4424] hub 1-1:0.0: bad descriptor, ignoring hub
[  116.551614][ T4424] hub: probe of 1-1:0.0 failed with error -5
[  116.584214][ T3612] usb 4-1: New USB device found, idVendor=06cd, idProduct=011c, bcdDevice=d7.cc
[  116.603571][ T3612] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  116.624395][ T3612] usb 4-1: config 0 descriptor??
[  116.644125][ T3619] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  116.665567][ T3612] keyspan 4-1:0.0: Keyspan 1 port adapter converter detected
[  116.673189][ T3612] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 84
[  116.704580][ T3612] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 81
[  116.732748][ T3612] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 82
[  116.747839][ T3612] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 1
[  116.760318][ T3612] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 2
[  116.771546][ T3612] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 83
[  116.781693][ T3612] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 3
[  116.802552][ T3612] usb 4-1: Keyspan 1 port adapter converter now attached to ttyUSB0
[  116.868298][ T3612] usb 4-1: USB disconnect, device number 9
[  116.884790][ T3612] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0
[  116.894121][ T4424] usb 1-1: USB disconnect, device number 8
[  116.904413][ T3612] keyspan 4-1:0.0: device disconnected
[  117.163622][ T4470] loop1: detected capacity change from 0 to 32768
[  117.174821][ T3619] usb 3-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  117.190927][ T3619] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  117.202492][ T4470] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz-executor.1 (4470)
[  117.220955][ T3619] usb 3-1: Product: syz
[  117.225268][ T3619] usb 3-1: Manufacturer: syz
[  117.229915][ T3619] usb 3-1: SerialNumber: syz
[  117.245651][ T3619] usb 3-1: config 0 descriptor??
[  117.253309][ T4470] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  117.270505][ T4470] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  117.279338][ T4470] BTRFS info (device loop1): turning on flush-on-commit
[  117.287646][ T3619] ch341 3-1:0.0: ch341-uart converter detected
[  117.303940][ T4470] BTRFS info (device loop1): turning off barriers
[  117.312649][ T4470] BTRFS info (device loop1): doing ref verification
[  117.319482][ T4470] BTRFS info (device loop1): force clearing of disk cache
[  117.326893][ T4470] BTRFS info (device loop1): enabling disk space caching
[  117.334155][ T4470] BTRFS info (device loop1): turning on sync discard
[  117.340933][ T4470] BTRFS info (device loop1): using default commit interval 30s
[  117.359460][ T4470] BTRFS info (device loop1): disk space caching is enabled
[  117.384192][ T4475] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[  117.536654][ T4470] BTRFS info (device loop1): enabling ssd optimizations
[  117.556555][ T4470] BTRFS info (device loop1): rebuilding free space tree
[  117.598905][ T4470] BTRFS info (device loop1): disabling free space tree
[  117.610417][ T4470] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  117.621464][ T4470] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  117.725803][ T3945] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  117.759682][   T26] audit: type=1326 audit(1718732900.626:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4503 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd85587cf29 code=0x7ffc0000
[  117.810787][   T26] audit: type=1326 audit(1718732900.626:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4503 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd85587cf29 code=0x7ffc0000
[  117.969042][ T4507] loop0: detected capacity change from 0 to 1024
[  117.999167][ T4509] syz-executor.4[4509] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  117.999348][ T4509] syz-executor.4[4509] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  118.023288][   T26] audit: type=1326 audit(1718732900.626:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4503 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd85587cf29 code=0x7ffc0000
[  118.080901][ T4507] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  118.134090][ T3619] usb 3-1: failed to send control message: -71
[  118.155059][ T3619] ch341-uart: probe of ttyUSB0 failed with error -71
[  118.192197][ T3619] usb 3-1: USB disconnect, device number 3
[  118.210244][   T26] audit: type=1326 audit(1718732900.626:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4503 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd85587cf29 code=0x7ffc0000
[  118.244124][ T3619] ch341 3-1:0.0: device disconnected
[  118.257149][   T26] audit: type=1326 audit(1718732900.656:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4503 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd85587cf29 code=0x7ffc0000
[  118.282181][ T3575] EXT4-fs (loop0): unmounting filesystem.
[  118.288799][   T26] audit: type=1326 audit(1718732900.656:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4503 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd85587a6a7 code=0x7ffc0000
[  118.381266][   T26] audit: type=1326 audit(1718732900.656:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4503 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd855840379 code=0x7ffc0000
[  118.466740][   T26] audit: type=1326 audit(1718732900.656:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4503 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7fd85587cf29 code=0x7ffc0000
[  118.499446][ T4520] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  118.700658][ T4513] loop1: detected capacity change from 0 to 32768
[  118.855955][ T4513] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz-executor.1 (4513)
[  119.489116][ T4513] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  119.519659][ T4538] bridge0: port 2(bridge_slave_1) entered disabled state
[  119.524916][ T4513] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  119.569308][ T4513] BTRFS info (device loop1): using free space tree
[  119.733963][ T4513] BTRFS info (device loop1): enabling ssd optimizations
[  119.763247][ T4530] loop2: detected capacity change from 0 to 32768
[  119.773733][ T4530] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz-executor.2 (4530)
[  119.809153][ T4530] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  119.819026][ T3945] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  119.819548][ T4530] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  119.841259][ T4530] BTRFS info (device loop2): turning on flush-on-commit
[  119.848568][ T4530] BTRFS info (device loop2): turning off barriers
[  119.855362][ T4530] BTRFS info (device loop2): doing ref verification
[  119.862027][ T4530] BTRFS info (device loop2): force clearing of disk cache
[  119.870648][ T4530] BTRFS info (device loop2): enabling disk space caching
[  119.877813][ T4530] BTRFS info (device loop2): turning on sync discard
[  119.884916][ T4530] BTRFS info (device loop2): using default commit interval 30s
[  119.892730][ T4530] BTRFS info (device loop2): disk space caching is enabled
[  119.990889][ T4530] BTRFS info (device loop2): enabling ssd optimizations
[  120.005373][ T4530] BTRFS info (device loop2): rebuilding free space tree
[  120.027958][ T4530] BTRFS info (device loop2): disabling free space tree
[  120.042436][ T4530] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  120.052237][ T4530] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  120.108557][ T3912] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  126.972989][ T4576] loop2: detected capacity change from 0 to 128
[  127.032871][ T4576] FAT-fs (loop2): Directory bread(block 160) failed
[  127.054745][ T4576] FAT-fs (loop2): Directory bread(block 161) failed
[  127.061529][ T4576] FAT-fs (loop2): Directory bread(block 162) failed
[  127.104164][ T4576] FAT-fs (loop2): Directory bread(block 163) failed
[  127.122818][ T4576] FAT-fs (loop2): Directory bread(block 164) failed
[  127.130529][ T4588] tipc: Failed to obtain node identity
[  127.137518][ T4588] tipc: Enabling of bearer <ib:team0> rejected, failed to enable media
[  127.146096][ T4576] FAT-fs (loop2): Directory bread(block 165) failed
[  127.153125][ T4576] FAT-fs (loop2): Directory bread(block 166) failed
[  127.175796][ T4576] FAT-fs (loop2): Directory bread(block 167) failed
[  127.206680][ T4576] FAT-fs (loop2): Directory bread(block 160) failed
[  127.237443][ T4576] FAT-fs (loop2): Directory bread(block 161) failed
[  127.619507][ T4223] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  127.658857][ T4220] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  127.879618][ T4223] usb 5-1: Using ep0 maxpacket: 8
[  127.923221][ T4599] loop3: detected capacity change from 0 to 32768
[  127.935432][ T4599] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz-executor.3 (4599)
[  127.943434][ T4600] loop1: detected capacity change from 0 to 32768
[  127.958961][ T4599] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  127.969760][ T4599] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  127.969966][ T4600] XFS: noikeep mount option is deprecated.
[  127.978736][ T4599] BTRFS info (device loop3): turning on flush-on-commit
[  127.978812][ T4599] BTRFS info (device loop3): turning off barriers
[  127.978838][ T4599] BTRFS info (device loop3): doing ref verification
[  127.978862][ T4599] BTRFS info (device loop3): force clearing of disk cache
[  127.978887][ T4599] BTRFS info (device loop3): enabling disk space caching
[  127.978906][ T4599] BTRFS info (device loop3): turning on sync discard
[  127.978946][ T4599] BTRFS info (device loop3): using default commit interval 30s
[  127.978966][ T4599] BTRFS info (device loop3): disk space caching is enabled
[  128.004271][ T4223] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  128.052201][ T4220] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  128.063627][ T4223] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[  128.072961][ T4223] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  128.084511][ T4223] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  128.095783][ T4223] usb 5-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  128.103049][ T4600] XFS (loop1): Mounting V5 Filesystem
[  128.105131][ T4223] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  128.154899][ T4223] hub 5-1:1.0: bad descriptor, ignoring hub
[  128.160912][ T4223] hub: probe of 5-1:1.0 failed with error -5
[  128.172995][ T4223] cdc_wdm 5-1:1.0: skipping garbage
[  128.184041][ T4223] cdc_wdm 5-1:1.0: skipping garbage
[  128.189231][ T4600] XFS (loop1): Ending clean mount
[  128.201262][ T4223] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  128.205398][ T4600] XFS (loop1): Quotacheck needed: Please wait.
[  128.207602][ T4223] cdc_wdm 5-1:1.0: Unknown control protocol
[  128.214098][ T4599] BTRFS info (device loop3): enabling ssd optimizations
[  128.224273][ T4220] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  128.247642][ T4220] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  128.257221][ T4220] usb 3-1: Product: syz
[  128.261434][ T4220] usb 3-1: Manufacturer: syz
[  128.266604][ T4599] BTRFS info (device loop3): rebuilding free space tree
[  128.285679][ T4220] usb 3-1: SerialNumber: syz
[  128.293477][ T4599] BTRFS info (device loop3): disabling free space tree
[  128.323019][ T4600] XFS (loop1): Quotacheck: Done.
[  128.330073][ T4599] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  128.340489][ T4599] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  128.390665][ T3945] XFS (loop1): Unmounting Filesystem
[  128.484532][ T4223] usb 5-1: USB disconnect, device number 4
[  128.512582][ T3578] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  128.569201][ T4602] loop0: detected capacity change from 0 to 32768
[  128.678550][ T4602] gfs2: fsid=nobarrier: Trying to join cluster "lock_dlm", "nobarrier"
[  128.718485][ T4602] gfs2: fsid=nobarrier: no fsname found
[  128.873700][ T4634] loop3: detected capacity change from 0 to 256
[  128.910478][ T4634] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  129.044614][ T4634] loop3: detected capacity change from 256 to 0
[  129.068680][ T3740] loop: Write error at byte offset 9223372036854858239, length 512.
[  129.094190][    C1] I/O error, dev loop3, sector 161 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2
[  129.103910][    C1] Buffer I/O error on dev loop3, logical block 161, lost sync page write
[  129.137661][    C1] I/O error, dev loop3, sector 161 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  129.160146][ T4645] loop0: detected capacity change from 0 to 128
[  129.167821][    C1] I/O error, dev loop3, sector 161 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  129.210444][    C1] I/O error, dev loop3, sector 161 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  129.221230][    C1] I/O error, dev loop3, sector 161 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  129.246952][ T3740] loop: Write error at byte offset 9223372036854857727, length 512.
[  129.264878][    C1] I/O error, dev loop3, sector 160 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2
[  129.274580][    C1] Buffer I/O error on dev loop3, logical block 160, lost sync page write
[  129.284348][    C1] I/O error, dev loop3, sector 160 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  129.293938][ T3578] exFAT-fs (loop3): failed to exfat_remove_entries : err(-5)
[  129.321553][ T3613] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  129.349089][ T3613] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  129.359291][ T4652] loop4: detected capacity change from 0 to 512
[  129.370817][ T3613] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  129.413223][   T26] kauditd_printk_skb: 4 callbacks suppressed
[  129.413240][   T26] audit: type=1326 audit(1718732912.276:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4648 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9c5967cf29 code=0x0
[  129.714064][ T4220] cdc_ncm 3-1:1.0: MAC-Address: 42:42:42:42:42:42
[  129.724409][ T3740] loop: Write error at byte offset 9223372036854775807, length 512.
