last executing test programs:

11.646134022s ago: executing program 2 (id=1768):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x8010)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder1\x00', 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_PKTINFO(r0, 0x10e, 0xc, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sendmsg$can_j1939(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4044000}, 0x26004885)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
sched_setaffinity(0x0, 0x0, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r1, &(0x7f0000009b80)=""/102392, 0x18ff8)
iopl(0x3)
gettid()
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(0xffffffffffffffff, 0x40505331, 0x0)
syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
sendmsg$DEVLINK_CMD_RATE_NEW(0xffffffffffffffff, &(0x7f0000002780)={0x0, 0x0, &(0x7f0000002740)={&(0x7f0000000140)={0x14, 0x0, 0x301, 0x0, 0x0, {0x4e}}, 0x14}}, 0x0)
sendmsg$DEVLINK_CMD_PORT_SET(r0, &(0x7f0000001440)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000010}, 0x4008001)
ioctl$SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f0000000240)=0x3)
ioctl$SNDCTL_DSP_CHANNELS(0xffffffffffffffff, 0xc0045006, 0x0)
ioctl$SNDCTL_DSP_SPEED(r2, 0xc0045002, &(0x7f00000000c0))
read$dsp(r2, &(0x7f00000001c0)=""/95, 0x5f)

11.090944033s ago: executing program 2 (id=1771):
r0 = syz_open_dev$dvb_frontend(&(0x7f0000000080), 0x0, 0x2)
ioctl$FE_SET_PROPERTY(r0, 0x40106f52, &(0x7f0000000040)={0x3b, &(0x7f0000000200)=[{0x20, '\x00', @buffer={"785f629b000bc36e4c47ceeef4e988279ccb9ce37f092b150598374457bf103b", 0x20}, 0x9}]})
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000a00)=ANY=[@ANYBLOB="40000000180015"], 0x40}], 0x1, 0x0, 0x0, 0x40065}, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740), 0x0, 0x810)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000001740)=[{{0x0, 0x0, &(0x7f0000000100)=[{0x0}], 0x1}}], 0x1, 0x24088804)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000300)=[{{&(0x7f0000000280)={0xa, 0x4e20, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000000600)="6a9ee35872dedd3fa3577ce3d64d437abb6e906ee0d0354bcc7edf38e105d37f635fbb3b9c00a3d3bc61866fb3389eff2a0443cf6c38450ce2732419a8329bbe26f4eb1c9edcbf53fb1b0df9c77d6864e90753e3800dff58b9950616473ea1e55b947db3de3ebb8f63edf11ebec9eef2da6b9f545e28273d239534a4682dc23c44a85f64d17bbf41e291f3e3092626f045d8b2b5df6e478729cc88a79aa5f7fe99e374f09c34fe5b63b6dffd256f4ab6ec553520f191b386b290ce1e7fe4c59288afbcafe11869395eaa", 0xca}, {&(0x7f0000002840)="33db2a1949865d5bb1c5bfb13ffb96a1cdad02489f447c9f6e61ae185cf1962c0bee82f04dfd646365d75c057a118bea734fb3f7e5bd047d4c32bf72ead3fa9aca6aeb1cc044533c24edc3e8ec198203ec244cb6b2b79bedc3a8a74e17e85b4c32c0819c4c77dcc823cb4fa659cffc6e8348b875e177f03f4378da4b36ac7df34de2f67398e62f3708bb83c1b0f505aaa85a3422cf0a710a03415896a50197b4a0624542e33fdad43547a88b0fc5d26804a2c8f54e65fbeaae715fbba862f15688e80655f3890ac49ca3ccb40cb2dd711b88d4480d20c760f12c23568c