[  129.732565][    C0] I/O error, dev loop3, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2
[  129.742150][    C0] I/O error, dev loop3, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2
[  129.752168][    C0] Buffer I/O error on dev loop3, logical block 0, lost sync page write
[  129.760687][ T4220] cdc_ncm 3-1:1.0: setting tx_max = 184
[  129.806884][ T3577] Bluetooth: hci4: SCO packet for unknown connection handle 0
[  129.837554][ T4220] cdc_ncm 3-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.2-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[  129.908705][   T56] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  129.954025][   T27] usb 3-1: USB disconnect, device number 4
[  129.972003][   T27] cdc_ncm 3-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.2-1, CDC NCM (NO ZLP)
[  130.029492][ T4662] device syzkaller0 entered promiscuous mode
[  130.126770][   T56] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.295472][   T56] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.412584][   T56] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.493468][ T4668] loop4: detected capacity change from 0 to 256
[  130.573057][ T4668] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  130.624263][ T3579] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  130.639828][ T3579] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  130.650741][ T3579] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  130.666276][ T3585] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  130.675007][ T3579] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  130.700570][ T3585] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  130.786690][ T4676] loop2: detected capacity change from 0 to 2048
[  130.799219][ T4676] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=18576, location=18576
[  130.812856][ T4676] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  131.909864][ T4686] netlink: 'syz-executor.4': attribute type 10 has an invalid length.
[  131.963578][ T4686] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  132.176234][ T4671] chnl_net:caif_netlink_parms(): no params data found
[  132.192181][ T4666] loop1: detected capacity change from 0 to 32768
[  132.228859][ T4666] gfs2: fsid=nobarrier: Trying to join cluster "lock_dlm", "nobarrier"
[  132.245924][ T4666] gfs2: fsid=nobarrier: no fsname found
[  132.381244][ T4671] bridge0: port 1(bridge_slave_0) entered blocking state
[  132.391201][ T4671] bridge0: port 1(bridge_slave_0) entered disabled state
[  132.403319][ T4671] device bridge_slave_0 entered promiscuous mode
[  132.418226][ T4671] bridge0: port 2(bridge_slave_1) entered blocking state
[  132.427834][ T4671] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.441900][ T4671] device bridge_slave_1 entered promiscuous mode
[  132.476225][ T4697] program syz-executor.2 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  132.552216][ T4671] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  132.575480][ T4671] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  132.592143][ T3577] Bluetooth: hci0: SCO packet for unknown connection handle 0
[  132.733358][ T4671] team0: Port device team_slave_0 added
[  132.779859][ T4671] team0: Port device team_slave_1 added
[  132.793794][ T1255] ieee802154 phy0 wpan0: encryption failed: -22
[  132.794619][ T3577] Bluetooth: hci3: command tx timeout
[  132.796118][ T1255] ieee802154 phy1 wpan1: encryption failed: -22
[  132.873957][ T4220] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  132.881695][ T4705] device syzkaller0 entered promiscuous mode
[  132.903631][   T56] device hsr_slave_0 left promiscuous mode
[  132.916173][   T56] device hsr_slave_1 left promiscuous mode
[  132.924201][ T4715] syz-executor.1 uses obsolete (PF_INET,SOCK_PACKET)
[  132.931427][   T56] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  132.939627][   T56] batman_adv: batadv0: Removing interface: batadv_slave_0
[  132.950195][   T56] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  132.957905][   T56] batman_adv: batadv0: Removing interface: batadv_slave_1
[  132.967671][   T56] device bridge_slave_1 left promiscuous mode
[  132.979137][   T56] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.990972][   T56] device bridge_slave_0 left promiscuous mode
[  133.008955][   T56] bridge0: port 1(bridge_slave_0) entered disabled state
[  133.027557][   T56] device veth1_macvtap left promiscuous mode
[  133.043290][   T56] device veth0_macvtap left promiscuous mode
[  133.053197][   T56] device veth1_vlan left promiscuous mode
[  133.059714][   T56] device veth0_vlan left promiscuous mode
[  133.133876][ T4220] usb 3-1: Using ep0 maxpacket: 32
[  133.282238][   T56] team0 (unregistering): Port device team_slave_1 removed
[  133.299600][   T56] team0 (unregistering): Port device team_slave_0 removed
[  133.312765][   T56] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  133.328808][   T56] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  133.405524][   T56] bond0 (unregistering): Released all slaves
[  133.414211][ T4220] usb 3-1: New USB device found, idVendor=0421, idProduct=0223, bcdDevice=b1.bd
[  133.423421][ T4220] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  133.444936][ T4220] usb 3-1: Product: syz
[  133.449784][ T4220] usb 3-1: Manufacturer: syz
[  133.454509][ T4220] usb 3-1: SerialNumber: syz
[  133.461591][ T4220] usb 3-1: config 0 descriptor??
[  133.492063][ T4671] batman_adv: batadv0: Adding interface: batadv_slave_0
[  133.499869][ T4671] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  133.527645][ T4671] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  133.538374][ T4220] usb 3-1: bad CDC descriptors
[  133.544905][ T4220] usb 3-1: bad CDC descriptors
[  133.550106][ T4220] cdc_acm 3-1:0.0: Zero length descriptor references
[  133.562380][ T4671] batman_adv: batadv0: Adding interface: batadv_slave_1
[  133.569607][ T4220] cdc_acm: probe of 3-1:0.0 failed with error -22
[  133.577910][ T4671] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  133.613289][ T4671] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  133.729746][   T27] usb 3-1: USB disconnect, device number 5
[  133.775260][ T4722] loop0: detected capacity change from 0 to 2048
[  133.783361][ T4722] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=18576, location=18576
[  133.786804][ T4671] device hsr_slave_0 entered promiscuous mode
[  133.803259][ T4722] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  133.829142][ T4671] device hsr_slave_1 entered promiscuous mode
[  133.920224][ T4724] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  134.912682][ T3585] Bluetooth: hci3: command tx timeout
[  134.995351][ T4735] program syz-executor.0 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  135.126480][ T3585] Bluetooth: hci4: SCO packet for unknown connection handle 0
[  135.622644][ T4757] loop1: detected capacity change from 0 to 2048
[  135.660222][ T4760] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  135.675429][ T4760] infiniband Syz1: RDMA CMA: cma_listen_on_dev, error -98
[  135.677586][ T4762] syz-executor.2 (pid 4762) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  135.705383][ T4757] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=18576, location=18576
[  135.718508][ T4671] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  135.736785][ T4757] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  135.778672][ T4671] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  135.795613][ T4671] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  135.820757][ T4671] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  136.638716][ T4671] 8021q: adding VLAN 0 to HW filter on device bond0
[  136.874904][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  136.883482][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  136.935421][ T4779] program syz-executor.2 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  136.936138][ T4671] 8021q: adding VLAN 0 to HW filter on device team0
[  136.951870][ T3585] Bluetooth: hci3: command tx timeout
[  136.996164][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  137.048382][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  137.081735][   T27] bridge0: port 1(bridge_slave_0) entered blocking state
[  137.088967][   T27] bridge0: port 1(bridge_slave_0) entered forwarding state
[  137.112792][   T26] audit: type=1800 audit(1718732919.976:103): pid=4788 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1959 res=0 errno=0
[  137.116338][ T4784] loop0: detected capacity change from 0 to 2048
[  137.185429][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  137.201779][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  137.229192][ T3585] Bluetooth: hci0: SCO packet for unknown connection handle 0
[  137.241681][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  137.305021][ T4784] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  137.341516][ T3680] bridge0: port 2(bridge_slave_1) entered blocking state
[  137.348809][ T3680] bridge0: port 2(bridge_slave_1) entered forwarding state
[  137.421443][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  137.463073][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  137.480778][ T4802] syz-executor.2[4802] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  137.480938][ T4802] syz-executor.2[4802] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  137.558503][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  137.582631][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  137.592081][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  137.619192][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  137.643695][ T4671] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  137.683657][ T4671] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  137.726012][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  137.742106][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  137.765967][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  137.782097][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  137.801434][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  137.823196][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  137.826659][ T3575] EXT4-fs (loop0): unmounting filesystem.
[  138.150467][ T4815] loop0: detected capacity change from 0 to 2048
[  138.166615][ T4815] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=18576, location=18576
[  138.188527][ T4815] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  138.229832][ T4822] infiniband Syz1: RDMA CMA: cma_listen_on_dev, error -98
[  138.526816][ T4828] program syz-executor.4 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  139.320618][ T3585] Bluetooth: hci3: command tx timeout
[  139.399125][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  139.429844][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  139.544731][ T4836] device bridge0 entered promiscuous mode
[  139.630267][ T4836] device bridge0 left promiscuous mode
[  139.765627][ T4671] 8021q: adding VLAN 0 to HW filter on device batadv0
[  140.190219][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  140.278178][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  140.618294][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  140.647564][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  140.700805][ T4671] device veth0_vlan entered promiscuous mode
[  140.757738][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  140.776988][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  140.814736][ T4852] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[  140.838429][ T4671] device veth1_vlan entered promiscuous mode
[  140.848990][ T4855] loop1: detected capacity change from 0 to 256
[  140.942324][ T4855] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  140.962263][ T4671] device veth0_macvtap entered promiscuous mode
[  140.984860][ T4182] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  140.996139][ T4182] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  141.898501][ T4671] device veth1_macvtap entered promiscuous mode
[  141.932331][ T4868] loop1: detected capacity change from 0 to 1024
[  141.941105][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  141.962623][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  141.980678][ T4671] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  142.024569][ T4671] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  142.034671][ T4671] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  142.041167][ T4871] loop2: detected capacity change from 0 to 2048
[  142.055012][ T4671] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  142.065087][ T4671] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  142.091048][ T4873] Driver unsupported XDP return value 0 on prog  (id 60) dev N/A, expect packet loss!
[  142.100303][ T4671] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  142.145692][ T4671] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  142.168668][ T4671] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  142.198023][ T4671] batman_adv: batadv0: Interface activated: batadv_slave_0
[  142.222878][ T4182] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  142.261877][ T4182] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  142.275991][ T4877] device bridge0 entered promiscuous mode
[  142.327587][ T4877] device bridge0 left promiscuous mode
[  142.368537][ T4671] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  142.394643][ T4671] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  142.410659][ T4671] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  142.421983][ T4671] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  142.433173][ T4671] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  142.444252][ T4671] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  142.454455][ T4671] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  142.466259][ T4671] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  142.486223][ T4671] batman_adv: batadv0: Interface activated: batadv_slave_1
[  142.494736][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  142.509465][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  142.520660][ T4671] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  142.531903][ T4671] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  142.541677][ T4671] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  142.551013][ T4671] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  142.564222][ T3680] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  142.647277][ T3676] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  142.663512][ T3676] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  142.700942][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  142.727365][ T3676] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  142.741993][ T4896] loop4: detected capacity change from 0 to 256
[  142.750241][ T3676] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  142.769806][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  142.831887][ T4896] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  142.940582][ T4896] exFAT-fs (loop4): error, exfat_alloc_cluster: invalid used clusters(t:15,u:4294967295)
[  142.940582][ T4896] 
[  142.958517][ T4896] exFAT-fs (loop4): error, failed to bmap (inode : ffff888053952860 iblock : 0, err : -5)
[  143.031481][ T3680] usb 2-1: Using ep0 maxpacket: 8
[  143.047211][ T4905] infiniband Syz1: RDMA CMA: cma_listen_on_dev, error -98
[  143.214248][ T3680] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  143.215213][ T3613] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  143.233991][ T3680] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  143.243957][ T3680] usb 2-1: New USB device found, idVendor=1020, idProduct=0006, bcdDevice= 0.00
[  143.253048][ T3680] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.267595][ T3680] usb 2-1: config 0 descriptor??