8b5fe181abc11d1f2ab914f875ba85f8355c9d248deef68e71555867160c0161a078f42d6778ee2bcc3015ccb433ff9022b312b620c18e4f4b3824d186e3051adf3a6e0332222108e63f6eda5a1517ee3765ae0677f165fde798d1917a2583aa4b52e67438cf61f0cadd336edf8b5f132d54f4ca42b3d8d39ccba6293913d4f233f29af17bcf049306e43f99ad7c321bacbfa17c2e8d8269e42c5390e279a1a1370c15bec875beb8542823f5ab28abb5d48fd5662bbf3516ef63120e56fffe7d1e86748b788f80ef4deaaaeb0815d8fa04bdd351a00618ff45c64a886de5a7b51408a1d53ce8d4d7c2891492e10d1de29d4e0ef564a859500f97048c1a0b319e1305c1f228882d02a227dea730ce09b1200813bfbf6750800d1bd8d2c264ac6063d4b0fb4cb42c1924a6fac095d848450a00dcc6a827b9d0bcc0131ff3da234568d469f1246848b71bd3dfbe767de19ffe542a0a37317d84bfc63c9449a4cc04446c859f972b77188eb5b7517540b70c5a0701c78ca108c09aadd28a91278cb6633d88cff45cfd5e30f87d6be9eb53cf89d5c047f3c36f490fa652a148c5d824b2d9cb8ffe1edb80cd48922aede8f3b22d21806572bf5b7bbcd27555b41e137eb06e5a3f514780796a2c8700d13eeb1800227298d82e42388a3aad5293562cc05650ef93d23d5290dc0de915d8143f76b2838cea8db2ca4cc802cd8d6d2c43c95f919bf0ebd7403f8047a0c010dcbc26a4bead1b274b573773ad2a2000c7730b49d5a97505024b905be151207a4d737233ccd853c4420391150e546b205181aa376088c5ccfe1b42da805cb6eca7e7d622daeff2c66d75697f7cc50ce2cc096cfedfd5d6cc5551a83dd3beb24ecf9c0160e190138e8eb9e86de71ccd5d76a258844e34683f7accd5f0b07a87be90b7ae6976f4a89183ab489754c9034eee063309f8d8f36914cc56887e80acb660b40f8960df4280641cc2199fd90d4f71923f041396b834d3af2558f04055e1133140d3a4399cf32a1a1d441056c114a5311f0a9a13ee68ddc1481ccad45bcec671d980f8cc1e2155a637bd2f9dcc8f7ab57683c841545f4c6a1e75ebf778b518e2185935f7c6b020ee30a29355f6bf0e5adaac184a25aba83aa5221d983235d8c277c81c26497c1d019056a56abf062203887bd4a1143b991ac51b2aa136793e331ef84556ec6d254e2adadf0d77c21d46fadbe3cd187bf36f18905e24f6dbeb7e2a75119f943d1cd55ec316a58116fb2f00d511ddddc7baa8dd8e67a7b2a6a5bcac586115dd8ff84a899503d06d62e1d51f82d2681811da3ac71c76133f81308e048734030f24e6988b1cc512c9518365f87c0f00776ef77cab78d0f04f4d077dec4705da22593d934ad32b7bd17c6dc9957d5b742ef8f0894b15c27c3fac6775bbf4cbe107b1d726d1ef6f6b1d20a7ea23b34b87cb3dfcd5747f4f598bb4832de298032db313bbc727f1ea41ac96c8979387b375490e3199585d2a932734ab265afc1fb12253ede0c5dfcf702c88619919c8b8aff987ceaddd9e40bb43d34599b50b07bf2fc605e5e2c8e8b70e63bc0893af943641c3ae65cf717aa01d537e44eab989fff563d22be3c6ba7e25bd4ef6c8001e87a59788ac3140143620cf8a6e62cdad64a11fca4bbdece3d3c8032850f40de027e2dbaa3b250af2babc1549b8f8fa72c52e868743ba43e183f50c8b9d8ce45d0acf64758fd65edb776199ee84c6da0d228e0627e0ea92949e4dc6ef5f023b7c6e1a9d261384fa4db33962341c330b710405b1a339209fdfc6cb2eb29a7fb3ccbe4a1c7e2daf4f6f1c227ed4b77384938d082f59bfee13585ca9fc46c232f62ebb6287c3e02018313f22c0c8096a37c1506873294ede68b3eba8cc66ca31f40f0d19ff1536fd8fb42b3ff2fa3b191194d6d04e2d056b0c3c0c4abd88bc1c7e4c5b1e7b31245acebf616d2746d461c8a75ae762b2df0862c7705f2cad59f00303afaa9d9e774d005eecb3fe80c5bee4266703c2981803d7aad43c42d312e9376fc2a03b3a9067e88e1a4c063646493a63cc95082ad51505176a7dda5b4493dbc78a4021f6a0d31