[  143.474072][ T3613] usb 4-1: Using ep0 maxpacket: 8
[  143.594369][ T3613] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  143.609253][ T3613] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[  143.620013][ T3613] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  143.639756][ T3613] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  143.652726][ T3613] usb 4-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  143.675493][ T4929] loop4: detected capacity change from 0 to 256
[  143.680337][ T3613] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.699151][ T4929] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  143.757331][ T3680] belkin 0003:1020:0006.0003: unexpected long global item
[  143.758767][ T4929] exFAT-fs (loop4): error, exfat_alloc_cluster: invalid used clusters(t:15,u:4294967295)
[  143.758767][ T4929] 
[  143.765726][ T3680] belkin 0003:1020:0006.0003: parse failed
[  143.778268][ T3613] hub 4-1:1.0: bad descriptor, ignoring hub
[  143.785866][ T3680] belkin: probe of 0003:1020:0006.0003 failed with error -22
[  143.800171][ T3613] hub: probe of 4-1:1.0 failed with error -5
[  143.812695][ T3613] cdc_wdm 4-1:1.0: skipping garbage
[  143.813942][ T4929] exFAT-fs (loop4): error, failed to bmap (inode : ffff8880539ed5e0 iblock : 0, err : -5)
[  143.818028][ T3613] cdc_wdm 4-1:1.0: skipping garbage
[  143.847947][ T3613] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[  143.861312][ T3613] cdc_wdm 4-1:1.0: Unknown control protocol
[  144.103568][ T3680] usb 2-1: USB disconnect, device number 6
[  144.126327][ T3613] usb 4-1: USB disconnect, device number 10
[  145.292805][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  145.313870][ T4220] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  145.662564][ T4953] loop1: detected capacity change from 0 to 32768
[  145.663118][ T4965] loop3: detected capacity change from 0 to 32768
[  145.676934][ T4965] XFS: attr2 mount option is deprecated.
[  145.682656][ T4965] XFS: noikeep mount option is deprecated.
[  145.687582][ T4220] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  145.704727][ T4220] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  145.716869][ T4220] usb 1-1: config 1 interface 0 has no altsetting 1
[  145.723977][ T4220] usb 1-1: config 1 interface 1 has no altsetting 0
[  145.734213][ T4965] XFS (loop3): Mounting V5 Filesystem
[  145.809599][ T4965] XFS (loop3): Ending clean mount
[  145.821644][ T4965] XFS (loop3): Quotacheck needed: Please wait.
[  145.866401][ T4965] XFS (loop3): Quotacheck: Done.
[  145.884311][ T4220] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  145.886823][ T3680] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  145.893498][ T4220] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  145.893526][ T4220] usb 1-1: Product: syz
[  145.893542][ T4220] usb 1-1: Manufacturer: syz
[  145.893557][ T4220] usb 1-1: SerialNumber: syz
[  146.007258][ T4671] XFS (loop3): Unmounting Filesystem
[  146.173902][ T3680] usb 3-1: Using ep0 maxpacket: 8
[  146.184018][ T4220] usb 1-1: selecting invalid altsetting 0
[  146.189865][ T4220] usb 1-1: selecting invalid altsetting 0
[  146.206212][ T4220] cdc_ncm 1-1:1.0: bind() failure
[  146.221110][ T4220] usb 1-1: selecting invalid altsetting 0
[  146.237659][ T4220] usbtest: probe of 1-1:1.1 failed with error -22
[  146.254914][ T4220] usb 1-1: USB disconnect, device number 9
[  146.428046][ T3613] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  146.476104][ T3680] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  146.487206][ T3680] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2
[  146.497005][ T3680] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  146.508253][ T3680] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  146.519497][ T3680] usb 3-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  146.528613][ T3680] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  146.678287][ T3680] hub 3-1:1.0: bad descriptor, ignoring hub
[  146.711558][ T3680] hub: probe of 3-1:1.0 failed with error -5
[  146.764219][ T3680] cdc_wdm 3-1:1.0: skipping garbage
[  146.782047][ T3680] cdc_wdm 3-1:1.0: skipping garbage
[  146.882243][ T3680] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device
[  146.914736][ T3680] cdc_wdm 3-1:1.0: Unknown control protocol
[  147.040662][ T3680] usb 3-1: USB disconnect, device number 6
[  147.375073][ T3613] usb 5-1: Using ep0 maxpacket: 8
[  147.436108][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  147.454818][ T5002] loop3: detected capacity change from 0 to 8
[  147.494159][ T3613] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  147.521063][ T3613] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  147.538562][ T3613] usb 5-1: New USB device found, idVendor=1020, idProduct=0006, bcdDevice= 0.00
[  147.549297][ T3613] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  147.565253][ T3613] usb 5-1: config 0 descriptor??
[  147.761878][ T5011] loop2: detected capacity change from 0 to 2048
[  147.789063][ T5011] NILFS (loop2): invalid segment: Sequence number mismatch
[  147.797170][ T5011] NILFS (loop2): trying rollback from an earlier position
[  147.817894][ T5011] NILFS (loop2): recovery complete
[  148.140319][ T5015] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  148.847383][ T3613] belkin 0003:1020:0006.0004: unexpected long global item
[  148.857580][ T3613] belkin 0003:1020:0006.0004: parse failed
[  148.863482][ T3613] belkin: probe of 0003:1020:0006.0004 failed with error -22
[  150.612220][ T5022] loop0: detected capacity change from 0 to 256
[  150.754996][   T26] audit: type=1800 audit(1718732933.606:104): pid=5022 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=1048634 res=0 errno=0
[  150.791894][ T5029] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  150.811302][ T3619] usb 5-1: USB disconnect, device number 5
[  151.028214][ T5032] loop1: detected capacity change from 0 to 64
[  151.149558][ T5032] hfs: request for non-existent node 237 in B*Tree
[  151.172501][ T5032] hfs: request for non-existent node 237 in B*Tree
[  151.182846][ T5041] loop0: detected capacity change from 0 to 2048
[  151.207721][ T5041] EXT4-fs: Ignoring removed nobh option
[  151.240366][ T4412] hfs: request for non-existent node 237 in B*Tree
[  151.252282][ T4412] hfs: request for non-existent node 237 in B*Tree
[  151.268822][ T5041] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  151.391852][ T3575] EXT4-fs (loop0): unmounting filesystem.
[  151.517527][ T5061] loop4: detected capacity change from 0 to 2048
[  151.541627][ T5061] NILFS (loop4): invalid segment: Sequence number mismatch
[  151.549072][ T5061] NILFS (loop4): trying rollback from an earlier position
[  151.568564][ T5061] NILFS (loop4): recovery complete
[  151.743070][ T5066] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  151.891689][ T5070] loop1: detected capacity change from 0 to 256
[  152.895500][ T3613] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  154.120183][   T26] audit: type=1800 audit(1718732936.986:105): pid=5070 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=1048636 res=0 errno=0
[  154.372091][ T5080] loop2: detected capacity change from 0 to 2048
[  154.384819][ T5080] ext4: Unknown parameter 'measure'
[  154.452520][   T26] audit: type=1800 audit(1718732937.316:106): pid=5080 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1944 res=0 errno=0
[  154.508611][ T5090] netlink: 'syz-executor.3': attribute type 29 has an invalid length.
[  154.527316][ T5090] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  154.544511][ T5090] netlink: 'syz-executor.3': attribute type 29 has an invalid length.
[  154.555339][ T5090] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  154.643851][   T27] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  154.651873][ T3619] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  154.659444][ T5094] netlink: 'syz-executor.3': attribute type 10 has an invalid length.
[  154.667874][ T3613] usb 4-1: device not accepting address 11, error -71
[  154.693464][ T5094] 8021q: adding VLAN 0 to HW filter on device team0
[  154.726274][ T5094] bond0: (slave team0): Enslaving as an active interface with an up link
[  154.782872][ T5080] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[  154.873971][ T4220] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  154.910753][ T5100] loop3: detected capacity change from 0 to 256
[  154.926305][ T5100] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x1aabf3fb, utbl_chksum : 0xe619d30d)
[  154.945976][ T3619] usb 5-1: Using ep0 maxpacket: 8
[  154.951194][   T27] usb 1-1: Using ep0 maxpacket: 16
[  155.010511][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  155.069990][ T5105] loop2: detected capacity change from 0 to 2048
[  155.124029][ T4220] usb 2-1: Using ep0 maxpacket: 8
[  155.155587][ T5105]  loop2: p1 < > p4
[  155.171121][ T5105] loop2: p4 size 8388608 extends beyond EOD, truncated
[  155.214959][   T26] audit: type=1800 audit(1718732938.066:107): pid=5105 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1966 res=0 errno=0
[  155.256555][ T4220] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  155.272076][ T4220] usb 2-1: config 0 has no interface number 0
[  155.280316][ T4220] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  155.296939][ T4220] usb 2-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  155.308930][ T4220] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  155.323176][ T4220] usb 2-1: config 0 descriptor??
[  155.368414][ T4220] iowarrior 2-1:0.1: no interrupt-in endpoint found
[  155.435111][   T27] usb 1-1: config 0 has an invalid interface number: 48 but max is 2
[  155.443442][ T3619] usb 5-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  155.452844][   T27] usb 1-1: config 0 has an invalid interface number: 129 but max is 2
[  155.462295][ T3619] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  155.471037][   T27] usb 1-1: config 0 has no interface number 0
[  155.477955][   T27] usb 1-1: config 0 has no interface number 2
[  155.485076][ T3619] usb 5-1: config 0 descriptor??
[  155.490298][   T27] usb 1-1: config 0 interface 129 altsetting 153 has an invalid endpoint with address 0x0, skipping
[  155.501413][   T27] usb 1-1: config 0 interface 129 altsetting 153 endpoint 0x6 has invalid wMaxPacketSize 0
[  155.512101][   T27] usb 1-1: config 0 interface 129 altsetting 153 has an invalid endpoint with address 0x0, skipping
[  155.523253][   T27] usb 1-1: config 0 interface 129 has no altsetting 0
[  155.582564][ T4220] usb 2-1: USB disconnect, device number 7
[  155.871819][ T5109] loop2: detected capacity change from 0 to 256
[  156.001559][   T27] usb 1-1: New USB device found, idVendor=15ba, idProduct=0003, bcdDevice=b3.94
[  156.013886][   T26] audit: type=1800 audit(1718732938.856:108): pid=5109 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=1048638 res=0 errno=0
[  156.074802][   T27] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  156.156078][   T27] usb 1-1: Product: syz
[  156.200170][   T27] usb 1-1: Manufacturer: syz
[  156.292660][   T27] usb 1-1: SerialNumber: syz
[  156.664704][   T27] usb 1-1: config 0 descriptor??
[  156.716372][   T27] ftdi_sio 1-1:0.1: FTDI USB Serial Device converter detected
[  156.735387][   T27] ftdi_sio ttyUSB0: unknown device type: 0xb394
[  156.826012][ T5121] netlink: 'syz-executor.1': attribute type 29 has an invalid length.
[  156.836550][ T5121] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  156.846488][ T5121] netlink: 'syz-executor.1': attribute type 29 has an invalid length.
[  156.855701][ T5121] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  156.859809][ T3619] asix 5-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  156.886679][ T3619] asix: probe of 5-1:0.0 failed with error -71
[  156.902793][ T3619] usb 5-1: USB disconnect, device number 6
[  156.987725][   T27] usb 1-1: USB disconnect, device number 10
[  157.004802][   T27] ftdi_sio 1-1:0.1: device disconnected
[  157.011912][ T5126] loop1: detected capacity change from 0 to 164
[  157.051621][ T5126] isofs_fill_super: get root inode failed
[  157.073816][ T4220] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  157.097163][ T5123] loop2: detected capacity change from 0 to 16
[  157.114136][ T5123] erofs: (device loop2): mounted with root inode @ nid 36.