868d75ee08bb6129e84f247eb3ad352ec045c8d5dc8ee5ad7b7eae948ae056f523a4745f3839cb763505afe12e8b0a988caba151b38549e06738a15dfec6a5597b31f47fbbcb622b4b6dce331b50a4a7561396da5e3cd3383840afc00ac0537bf03a8aab179330a38d15115a01b0db44c9302bc908a5d86c5acef4859fc7464a0e4f2970f4221bffdd617bff126e6256cfbd24be7dc1eee65996013cd23a184ba66c7c0cdeb6b551fab006fda43591645106cf836bed95c143df06918fc0a3c32f6eea50a5208550fb42503987e64571d718b751597998d76941feed27076b64492eea782db891df0f69e89a6211d584f9f9c7d090ec9f6dd70a590436dfa4790a534bdfc1f46fd1ddbbcee124cd9668d968d95add753b630262989cf986b146722242b17cb2bbb083b590ab4946cf25326024a6d4377a9988a3335a84e0eba9c4287cf5fd3304e11cba1119c22a6ae371aa82cd398499a80be864159c08b6925ecc3d25b2aa9a841a5131123e09697cc5e516e9a117b6e86a6ebee3bb39f0801ffcc65f1acbd69f8cab1a1ec921d144366af2049aac2d58cbc20333d1fd63695891d50209e50a281f3a1906d8d12b5dd1610c307901d6283db0e8833bb63714785332cc03f28111d64a6649267da73ef1d9ebb0bd584fd651cce2518ce7bf40c48b07d6f50b1aa224d656d1cd8db83f250ddac303ff8076a4c151abacb7ceb18b10cc3c3de6f929d3858074223765d0e0005606b550f4a00cc855a8d8a99dac57a4a8b15729638dd982aec22e79c42bf3b5f67fe2ab4632acadc954444fb54806d730880b48cb10d641f3b607e6413d106c0622ba4670c169c0bc3073cf6bf160e7989b78aaae81e7306727c2d13776d827a209a4a84805f2b8f5bbf2950e9d213a344f236c9dfbfe0a4fed7eb5d27d3bb15e89d454bc3dc83df918e57e8b4c763aeabdd00cd768b69a052e848694b97cef6c333eed2d3278cefa13c73c4d1b886c1c23c3a9a5533d4f0aea3416fb0054a42c3b61ec6eebd0cadff6106cc7b58e2b5aefd2d9482d37cdbc04cfff4e8efde9397598d3f164483613391be5d96eab911ab979c9418b26abcf05d14e1c1fc84a943829d3a84d08ea171034c60a953fca50fb373aa1ffe26cf1ed8f1e2b64b50f05f22af000ccdfc87fc5d999ee0d5ade3e1438747a55ac95482b6619c4bf41dea7d164aaa6922b2f563a95ac5f4b906c3bc8172a184e7d28a1e10e0a38455a4a326610b41da0e48fcd60be7417b9a92ad92ecc6068dbcb93543f02c1ca310d45d118869e06169f2164d4ce5a6f96a5b8b75bbcd945c8f7e947cb435051fcf6f8f8244269b4d3412aaf91374b18f385ba052eedd9613793a9d1382d30b912f0af55bd3b7a821fb1fc32c62434970afd2af33707487beb86fae9a927e1a10e20803ff58bf02213ff4b019df223589710d2fb436a930c009e513cec0a3733badfb7c183bb4fe18f3c1f3efabc18629462fb16a82aaae57e976f233d8debf50c6f2b7b1e53870103bcd4ce8ed53e5effffccd5fb0d45a235a326aa3d4381d9031b25913203b8eb2f170e30f4e324db5fd01e0ae5b86dd48a27aba37871fb7d3f4be672f1191bca2516d2c17a9aaba68ffa02fb999f7441e7238341fbea72a00b7f9f9acbca02a3157984f7a88ec809c1083dddec5151bedc6892d77cbb0f878ff2bbdb61922daaaf99a419bb9aaf41c2e49f9470dee0fbac03b84272626eb1e11b37b3b9d735df63f08965d3cd2bcdda5d34fe7919c976702a01d9a18bf6b1d2cc5ba4d78bb38634198003cf17a33e17391b3e0ff25368e8adf469861496dcd5868d163a2087c584df9874f4185752cc16ebdb852d60932ece37096301a718b7489f3688848996b649775533aa55918327ca1b5de7abb448c178d98e7e13cd4ce939326edefeb9ea6bb65fb6131cf0749425df1afb553411dad6041232ff4493aa644624b960badd643ebbd84e7c80bcf9acd1aa3bcb0bac9208b05098c6005b8", 0xc36}], 0x2, &(0x7f0000000b40)}}], 0x1, 0x4000081)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