[  157.132353][ T5125] loop1: detected capacity change from 0 to 512
[  157.141943][ T3577] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -41 in[4096, 0] out[9000]
[  157.166300][ T5125] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  157.183107][ T5125] ext4 filesystem being mounted at /root/syzkaller-testdir4055505828/syzkaller.pAfdBH/57/bus supports timestamps until 2038 (0x7fffffff)
[  157.203080][ T5123] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -41 in[4096, 0] out[8192]
[  157.229011][   T26] audit: type=1800 audit(1718732940.096:109): pid=5123 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.2" name="file3" dev="loop2" ino=89 res=0 errno=0
[  157.259338][ T5123] syz-executor.2 (5123) used greatest stack depth: 19456 bytes left
[  158.013903][ T4220] usb 4-1: Using ep0 maxpacket: 8
[  158.033639][ T3945] EXT4-fs (loop1): unmounting filesystem.
[  158.095196][ T4427] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  158.130107][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  158.134454][ T4220] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  158.173104][ T4220] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  158.193495][ T4220] usb 4-1: New USB device found, idVendor=1020, idProduct=0006, bcdDevice= 0.00
[  158.205764][ T4220] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  158.224826][ T4220] usb 4-1: config 0 descriptor??
[  158.256897][ T5137] loop0: detected capacity change from 0 to 32768
[  158.268021][ T5137] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz-executor.0 (5137)
[  158.283036][ T5137] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  158.293380][ T5137] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  158.302199][ T5137] BTRFS info (device loop0): using free space tree
[  158.333034][ T5137] BTRFS info (device loop0): enabling ssd optimizations
[  158.404158][ T3575] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  158.500157][ T4427] usb 3-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  158.509677][ T4427] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  158.520104][ T4427] usb 3-1: config 0 descriptor??
[  158.725661][ T4220] belkin 0003:1020:0006.0005: unexpected long global item
[  158.733194][ T4220] belkin 0003:1020:0006.0005: parse failed
[  158.745478][ T4220] belkin: probe of 0003:1020:0006.0005 failed with error -22
[  158.780245][ T5171] loop0: detected capacity change from 0 to 2048
[  158.792433][ T5171] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  158.949157][ T3613] usb 4-1: USB disconnect, device number 13
[  159.044029][ T4427] [drm:udl_init] *ERROR* Selecting channel failed
[  159.074423][ T4427] [drm] Initialized udl 0.0.1 20120220 for 3-1:0.0 on minor 2
[  159.082250][ T4427] [drm] Initialized udl on minor 2
[  159.115271][ T4427] [drm:udl_get_edid_block] *ERROR* Read EDID byte 0 failed err ffffffb9
[  159.141037][ T4427] udl 3-1:0.0: [drm] Cannot find any crtc or sizes
[  159.162588][ T4427] usb 3-1: USB disconnect, device number 7
[  159.191565][ T5184] loop4: detected capacity change from 0 to 1764
[  159.249643][  T152] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  159.468132][ T5181] loop1: detected capacity change from 0 to 32768
[  159.484635][ T5181] gfs2: fsid=(œ[{{{+: Trying to join cluster "lock_nolock", "(œ[{{{+"
[  159.493214][ T5181] gfs2: fsid=(œ[{{{+: Now mounting FS (format 0)...
[  159.621820][ T5181] gfs2: fsid=(œ[{{{+.0: journal 0 mapped with 22 extents in 0ms
[  159.660157][ T5193] loop3: detected capacity change from 0 to 1024
[  159.677729][ T4427] gfs2: fsid=(œ[{{{+.0: jid=0, already locked for use
[  159.686325][  T152] usb 1-1: Using ep0 maxpacket: 16
[  159.692069][ T4427] gfs2: fsid=(œ[{{{+.0: jid=0: Looking at journal...
[  159.801140][ T5194] loop4: detected capacity change from 0 to 256
[  159.895273][   T26] audit: type=1800 audit(1718732942.736:110): pid=5194 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=1048640 res=0 errno=0
[  159.944104][  T152] usb 1-1: config 0 has an invalid interface number: 48 but max is 2
[  160.058519][  T152] usb 1-1: config 0 has an invalid interface number: 129 but max is 2
[  160.229449][  T152] usb 1-1: config 0 has no interface number 0
[  160.559505][  T152] usb 1-1: config 0 has no interface number 2
[  160.573902][  T152] usb 1-1: config 0 interface 129 altsetting 153 has an invalid endpoint with address 0x0, skipping
[  160.609283][  T152] usb 1-1: config 0 interface 129 altsetting 153 endpoint 0x6 has invalid wMaxPacketSize 0
[  160.628534][ T4427] gfs2: fsid=(œ[{{{+.0: jid=0: Journal head lookup took 936ms
[  160.636155][  T152] usb 1-1: config 0 interface 129 altsetting 153 has an invalid endpoint with address 0x0, skipping
[  160.647879][ T4427] gfs2: fsid=(œ[{{{+.0: jid=0: Done
[  160.655077][ T5181] gfs2: fsid=(œ[{{{+.0: first mount done, others may mount
[  160.655126][  T152] usb 1-1: config 0 interface 129 has no altsetting 0
[  160.792857][ T5198] loop4: detected capacity change from 0 to 2048
[  160.821024][ T5198] ext4: Unknown parameter 'measure'
[  160.854197][  T152] usb 1-1: New USB device found, idVendor=15ba, idProduct=0003, bcdDevice=b3.94
[  160.873935][  T152] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  160.882047][  T152] usb 1-1: Product: syz
[  160.886615][  T152] usb 1-1: Manufacturer: syz
[  160.891353][  T152] usb 1-1: SerialNumber: syz
[  160.903973][  T152] usb 1-1: config 0 descriptor??
[  160.932576][   T26] audit: type=1800 audit(1718732943.796:111): pid=5198 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1957 res=0 errno=0
[  160.961562][  T152] ftdi_sio 1-1:0.1: FTDI USB Serial Device converter detected
[  160.979031][  T152] ftdi_sio ttyUSB0: unknown device type: 0xb394
[  161.120286][ T5203] loop1: detected capacity change from 0 to 2048
[  161.151040][ T5203] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  161.214099][  T152] usb 1-1: USB disconnect, device number 11
[  161.230972][  T152] ftdi_sio 1-1:0.1: device disconnected
[  161.267149][ T5196] loop2: detected capacity change from 0 to 40427
[  161.325060][ T5196] F2FS-fs (loop2): invalid crc value
[  161.370492][ T5196] F2FS-fs (loop2): Found nat_bits in checkpoint
[  161.430502][ T5198] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  161.456147][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  161.483625][ T5196] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  161.518781][   T26] audit: type=1800 audit(1718732944.386:112): pid=5196 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=10 res=0 errno=0
[  161.577720][ T3912] syz-executor.2: attempt to access beyond end of device
[  161.577720][ T3912] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  161.850641][ T5215] loop4: detected capacity change from 0 to 2048
[  161.872253][ T5215] NILFS (loop4): invalid segment: Sequence number mismatch
[  161.879748][ T5215] NILFS (loop4): trying rollback from an earlier position
[  162.755442][ T5215] NILFS (loop4): recovery complete
[  162.783085][ T5219] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  162.809067][ T5220] netlink: 'syz-executor.1': attribute type 29 has an invalid length.
[  162.871874][ T5220] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  162.899006][ T5220] netlink: 'syz-executor.1': attribute type 29 has an invalid length.
[  162.933128][ T5220] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  164.107606][ T3680] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  165.071927][ T5244] loop2: detected capacity change from 0 to 256
[  165.224361][   T26] audit: type=1800 audit(1718732948.026:113): pid=5244 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=1048642 res=0 errno=0
[  165.824255][ T3680] usb 1-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  165.866356][ T3680] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  165.874837][ T4427] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  165.910202][ T3680] usb 1-1: config 0 descriptor??
[  165.964118][ T3680] usb 1-1: can't set config #0, error -71
[  165.975072][ T3680] usb 1-1: USB disconnect, device number 12
[  165.989297][ T5247] loop4: detected capacity change from 0 to 32768
[  166.015252][ T5247] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz-executor.4 (5247)
[  166.062468][ T5247] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  166.082791][ T5247] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  166.104130][ T5247] BTRFS info (device loop4): setting nodatacow, compression disabled
[  166.123894][ T5247] BTRFS info (device loop4): doing ref verification
[  166.130619][ T5247] BTRFS info (device loop4): turning on sync discard
[  166.133935][ T4427] usb 2-1: Using ep0 maxpacket: 8
[  166.153889][ T5247] BTRFS info (device loop4): using free space tree
[  166.275987][ T4427] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  166.295501][ T4427] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  166.313259][ T4427] usb 2-1: config 0 descriptor??
[  166.347449][ T5247] BTRFS info (device loop4): enabling ssd optimizations
[  166.362976][ T5247] BTRFS info (device loop4): checking UUID tree
[  166.368074][ T5278] netlink: 'syz-executor.2': attribute type 10 has an invalid length.
[  166.370093][ T5252] loop3: detected capacity change from 0 to 32768
[  166.412965][ T5278] 8021q: adding VLAN 0 to HW filter on device team0
[  166.442159][ T5278] bond0: (slave team0): Enslaving as an active interface with an up link
[  166.679905][ T5290] sctp: [Deprecated]: syz-executor.2 (pid 5290) Use of int in max_burst socket option.
[  166.679905][ T5290] Use struct sctp_assoc_value instead
[  166.720999][ T3852] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  167.214212][ T3613] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  167.714354][ T4427] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  167.814215][ T4427] asix: probe of 2-1:0.0 failed with error -71
[  167.916924][ T4427] usb 2-1: USB disconnect, device number 8
[  167.964207][ T3613] usb 4-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  167.974141][ T3613] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.985017][ T3613] usb 4-1: config 0 descriptor??
[  168.027239][ T3613] gspca_main: STV06xx-2.14.0 probing 046d:0870
[  168.224144][   T27] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  168.494237][ T4370] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  168.770858][   T27] usb 3-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  168.782469][   T27] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 152
[  168.793050][   T27] usb 3-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  168.806147][   T27] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  168.816981][   T27] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  168.844344][ T5308] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  169.055191][   T27] usb 3-1: invalid MIDI in EP 0
[  169.064969][ T4370] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  169.151486][ T4370] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  169.258608][ T4370] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  169.283335][ T4370] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  169.313154][ T4370] usb 1-1: config 0 descriptor??
[  169.332988][   T27] snd-usb-audio: probe of 3-1:27.0 failed with error -22
[  169.341712][   T27] usb 3-1: USB disconnect, device number 8
[  169.383927][ T4220] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  169.633884][ T4220] usb 5-1: Using ep0 maxpacket: 8
[  169.655256][ T5347] loop1: detected capacity change from 0 to 1024
[  169.662713][ T5347] EXT4-fs: Ignoring removed nomblk_io_submit option
[  169.670574][ T5347] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  169.682168][ T5347] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  169.713988][ T5347] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  169.754140][ T4220] usb 5-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  169.774051][ T4220] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  169.790063][ T4220] usb 5-1: config 0 descriptor??
[  169.942460][ T4370] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  169.951586][ T4370] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving
[  169.972857][ T4370] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  170.245787][ T4370] usb 1-1: USB disconnect, device number 13
[  170.598266][ T3945] EXT4-fs (loop1): unmounting filesystem.
[  170.655226][ T4424] usb 4-1: USB disconnect, device number 14
[  171.103973][ T4220] asix 5-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  171.123980][ T4220] asix: probe of 5-1:0.0 failed with error -71
[  171.144085][ T4220] usb 5-1: USB disconnect, device number 7
[  171.465230][ T5380] loop3: detected capacity change from 0 to 256
[  171.504724][ T5383] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  172.491453][ T5380] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d)
[  172.544660][ T5380] syz-executor.3: attempt to access beyond end of device
[  172.544660][ T5380] loop3: rw=524288, sector=280, nr_sectors = 128 limit=256
[  172.568473][ T5380] syz-executor.3: attempt to access beyond end of device
[  172.568473][ T5380] loop3: rw=524288, sector=408, nr_sectors = 256 limit=256
[  172.585608][ T5380] syz-executor.3: attempt to access beyond end of device
[  172.585608][ T5380] loop3: rw=0, sector=280, nr_sectors = 8 limit=256
[  172.664089][   T26] audit: type=1800 audit(1718732955.476:114): pid=5380 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.3" name="file1" dev="loop3" ino=1048644 res=0 errno=0
[  174.783850][ T3613] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  174.862956][ T5388] loop0: detected capacity change from 0 to 32768
[  174.895507][ T5406] loop3: detected capacity change from 0 to 40427
[  174.906171][ T5406] F2FS-fs (loop3): Mismatch start address, segment0(512) cp_blkaddr(175702528)
[  174.915973][ T5406] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  174.935464][ T5388] XFS (loop0): Mounting V5 Filesystem
[  174.942926][ T5406] F2FS-fs (loop3): invalid crc value
[  174.953559][ T5406] F2FS-fs (loop3): Found nat_bits in checkpoint
[  175.032628][ T5388] XFS (loop0): Ending clean mount
[  175.054827][ T5388] XFS (loop0): Quotacheck needed: Please wait.
[  175.143946][ T3613] usb 5-1: New USB device found, idVendor=1d50, idProduct=606f, bcdDevice=14.d4
[  175.153157][ T3613] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  175.163822][ T3613] usb 5-1: config 0 descriptor??
[  175.170088][ T5388] XFS (loop0): Quotacheck: Done.
[  175.180401][ T5406] F2FS-fs (loop3): Cannot turn on quotas: -2 on 0
[  175.205534][ T5415] loop1: detected capacity change from 0 to 32768
[  175.229506][ T5406] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  175.241946][ T3575] XFS (loop0): Unmounting Filesystem
[  175.258027][ T5406] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  175.303329][ T5415] XFS (loop1): Mounting V5 Filesystem
[  175.497233][ T5415] XFS (loop1): Ending clean mount
[  175.510331][ T4671] syz-executor.3: attempt to access beyond end of device
[  175.510331][ T4671] loop3: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  175.599325][ T3945] XFS (loop1): Unmounting Filesystem
[  175.649900][ T3613] gs_usb 5-1:0.0: Configuring for 232 interfaces
[  175.674107][ T3613] gs_usb 5-1:0.0: Driver cannot handle more that 3 CAN interfaces
[  175.692543][ T3613] gs_usb: probe of 5-1:0.0 failed with error -22
[  175.808701][ T5439] netlink: 'syz-executor.0': attribute type 21 has an invalid length.
[  175.832343][ T5439] netlink: 156 bytes leftover after parsing attributes in process `syz-executor.0'.
[  175.856767][ T3613] usb 5-1: USB disconnect, device number 8
[  176.269185][ T5449] loop0: detected capacity change from 0 to 4096
[  176.300297][ T5449] ntfs: volume version 3.1.
[  176.341360][ T5449] ntfs: (device loop0): ntfs_nlstoucs(): Name using character set iso8859-3 contains characters that cannot be converted to Unicode.
[  176.368595][ T5449] ntfs: (device loop0): ntfs_lookup(): Failed to convert name to Unicode.
[  176.384022][   T27] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  176.562274][ T5455] loop4: detected capacity change from 0 to 2048
[  176.577404][ T5455] ext4: Unknown parameter 'measure'
[  176.643825][   T27] usb 2-1: Using ep0 maxpacket: 8
[  176.644012][   T26] audit: type=1800 audit(1718732959.516:115): pid=5455 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1965 res=0 errno=0
[  176.774178][   T27] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  176.795413][   T27] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  176.814696][   T27] usb 2-1: config 0 descriptor??
[  176.883839][ T3613] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  177.013182][ T5455] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  177.139400][ T3613] usb 4-1: Using ep0 maxpacket: 16
[  177.265363][ T3613] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  177.297795][ T3613] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  177.328165][ T3613] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  177.361612][ T3613] usb 4-1: New USB device found, idVendor=1770, idProduct=ff00, bcdDevice= 0.00
[  177.393518][ T3613] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  177.416634][ T3613] usb 4-1: config 0 descriptor??
[  177.532124][ T5465] loop0: detected capacity change from 0 to 32768
[  177.540100][ T5465] XFS: ikeep mount option is deprecated.
[  177.602742][ T5465] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  177.614685][ T5465] XFS (loop0): Mounting V5 Filesystem
[  177.627663][ T5481] loop4: detected capacity change from 0 to 1024
[  177.641492][ T5481] EXT4-fs: Ignoring removed nomblk_io_submit option
[  177.657730][ T5481] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  177.676791][ T5481] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  177.678362][ T5478] loop2: detected capacity change from 0 to 8192
[  177.711387][ T5481] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  177.732541][ T5465] XFS (loop0): Ending clean mount
[  177.747613][ T5465] XFS (loop0): Quotacheck needed: Please wait.
[  177.844093][ T5465] XFS (loop0): Quotacheck: Done.
[  177.906150][ T3613] gt683r_led 0003:1770:FF00.0007: unknown main item tag 0x0
[  177.930248][ T3613] gt683r_led 0003:1770:FF00.0007: unknown main item tag 0x0
[  177.961102][ T3575] XFS (loop0): Unmounting Filesystem
[  177.961172][ T3613] gt683r_led 0003:1770:FF00.0007: unbalanced collection at end of report description
[  177.966731][   T27] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  177.966858][   T27] asix: probe of 2-1:0.0 failed with error -71
[  177.982316][ T3613] gt683r_led 0003:1770:FF00.0007: hid parsing failed
[  177.995354][   T27] usb 2-1: USB disconnect, device number 9
[  178.005710][ T3613] gt683r_led: probe of 0003:1770:FF00.0007 failed with error -22
[  178.788321][ T3613] usb 4-1: USB disconnect, device number 15
[  178.802245][ T3852] EXT4-fs (loop4): unmounting filesystem.
[  178.959127][ T5499] loop0: detected capacity change from 0 to 4096
[  179.001099][ T5499] ntfs: volume version 3.1.
[  179.047418][ T5499] ntfs: (device loop0): ntfs_nlstoucs(): Name using character set iso8859-3 contains characters that cannot be converted to Unicode.
[  179.081343][ T5499] ntfs: (device loop0): ntfs_lookup(): Failed to convert name to Unicode.
[  179.134403][ T4224] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  179.494092][ T4224] usb 5-1: New USB device found, idVendor=1d50, idProduct=606f, bcdDevice=14.d4
[  179.503212][ T4224] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  179.596335][ T4224] usb 5-1: config 0 descriptor??
[  180.063966][ T4224] gs_usb 5-1:0.0: Configuring for 232 interfaces
[  180.070472][ T4224] gs_usb 5-1:0.0: Driver cannot handle more that 3 CAN interfaces
[  180.163853][ T4224] gs_usb: probe of 5-1:0.0 failed with error -22
[  180.286095][ T4224] usb 5-1: USB disconnect, device number 9
[  180.496653][ T5505] loop2: detected capacity change from 0 to 40427
[  180.524979][ T5505] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  180.544145][ T5505] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  180.565567][ T5505] F2FS-fs (loop2): invalid crc value
[  180.611010][ T5505] F2FS-fs (loop2): Found nat_bits in checkpoint
[  180.630815][ T5514] loop0: detected capacity change from 0 to 32768
[  180.717270][ T5514] XFS (loop0): Mounting V5 Filesystem
[  180.746656][ T5505] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  180.766343][ T5505] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  180.834877][ T5514] XFS (loop0): Ending clean mount
[  180.954600][ T3575] XFS (loop0): Unmounting Filesystem
[  181.097529][ T5539] loop4: detected capacity change from 0 to 512
[  181.143471][ T5539] journal_path: Lookup failure for './file1'
[  181.173992][ T5539] EXT4-fs: error: could not find journal device path
[  181.291490][ T5539] loop4: detected capacity change from 0 to 1024
[  181.375402][ T5539] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  181.493000][ T5539] EXT4-fs error (device loop4): ext4_xattr_ibody_list:748: inode #2: comm syz-executor.4: corrupted in-inode xattr
[  181.601297][ T5539] EXT4-fs (loop4): Remounting filesystem read-only
[  181.637942][ T5548] device bridge0 entered promiscuous mode
[  181.660626][ T5548] device bridge0 left promiscuous mode
[  181.718626][ T3852] EXT4-fs (loop4): unmounting filesystem.
[  181.868129][ T5555] loop1: detected capacity change from 0 to 512
[  181.916228][ T5555] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  181.936175][ T5555] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  181.968367][ T5555] EXT4-fs (loop1): orphan cleanup on readonly fs
[  182.005748][ T5555] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3845: comm syz-executor.1: Allocating blocks 41-42 which overlap fs metadata
[  182.041963][ T5560] loop4: detected capacity change from 0 to 256
[  182.063464][ T5555] EXT4-fs (loop1): Remounting filesystem read-only
[  182.095152][ T5555] Quota error (device loop1): write_blk: dquota write failed
[  182.120653][ T5560] FAT-fs (loop4): Directory bread(block 64) failed
[  182.134095][ T5555] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  182.144398][ T5560] FAT-fs (loop4): Directory bread(block 65) failed
[  182.151052][ T5560] FAT-fs (loop4): Directory bread(block 66) failed
[  182.163897][ T5555] EXT4-fs error (device loop1): ext4_acquire_dquot:6777: comm syz-executor.1: Failed to acquire dquot type 0
[  182.182761][ T5560] FAT-fs (loop4): Directory bread(block 67) failed
[  182.198932][ T5560] FAT-fs (loop4): Directory bread(block 68) failed
[  182.206105][ T5555] EXT4-fs (loop1): 1 truncate cleaned up
[  182.223169][ T5560] FAT-fs (loop4): Directory bread(block 69) failed
[  182.231975][ T5555] EXT4-fs (loop1): pa ffff888050e277e0: logic 1, phys. 41, len 23
[  182.240615][ T5555] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:4885: group 0, free 22, pa_free 23
[  182.256667][ T5560] FAT-fs (loop4): Directory bread(block 70) failed
[  182.273361][ T5560] FAT-fs (loop4): Directory bread(block 71) failed
[  182.289288][ T5560] FAT-fs (loop4): Directory bread(block 72) failed
[  182.302592][ T5555] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  182.318182][ T5560] FAT-fs (loop4): Directory bread(block 73) failed
[  182.378191][ T3945] EXT4-fs (loop1): unmounting filesystem.
[  182.491414][ T5557] loop2: detected capacity change from 0 to 40427
[  182.524777][ T5557] F2FS-fs (loop2): Mismatch start address, segment0(512) cp_blkaddr(175702528)
[  182.550344][ T5557] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  182.575444][ T5557] F2FS-fs (loop2): invalid crc value
[  182.613271][ T5557] F2FS-fs (loop2): Found nat_bits in checkpoint
[  182.753298][ T5557] F2FS-fs (loop2): Cannot turn on quotas: -2 on 0
[  182.800391][ T5557] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  182.808500][ T3613] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  182.824777][ T5557] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  182.984420][ T3912] syz-executor.2: attempt to access beyond end of device
[  182.984420][ T3912] loop2: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  183.150177][ T5567] loop0: detected capacity change from 0 to 32768
[  183.169806][ T5567] XFS (loop0): Mounting V5 Filesystem
[  183.184386][ T3613] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30
[  183.214048][ T3613] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  183.233839][ T3613] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  183.283872][ T3613] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[  183.343941][ T3613] usb 5-1: New USB device found, idVendor=044f, idProduct=b653, bcdDevice= 0.00
[  183.353076][ T3613] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  183.373962][ T3613] usb 5-1: config 0 descriptor??
[  183.384555][ T5567] XFS (loop0): Ending clean mount
[  183.496623][ T3575] XFS (loop0): Unmounting Filesystem
[  183.566285][ T5572] loop1: detected capacity change from 0 to 40427
[  183.592875][ T5572] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  183.633505][ T5572] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  183.676516][ T5572] F2FS-fs (loop1): invalid crc value
[  183.721103][ T5572] F2FS-fs (loop1): Found nat_bits in checkpoint
[  183.850266][ T5572] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  183.861349][ T3613] thrustmaster 0003:044F:B653.0008: unbalanced delimiter at end of report description
[  183.877014][ T5572] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  183.887958][ T3613] thrustmaster 0003:044F:B653.0008: parse failed
[  183.898817][ T3613] thrustmaster: probe of 0003:044F:B653.0008 failed with error -22
[  183.959426][   T27] usb 3-1: new low-speed USB device number 9 using dummy_hcd
[  184.061396][ T3613] usb 5-1: USB disconnect, device number 10
[  184.160122][ T5595] loop0: detected capacity change from 0 to 512
[  184.173905][ T5595] journal_path: Lookup failure for './file1'
[  184.184111][ T5595] EXT4-fs: error: could not find journal device path
[  184.252450][ T5595] loop0: detected capacity change from 0 to 1024
[  184.302134][ T5595] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  184.334758][ T5595] EXT4-fs error (device loop0): ext4_xattr_ibody_list:748: inode #2: comm syz-executor.0: corrupted in-inode xattr
[  184.347186][   T27] usb 3-1: config 32 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 10
[  184.347238][   T27] usb 3-1: New USB device found, idVendor=19b5, idProduct=0021, bcdDevice=98.c7
[  184.347265][   T27] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  184.447055][ T5595] EXT4-fs (loop0): Remounting filesystem read-only
[  184.527614][ T3575] EXT4-fs (loop0): unmounting filesystem.
[  184.538248][   T26] audit: type=1800 audit(1718732967.406:116): pid=5599 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1961 res=0 errno=0
[  184.644123][   T27] usb 3-1: string descriptor 0 read error: -71
[  184.666434][   T27] hub 3-1:32.0: USB hub found
[  184.733886][   T27] hub 3-1:32.0: config failed, can't read hub descriptor (err -22)
[  184.844452][   T27] usb 3-1: USB disconnect, device number 9
[  185.104277][ T3613] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  185.248778][ T5618] loop2: detected capacity change from 0 to 256
[  185.294631][ T5618] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x17691978, utbl_chksum : 0xe619d30d)
[  185.346310][ T5613] loop1: detected capacity change from 0 to 40427
[  185.355485][ T5613] F2FS-fs (loop1): Mismatch start address, segment0(512) cp_blkaddr(175702528)
[  185.357110][ T3613] usb 1-1: Using ep0 maxpacket: 16
[  185.368988][ T5613] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  185.392978][ T5613] F2FS-fs (loop1): invalid crc value
[  185.422541][ T5613] F2FS-fs (loop1): Found nat_bits in checkpoint
[  185.499489][ T5613] F2FS-fs (loop1): Cannot turn on quotas: -2 on 0
[  185.504084][ T3613] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  185.518269][ T3613] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  185.528799][ T3613] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  185.548696][ T5613] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  185.548727][ T3613] usb 1-1: New USB device found, idVendor=1770, idProduct=ff00, bcdDevice= 0.00
[  185.565524][ T3613] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  185.571616][ T5613] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[  185.577916][ T3613] usb 1-1: config 0 descriptor??
[  185.661743][ T5616] loop3: detected capacity change from 0 to 32768
[  185.691367][ T3945] syz-executor.1: attempt to access beyond end of device
[  185.691367][ T3945] loop1: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  185.741076][ T5616] XFS (loop3): Mounting V5 Filesystem
[  185.764125][ T5633] loop2: detected capacity change from 0 to 512
[  185.786835][ T5633] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  185.804139][ T5633] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  185.850016][ T5633] EXT4-fs (loop2): orphan cleanup on readonly fs
[  185.858042][ T5616] XFS (loop3): Ending clean mount
[  185.908649][ T5633] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3845: comm syz-executor.2: Allocating blocks 41-42 which overlap fs metadata
[  185.964948][ T4671] XFS (loop3): Unmounting Filesystem
[  186.002704][ T5633] EXT4-fs (loop2): Remounting filesystem read-only
[  186.023495][ T5633] Quota error (device loop2): write_blk: dquota write failed
[  186.036551][ T5633] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  186.060825][ T5633] EXT4-fs error (device loop2): ext4_acquire_dquot:6777: comm syz-executor.2: Failed to acquire dquot type 0
[  186.080743][ T3613] gt683r_led 0003:1770:FF00.0009: unknown main item tag 0x0
[  186.097980][ T5633] EXT4-fs (loop2): 1 truncate cleaned up
[  186.103961][ T3613] gt683r_led 0003:1770:FF00.0009: unknown main item tag 0x0
[  186.114141][ T3613] gt683r_led 0003:1770:FF00.0009: unbalanced collection at end of report description
[  186.151604][ T3613] gt683r_led 0003:1770:FF00.0009: hid parsing failed
[  186.162869][ T3613] gt683r_led: probe of 0003:1770:FF00.0009 failed with error -22
[  186.181430][ T5633] EXT4-fs (loop2): pa ffff8880727a17e0: logic 1, phys. 41, len 23
[  186.190274][ T5633] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4885: group 0, free 22, pa_free 23
[  186.243613][ T5633] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  186.290738][ T3613] usb 1-1: USB disconnect, device number 14
[  186.298157][ T3912] EXT4-fs (loop2): unmounting filesystem.
[  186.563820][ T3615] usb 2-1: new full-speed USB device number 10 using dummy_hcd
[  186.788475][ T5653] loop2: detected capacity change from 0 to 32768
[  186.822363][ T5653] XFS (loop2): Mounting V5 Filesystem
[  186.993951][ T3615] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  187.060626][ T5653] XFS (loop2): Ending clean mount
[  187.071668][ T3615] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 512, setting to 64
[  187.167289][ T3615] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 576, setting to 64
[  187.250920][ T3615] usb 2-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[  187.392354][ T3912] XFS (loop2): Unmounting Filesystem
[  187.485247][ T3615] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  187.503870][ T3615] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  187.512217][ T3615] usb 2-1: SerialNumber: syz
[  187.564315][ T5646] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  187.571677][ T5646] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  187.596292][ T5675] loop4: detected capacity change from 0 to 256
[  187.621418][ T5675] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x17691978, utbl_chksum : 0xe619d30d)
[  187.717566][   T27] usb 1-1: new low-speed USB device number 15 using dummy_hcd
[  187.826942][ T3615] cdc_acm 2-1:1.0: ttyACM0: USB ACM device
[  187.852732][ T3615] usb 2-1: USB disconnect, device number 10
[  188.144145][   T27] usb 1-1: config 32 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 10
[  188.163818][   T27] usb 1-1: New USB device found, idVendor=19b5, idProduct=0021, bcdDevice=98.c7
[  188.183205][   T27] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.256439][ T4182] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  188.473926][   T27] usb 1-1: string descriptor 0 read error: -71
[  188.484287][   T27] hub 1-1:32.0: USB hub found
[  188.522801][ T5686] loop1: detected capacity change from 0 to 512
[  188.531614][ T5686] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  188.544119][   T27] hub 1-1:32.0: config failed, can't read hub descriptor (err -22)
[  188.570851][ T5686] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  188.608566][ T5686] EXT4-fs (loop1): orphan cleanup on readonly fs
[  188.624080][ T4182] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  188.627196][   T27] usb 1-1: USB disconnect, device number 15
[  188.637896][ T4182] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8F has invalid maxpacket 0
[  188.651353][ T4182] usb 3-1: New USB device found, idVendor=05e0, idProduct=2005, bcdDevice=5d.aa
[  188.660595][ T4182] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.669169][ T5686] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3845: comm syz-executor.1: Allocating blocks 41-42 which overlap fs metadata
[  188.672876][ T4182] usb 3-1: config 0 descriptor??
[  188.691326][ T5686] EXT4-fs (loop1): Remounting filesystem read-only
[  188.700459][ T5686] Quota error (device loop1): write_blk: dquota write failed
[  188.709191][ T5686] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  188.719867][ T5686] EXT4-fs error (device loop1): ext4_acquire_dquot:6777: comm syz-executor.1: Failed to acquire dquot type 0
[  188.743493][ T5686] EXT4-fs (loop1): 1 truncate cleaned up
[  188.751420][ T5686] EXT4-fs (loop1): pa ffff8880726c9700: logic 1, phys. 41, len 23
[  188.759714][ T5686] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:4885: group 0, free 22, pa_free 23
[  188.778559][ T5686] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  188.864447][ T3945] EXT4-fs (loop1): unmounting filesystem.
[  188.965489][ T3615] usb 3-1: USB disconnect, device number 10
[  189.188327][ T4224] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  189.443888][ T4224] usb 2-1: Using ep0 maxpacket: 16
[  189.567869][ T4224] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  189.595182][ T4224] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  189.623853][ T4224] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  189.653950][ T4224] usb 2-1: New USB device found, idVendor=1770, idProduct=ff00, bcdDevice= 0.00
[  189.663202][ T4224] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  189.708109][ T4224] usb 2-1: config 0 descriptor??
[  189.754955][ T5701] loop4: detected capacity change from 0 to 32768
[  189.771102][ T5701] XFS (loop4): Mounting V5 Filesystem
[  189.808371][ T5701] XFS (loop4): Ending clean mount
[  189.854546][ T3852] XFS (loop4): Unmounting Filesystem
[  190.003869][ T4370] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  190.185912][ T4224] gt683r_led 0003:1770:FF00.000A: unknown main item tag 0x0
[  190.193315][ T4224] gt683r_led 0003:1770:FF00.000A: unknown main item tag 0x0
[  190.231521][ T4224] gt683r_led 0003:1770:FF00.000A: unbalanced collection at end of report description
[  190.254348][ T4224] gt683r_led 0003:1770:FF00.000A: hid parsing failed
[  190.256784][ T4370] usb 1-1: Using ep0 maxpacket: 8
[  190.261089][ T4224] gt683r_led: probe of 0003:1770:FF00.000A failed with error -22
[  190.412829][ T3615] usb 2-1: USB disconnect, device number 11
[  190.424007][ T4370] usb 1-1: config 168 has an invalid descriptor of length 0, skipping remainder of the config
[  190.443644][ T4370] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  190.461603][ T4370] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  190.471973][ T4370] usb 1-1: config 168 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  190.659578][ T4370] usb 1-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice= 0.6e
[  190.670296][ T4370] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  190.684975][ T4370] usb 1-1: Product: syz
[  190.689450][ T4370] usb 1-1: Manufacturer: syz
[  190.694836][ T4370] usb 1-1: SerialNumber: syz
[  190.923870][   T27] usb 5-1: new low-speed USB device number 11 using dummy_hcd
[  190.944178][ T5707] loop0: detected capacity change from 0 to 64
[  191.055578][ T4370] adutux 1-1:168.0: interrupt endpoints not found
[  191.079635][ T4370] usb 1-1: USB disconnect, device number 16
[  191.126563][ T5738] loop3: detected capacity change from 0 to 128
[  191.135465][ T5738] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  191.194707][ T5734] loop2: detected capacity change from 0 to 40427
[  191.221139][ T5734] F2FS-fs (loop2): invalid crc value
[  191.231107][ T5734] F2FS-fs (loop2): Found nat_bits in checkpoint
[  191.285239][ T5734] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  191.326774][   T27] usb 5-1: config 32 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 10
[  191.353905][   T27] usb 5-1: New USB device found, idVendor=19b5, idProduct=0021, bcdDevice=98.c7
[  191.368963][   T27] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  191.380452][ T3912] syz-executor.2: attempt to access beyond end of device
[  191.380452][ T3912] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  191.674554][   T27] usb 5-1: string descriptor 0 read error: -71
[  191.682279][   T27] hub 5-1:32.0: USB hub found
[  191.764060][   T27] hub 5-1:32.0: config failed, can't read hub descriptor (err -22)
[  191.794755][ T5752] loop0: detected capacity change from 0 to 4096
[  191.822930][ T5752] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512)
[  191.878239][   T27] usb 5-1: USB disconnect, device number 11
[  193.243876][   T27] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  193.523866][   T27] usb 1-1: Using ep0 maxpacket: 16
[  193.586483][ T5775] loop4: detected capacity change from 0 to 32768
[  193.664274][   T27] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  193.685413][   T27] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  193.699961][   T27] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  193.720106][   T27] usb 1-1: New USB device found, idVendor=1770, idProduct=ff00, bcdDevice= 0.00
[  193.730708][   T27] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  193.767541][   T27] usb 1-1: config 0 descriptor??
[  193.789819][ T5788] loop3: detected capacity change from 0 to 256
[  193.959087][ T5793] loop3: detected capacity change from 0 to 512
[  194.029554][ T5796] loop4: detected capacity change from 0 to 2048
[  194.091892][ T5796] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  194.101302][ T5796] ext4 filesystem being mounted at /root/syzkaller-testdir2333785907/syzkaller.H1EbDD/120/bus supports timestamps until 2038 (0x7fffffff)
[  194.184135][ T4370] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  194.189867][ T5810] loop2: detected capacity change from 0 to 128
[  194.197905][ T5796] loop4: detected capacity change from 2048 to 64
[  194.200471][ T5810] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  194.232468][ T1255] ieee802154 phy0 wpan0: encryption failed: -22
[  194.234062][ T5796] syz-executor.4: attempt to access beyond end of device
[  194.234062][ T5796] loop4: rw=2049, sector=1408, nr_sectors = 136 limit=64
[  194.242667][ T1255] ieee802154 phy1 wpan1: encryption failed: -22
[  194.253385][ T5796] EXT4-fs warning (device loop4): ext4_end_bio:347: I/O error 10 writing to inode 19 starting block 176)
[  194.272249][ T5796] Buffer I/O error on device loop4, logical block 176
[  194.281808][ T5796] Buffer I/O error on device loop4, logical block 177
[  194.290557][   T27] gt683r_led 0003:1770:FF00.000B: unknown main item tag 0x0
[  194.304052][   T27] gt683r_led 0003:1770:FF00.000B: unknown main item tag 0x0
[  194.308434][ T5796] Buffer I/O error on device loop4, logical block 178
[  194.314437][   T27] gt683r_led 0003:1770:FF00.000B: unbalanced collection at end of report description
[  194.325098][ T5796] Buffer I/O error on device loop4, logical block 179
[  194.335182][   T27] gt683r_led 0003:1770:FF00.000B: hid parsing failed
[  194.342115][   T27] gt683r_led: probe of 0003:1770:FF00.000B failed with error -22
[  194.357408][ T5796] Buffer I/O error on device loop4, logical block 180
[  194.367513][ T4182] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  194.381704][ T5796] Buffer I/O error on device loop4, logical block 181
[  194.392124][ T5796] Buffer I/O error on device loop4, logical block 182
[  194.407074][ T5796] Buffer I/O error on device loop4, logical block 183
[  194.416543][ T5796] Buffer I/O error on device loop4, logical block 184
[  194.423512][ T5796] Buffer I/O error on device loop4, logical block 185
[  194.507197][   T27] usb 1-1: USB disconnect, device number 17
[  194.529143][ T3852] EXT4-fs (loop4): unmounting filesystem.
[  194.550019][ T5798] kmmpd-loop4: attempt to access beyond end of device
[  194.550019][ T5798] loop4: rw=14337, sector=512, nr_sectors = 8 limit=64
[  194.565251][ T5798] Buffer I/O error on dev loop4, logical block 64, lost sync page write
[  194.613963][ T4370] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30
[  194.632636][ T4370] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  194.644049][ T4370] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  194.654229][ T4370] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[  194.667665][ T4370] usb 2-1: New USB device found, idVendor=044f, idProduct=b653, bcdDevice= 0.00
[  194.677194][ T4370] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.697072][ T4370] usb 2-1: config 0 descriptor??
[  194.742907][ T5812] loop2: detected capacity change from 0 to 32768
[  194.753948][ T4182] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  194.768291][ T4182] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8F has invalid maxpacket 0
[  194.778472][ T4182] usb 4-1: New USB device found, idVendor=05e0, idProduct=2005, bcdDevice=5d.aa
[  194.789146][ T4182] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.799104][ T4182] usb 4-1: config 0 descriptor??
[  194.851673][ T3862] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  194.972925][ T3862] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  195.055587][ T3862] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  195.081623][ T4182] usb 4-1: USB disconnect, device number 16
[  195.136450][ T5817] loop0: detected capacity change from 0 to 128
[  195.152020][ T3862] bond0: (slave netdevsim0): Releasing backup interface
[  195.172863][ T5817] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  195.186504][ T4370] thrustmaster 0003:044F:B653.000C: unbalanced delimiter at end of report description
[  195.205655][ T4370] thrustmaster 0003:044F:B653.000C: parse failed
[  195.212054][ T4370] thrustmaster: probe of 0003:044F:B653.000C failed with error -22
[  195.229707][ T5817] ext4 filesystem being mounted at /root/syzkaller-testdir3119310782/syzkaller.CTSpiF/141/mnt supports timestamps until 2038 (0x7fffffff)
[  195.236231][ T3862] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  195.307904][ T5817] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #2: comm syz-executor.0: No space for directory leaf checksum. Please run e2fsck -D.
[  195.339322][ T5817] EXT4-fs error (device loop0): __ext4_find_entry:1695: inode #2: comm syz-executor.0: checksumming directory block 0
[  195.360104][ T3579] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  195.376175][ T3579] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  195.394113][ T3579] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  195.406727][ T3579] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  195.415150][ T4370] usb 2-1: USB disconnect, device number 12
[  195.421575][ T3579] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  195.429290][ T3579] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  195.443125][ T5822] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #2: comm syz-executor.0: No space for directory leaf checksum. Please run e2fsck -D.
[  195.459442][ T5822] EXT4-fs error (device loop0): __ext4_find_entry:1695: inode #2: comm syz-executor.0: checksumming directory block 0
[  195.511900][ T5823] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #2: comm syz-executor.0: No space for directory leaf checksum. Please run e2fsck -D.
[  195.532550][ T5823] EXT4-fs error (device loop0): __ext4_find_entry:1695: inode #2: comm syz-executor.0: checksumming directory block 0
[  195.598807][ T5817] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #2: comm syz-executor.0: No space for directory leaf checksum. Please run e2fsck -D.
[  195.684042][ T5817] EXT4-fs error (device loop0): __ext4_find_entry:1695: inode #2: comm syz-executor.0: checksumming directory block 0
[  195.712488][ T5822] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #2: comm syz-executor.0: No space for directory leaf checksum. Please run e2fsck -D.
[  195.744059][ T5822] EXT4-fs error (device loop0): __ext4_find_entry:1695: inode #2: comm syz-executor.0: checksumming directory block 0
[  195.776225][ T5823] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #2: comm syz-executor.0: No space for directory leaf checksum. Please run e2fsck -D.
[  195.809788][ T5817] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #2: comm syz-executor.0: No space for directory leaf checksum. Please run e2fsck -D.
[  195.853699][ T5823] EXT4-fs error (device loop0): __ext4_find_entry:1695: inode #2: comm syz-executor.0: checksumming directory block 0
[  195.877953][ T5817] EXT4-fs error (device loop0): __ext4_find_entry:1695: inode #2: comm syz-executor.0: checksumming directory block 0
[  195.947817][ T5834] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #2: comm syz-executor.0: No space for directory leaf checksum. Please run e2fsck -D.
[  196.051421][ T5834] EXT4-fs error (device loop0): __ext4_find_entry:1695: inode #2: comm syz-executor.0: checksumming directory block 0
[  196.053914][ T5817] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #2: comm syz-executor.0: No space for directory leaf checksum. Please run e2fsck -D.
[  196.121415][ T5817] EXT4-fs error (device loop0): htree_dirblock_to_tree:1082: inode #2: comm syz-executor.0: Directory block failed checksum
[  196.125680][ T5820] chnl_net:caif_netlink_parms(): no params data found
[  196.152077][ T5822] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #2: comm syz-executor.0: No space for directory leaf checksum. Please run e2fsck -D.
[  196.174728][ T5822] EXT4-fs error (device loop0): __ext4_find_entry:1695: inode #2: comm syz-executor.0: checksumming directory block 0
[  196.207201][ T5836] kvm: pic: non byte read
[  196.211890][ T5836] kvm: pic: non byte read
[  196.232927][ T5836] kvm: pic: level sensitive irq not supported
[  196.233088][ T5836] kvm: pic: non byte read
[  196.263335][ T5836] kvm: pic: level sensitive irq not supported
[  196.263415][ T5836] kvm: pic: non byte read
[  196.285159][ T5836] kvm: pic: non byte read
[  196.290005][ T5836] kvm: pic: non byte read
[  196.308448][ T3585] Bluetooth: hci2: command 0x0406 tx timeout
[  196.321307][ T5836] kvm: pic: non byte read
[  196.327984][ T5836] kvm: pic: non byte read
[  196.338490][ T3575] EXT4-fs (loop0): unmounting filesystem.
[  196.363147][ T5836] kvm: pic: level sensitive irq not supported
[  196.363222][ T5836] kvm: pic: non byte read
[  196.377481][ T5843] loop1: detected capacity change from 0 to 4096
[  196.378862][ T5836] kvm: pic: level sensitive irq not supported
[  196.390821][ T5836] kvm: pic: non byte read
[  196.417190][ T5843] ntfs: (device loop1): check_mft_mirror(): $MFT and $MFTMirr (record 2) do not match.  Run ntfsfix or chkdsk.
[  196.481732][ T5843] ntfs: (device loop1): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  196.499402][ T5820] bridge0: port 1(bridge_slave_0) entered blocking state
[  196.526046][ T5820] bridge0: port 1(bridge_slave_0) entered disabled state
[  196.530874][ T5843] ntfs: (device loop1): ntfs_read_locked_inode(): $DATA attribute is missing.
[  196.543216][ T5843] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -2.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  196.549553][ T5820] device bridge_slave_0 entered promiscuous mode
[  196.575351][ T5843] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  196.582842][ T5820] bridge0: port 2(bridge_slave_1) entered blocking state
[  196.605622][ T5843] ntfs: volume version 3.1.
[  196.612575][ T5843] ntfs: (device loop1): ntfs_read_locked_inode(): Inode is not in use!
[  196.614403][ T5820] bridge0: port 2(bridge_slave_1) entered disabled state
[  196.626937][ T5843] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0x2 as bad.  Run chkdsk.
[  196.652513][ T5820] device bridge_slave_1 entered promiscuous mode
[  196.654197][ T5843] ntfs: (device loop1): load_system_files(): Failed to load $LogFile.  Will not be able to remount read-write.  Mount in Windows.
[  196.715022][ T5820] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  196.727185][ T5820] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  196.824977][ T5820] team0: Port device team_slave_0 added
[  196.833295][ T5820] team0: Port device team_slave_1 added
[  196.872520][ T5851] loop0: detected capacity change from 0 to 2048
[  196.919252][ T5820] batman_adv: batadv0: Adding interface: batadv_slave_0
[  196.932825][ T5851] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  196.937439][ T5820] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  197.069528][ T5820] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  197.139291][ T5820] batman_adv: batadv0: Adding interface: batadv_slave_1
[  197.173843][ T5820] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  197.211286][ T5820] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  197.272426][ T3575] EXT4-fs (loop0): unmounting filesystem.
[  197.341440][ T5820] device hsr_slave_0 entered promiscuous mode
[  197.359890][ T5820] device hsr_slave_1 entered promiscuous mode
[  197.376306][ T5820] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  197.393864][ T5820] Cannot create hsr debugfs directory
[  197.459470][ T5862] loop0: detected capacity change from 0 to 1024
[  197.472775][ T5862] EXT4-fs: Ignoring removed orlov option
[  197.479307][ T5862] EXT4-fs: Ignoring removed nomblk_io_submit option
[  197.504033][ T3585] Bluetooth: hci0: command tx timeout
[  197.542539][ T5862] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  197.573895][ T4224] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  197.681428][ T3862] device hsr_slave_0 left promiscuous mode
[  197.692388][ T5862] EXT4-fs error (device loop0): get_max_inline_xattr_value_size:69: inode #12: comm syz-executor.0: corrupt xattr in inline inode
[  197.722705][ T3862] device hsr_slave_1 left promiscuous mode
[  197.728383][ T5862] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2213: inode #12: comm syz-executor.0: corrupted in-inode xattr
[  197.753286][ T3862] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  197.777666][ T3862] batman_adv: batadv0: Removing interface: batadv_slave_0
[  197.796961][ T3862] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  197.810614][ T3862] batman_adv: batadv0: Removing interface: batadv_slave_1
[  197.828423][ T4224] usb 3-1: Using ep0 maxpacket: 8
[  197.840864][ T3575] EXT4-fs (loop0): unmounting filesystem.
[  197.842791][ T3862] device bridge_slave_1 left promiscuous mode
[  197.862196][ T3862] bridge0: port 2(bridge_slave_1) entered disabled state
[  197.872298][ T3862] device bridge_slave_0 left promiscuous mode
[  197.879264][ T3862] bridge0: port 1(bridge_slave_0) entered disabled state
[  197.922326][ T5869] netlink: 732 bytes leftover after parsing attributes in process `syz-executor.3'.
[  197.939387][ T3862] device veth1_macvtap left promiscuous mode
[  197.954247][ T4224] usb 3-1: config 168 has an invalid descriptor of length 0, skipping remainder of the config
[  197.968154][ T3862] device veth0_macvtap left promiscuous mode
[  197.977356][ T4224] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  197.994114][ T3862] device veth1_vlan left promiscuous mode
[  198.010482][ T3862] device veth0_vlan left promiscuous mode
[  198.016552][ T4224] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  198.028358][ T4224] usb 3-1: config 168 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  198.194055][ T4224] usb 3-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice= 0.6e
[  198.203190][ T4224] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  198.226551][ T4224] usb 3-1: Product: syz
[  198.230838][ T4224] usb 3-1: Manufacturer: syz
[  198.237523][ T4224] usb 3-1: SerialNumber: syz
[  198.333966][ T4424] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  198.490354][ T5860] loop2: detected capacity change from 0 to 64
[  198.545193][ T4224] adutux 3-1:168.0: interrupt endpoints not found
[  198.554216][ T4224] usb 3-1: USB disconnect, device number 11
[  198.638052][ T3862] team0 (unregistering): Port device team_slave_1 removed
[  198.661807][ T3862] team0 (unregistering): Port device team_slave_0 removed
[  198.678837][ T3862] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  198.689962][ T5885] loop1: detected capacity change from 0 to 2048
[  198.697045][ T3862] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  198.723906][ T3615] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  198.735740][ T5885] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  198.745142][ T4424] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30
[  198.756346][ T4424] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  198.768604][ T4424] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  198.778650][ T4424] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[  198.792450][ T4424] usb 1-1: New USB device found, idVendor=044f, idProduct=b653, bcdDevice= 0.00
[  198.801751][ T4424] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.828232][ T4424] usb 1-1: config 0 descriptor??
[  198.866413][ T3862] bond0 (unregistering): Released all slaves
[  198.906744][ T3945] EXT4-fs (loop1): unmounting filesystem.
[  198.984160][ T3615] usb 4-1: Using ep0 maxpacket: 16
[  199.213674][ T5895] loop2: detected capacity change from 0 to 1024
[  199.221393][ T5895] EXT4-fs: Ignoring removed orlov option
[  199.229452][ T5895] EXT4-fs: Ignoring removed nomblk_io_submit option
[  199.248079][ T3615] usb 4-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  199.257369][ T3615] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  199.268552][ T3615] usb 4-1: Product: syz
[  199.273043][ T3615] usb 4-1: Manufacturer: syz
[  199.301732][ T3615] r8152-cfgselector 4-1: config 0 descriptor??
[  199.315905][ T4424] thrustmaster 0003:044F:B653.000D: unbalanced delimiter at end of report description
[  199.335250][ T4424] thrustmaster 0003:044F:B653.000D: parse failed
[  199.340144][ T5895] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  199.341945][ T4424] thrustmaster: probe of 0003:044F:B653.000D failed with error -22
[  199.449963][ T5899] EXT4-fs error (device loop2): get_max_inline_xattr_value_size:69: inode #12: comm syz-executor.2: corrupt xattr in inline inode
[  199.559625][ T5899] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2213: inode #12: comm syz-executor.2: corrupted in-inode xattr
[  199.584002][ T3585] Bluetooth: hci0: command tx timeout
[  199.590453][   T27] usb 1-1: USB disconnect, device number 18
[  199.715069][ T3912] ==================================================================
[  199.723191][ T3912] BUG: KASAN: use-after-free in ext4_xattr_delete_inode+0xcd0/0xce0
[  199.731234][ T3912] Read of size 4 at addr ffff88805065d000 by task syz-executor.2/3912
[  199.739414][ T3912] 
[  199.741762][ T3912] CPU: 1 PID: 3912 Comm: syz-executor.2 Not tainted 6.1.94-syzkaller #0
[  199.750111][ T3912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  199.760205][ T3912] Call Trace:
[  199.763499][ T3912]  <TASK>
[  199.766449][ T3912]  dump_stack_lvl+0x1e3/0x2cb
[  199.771176][ T3912]  ? nf_tcp_handle_invalid+0x642/0x642
[  199.776667][ T3912]  ? panic+0x764/0x764
[  199.780842][ T3912]  ? _printk+0xd1/0x111
[  199.785016][ T3912]  ? __virt_addr_valid+0x17f/0x520
[  199.790205][ T3912]  ? __virt_addr_valid+0x17f/0x520
[  199.795351][ T3912]  print_report+0x15f/0x4f0
[  199.799882][ T3912]  ? __virt_addr_valid+0x17f/0x520
[  199.805027][ T3912]  ? __virt_addr_valid+0x17f/0x520
[  199.810198][ T3912]  ? __virt_addr_valid+0x44a/0x520
[  199.815688][ T3912]  ? __phys_addr+0xb6/0x170
[  199.820213][ T3912]  ? ext4_xattr_delete_inode+0xcd0/0xce0
[  199.825880][ T3912]  kasan_report+0x136/0x160
[  199.830404][ T3912]  ? ext4_xattr_delete_inode+0xcd0/0xce0
[  199.836166][ T3912]  ext4_xattr_delete_inode+0xcd0/0xce0
[  199.841664][ T3912]  ? ext4_blocks_for_truncate+0x270/0x270
[  199.847413][ T3912]  ? ext4_expand_extra_isize_ea+0x1bb0/0x1bb0
[  199.853511][ T3912]  ? rcu_read_lock_any_held+0xb3/0x160
[  199.859008][ T3912]  ? ext4_inode_is_fast_symlink+0x262/0x390
[  199.864974][ T3912]  ext4_evict_inode+0xc77/0x1150
[  199.869955][ T3912]  ? _raw_spin_unlock+0x24/0x40
[  199.874841][ T3912]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  199.880846][ T3912]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  199.886769][ T3912]  evict+0x2a4/0x620
[  199.890706][ T3912]  vfs_rmdir+0x381/0x4b0
[  199.894983][ T3912]  do_rmdir+0x3a2/0x590
[  199.899168][ T3912]  ? d_delete_notify+0x150/0x150
[  199.904139][ T3912]  ? syscall_enter_from_user_mode+0x2e/0x230
[  199.910180][ T3912]  __x64_sys_unlinkat+0xdc/0xf0
[  199.915068][ T3912]  do_syscall_64+0x3b/0xb0
[  199.919519][ T3912]  ? clear_bhb_loop+0x45/0xa0
[  199.924243][ T3912]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  199.930200][ T3912] RIP: 0033:0x7f455a87c707
[  199.934649][ T3912] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 07 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  199.954283][ T3912] RSP: 002b:00007ffd84937ae8 EFLAGS: 00000207 ORIG_RAX: 0000000000000107
[  199.962727][ T3912] RAX: ffffffffffffffda RBX: 0000000000000065 RCX: 00007f455a87c707
[  199.970729][ T3912] RDX: 0000000000000200 RSI: 00007ffd84938c90 RDI: 00000000ffffff9c
[  199.978735][ T3912] RBP: 00007f455a8d96c6 R08: 0000000000000000 R09: 0000000000000000
[  199.986733][ T3912] R10: 0000000000000100 R11: 0000000000000207 R12: 00007ffd84938c90
[  199.994750][ T3912] R13: 00007f455a8d96c6 R14: 0000000000030a07 R15: 0000000000000008
[  200.002854][ T3912]  </TASK>
[  200.005894][ T3912] 
[  200.008233][ T3912] The buggy address belongs to the physical page:
[  200.014670][ T3912] page:ffffea0001419740 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x5065d
[  200.024846][ T3912] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  200.032006][ T3912] raw: 00fff00000000000 ffffea00013a8248 ffffea0001413c08 0000000000000000
[  200.040623][ T3912] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[  200.049315][ T3912] page dumped because: kasan: bad access detected
[  200.055753][ T3912] page_owner tracks the page as freed
[  200.061133][ T3912] page last allocated via order 0, migratetype Movable, gfp_mask 0x141cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_WRITE), pid 5889, tgid 5888 (syz-executor.1), ts 199043306929, free_ts 199527702576
[  200.080271][ T3912]  post_alloc_hook+0x18d/0x1b0
[  200.085073][ T3912]  get_page_from_freelist+0x31a1/0x3320
[  200.090679][ T3912]  __alloc_pages+0x28d/0x770
[  200.095289][ T3912]  folio_alloc+0x1a/0x50
[  200.099572][ T3912]  filemap_alloc_folio+0xda/0x4f0
[  200.104633][ T3912]  __filemap_get_folio+0x749/0xe80
[  200.109768][ T3912]  pagecache_get_page+0x28/0x250
[  200.114747][ T3912]  ext4_da_write_begin+0x581/0x9c0
[  200.119890][ T3912]  generic_perform_write+0x2fc/0x5e0
[  200.125197][ T3912]  ext4_buffered_write_iter+0x122/0x3a0
[  200.130785][ T3912]  ext4_file_write_iter+0x1d2/0x1880
[  200.136111][ T3912]  vfs_write+0x7ae/0xba0
[  200.140385][ T3912]  ksys_write+0x19c/0x2c0
[  200.144749][ T3912]  do_syscall_64+0x3b/0xb0
[  200.149204][ T3912]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  200.155131][ T3912] page last free stack trace:
[  200.159813][ T3912]  free_unref_page_prepare+0xf63/0x1120
[  200.165378][ T3912]  free_unref_page_list+0x663/0x900
[  200.170595][ T3912]  release_pages+0x2836/0x2b40
[  200.175375][ T3912]  __pagevec_release+0x80/0xf0
[  200.180256][ T3912]  truncate_inode_pages_range+0x48a/0x1340
[  200.186093][ T3912]  ext4_evict_inode+0x39c/0x1150
[  200.191059][ T3912]  evict+0x2a4/0x620
[  200.194983][ T3912]  do_unlinkat+0x509/0x820
[  200.199423][ T3912]  __x64_sys_unlink+0x45/0x50
[  200.204125][ T3912]  do_syscall_64+0x3b/0xb0
[  200.208570][ T3912]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  200.214499][ T3912] 
[  200.216834][ T3912] Memory state around the buggy address:
[  200.222478][ T3912]  ffff88805065cf00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  200.230561][ T3912]  ffff88805065cf80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  200.238646][ T3912] >ffff88805065d000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  200.246718][ T3912]                    ^
[  200.250803][ T3912]  ffff88805065d080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  200.258878][ T3912]  ffff88805065d100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
2024/06/18 17:49:43 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF
[  200.266970][ T3912] ==================================================================
[  200.282925][ T3615] r8152-cfgselector 4-1: Unknown version 0x0000
[  200.332343][ T3615] r8152-cfgselector 4-1: bad CDC descriptors
[  200.394021][ T3615] r8152-cfgselector 4-1: Unknown version 0x0000
[  200.410589][ T3615] r8152-cfgselector 4-1: USB disconnect, device number 17
[  200.422196][ T5906] loop1: detected capacity change from 0 to 2048