9.479826634s ago: executing program 1 (id=1775):
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8000}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_getparam(0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
eventfd(0xfffffff9)
r1 = openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240))
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, 0x0)
sendmsg$TCPDIAG_GETSOCK(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="4c0000001200010003950000000100000a090000400100"], 0x4c}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
getsockname$packet(r2, 0x0, &(0x7f0000000200))
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)

8.781978663s ago: executing program 2 (id=1776):
r0 = socket$kcm(0x2, 0x200000000000001, 0x106)
shutdown(r0, 0x1)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
pipe2$9p(&(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x800)
write$P9_RXATTRWALK(r1, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x6)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)}, {0x0}], 0x2)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r3 = add_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000280)={'syz', 0x1}, &(0x7f00000002c0)="1d", 0xfe3a, 0xfffffffffffffffe)
keyctl$read(0xb, r3, &(0x7f0000001300)=""/4096, 0xffffffffffffffd2)
mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x5, 0x10, 0xffffffffffffffff, 0xa7deb000)
ioctl$EXT4_IOC_GETFSUUID(0xffffffffffffffff, 0x8008662c, &(0x7f0000000140))
r4 = fsopen(&(0x7f0000000240)='pvfs2\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000b40)='source', 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x4001, @loopback}, 0x10, 0x0, 0x0, 0x0, 0x0, 0xa7}, 0x30004084)
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x2)

8.040676395s ago: executing program 1 (id=1779):
r0 = socket$alg(0x26, 0x5, 0x0)
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYRES16, @ANYBLOB="050000"], 0x70}, 0x1, 0x0, 0x0, 0x20004090}, 0x0)
keyctl$dh_compute(0x17, &(0x7f0000000140), &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
getpid()
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000340)={<r1=>0x0}, &(0x7f0000000380)=0xc)
capget(&(0x7f0000000000)={0x20071026, r1}, &(0x7f00000000c0)={0x192c0, 0x3, 0x3ff, 0xfffffffa, 0xb88, 0x2})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x20042, 0x0)
dup(0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000004c0)={0x7, 0x800000000000008a}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
mount(&(0x7f0000000000)=@nullb, &(0x7f0000000080)='./cgroup\x00', &(0x7f00000000c0)='gfs2\x00', 0x10, 0x0)

7.979506419s ago: executing program 2 (id=1780):
socketpair$unix(0x1, 0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bd2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
io_setup(0x200, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000002b40)='net/udp6\x00')
quotactl_fd$Q_QUOTAOFF(r3, 0xffffffff80000302, 0x0, 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r4}, 0x4)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x10, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0x1}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r4}}]}, &(0x7f0000000080)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r5, 0x0, 0xe, 0x0, &(0x7f0000009f80)="c674015814a875ec92e8793fce1d", 0x0, 0x130000b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x27)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

7.826198977s ago: executing program 3 (id=1781):
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
ioctl$TUNSETLINK(r0, 0x400454cd, 0x306)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup(r1)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="00000009ffffffffffffbbbbbbbbbbbb0806000108000604"], 0x7b)

6.19950459s ago: executing program 2 (id=1782):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x808003, &(0x7f0000000000), 0x1, 0x508, &(0x7f0000000400)="$eJzs3c9vG1kdAPDvOHE22U1JFjgsK7EbIVbdFdRONuxuxGF3kRCcKgHLPYTEiaI4cRQ72ybqIRVnhIQQILjAiQsSfwAS6p+AkCrBvUIIVEFbDhwKRmOPW69rJ6nqH2ny+UjTefPmx/f7pvKzn2fiCeDCmouIDyNiLCLeioiZrH4iInJp4ag5pdvdv3djNZ2SqNc/+mcSSVbXOlaSzV/KdpuMiO98M+L7SdKsaFM9ONxaKZdLe9lysba9W6weHF7Z3F7ZKG2UdhYXF95dem/pnaX5vrX1/a//7ac/+s033v/Dl6/dWf7Hmy+0r2tvR6bej5jNc5JvnIuW8YjY68fBz4CxrD3502ycDD4fAACOl37G/3REfCEiHvxi1NkAAAAAg1D/YDoeJhF1AAAA4NzKRcR0JLlCdi/AdORyhULzHt7PxgdRrlRrX1qv7O+spesiZiOfW98sl+aze4VnI5+kywuN8uPltzuWFyPi5Yj4ycxUY7mwWimvjfrLDwAAALgg0nH+dK5ZTmf/nmmO/wEAAIBzZnbUCQAAAAADZ/wPAAAA59+T4/+55iwZH34yAAAAQL996+rVdKq3nn+99vHB/lbl4ytrpepWYXt/tbBa2dstbFQqG43f7Ns+6XjlSmX3K7Gzf71YK1VrxerB4fJ2ZX+nttx4rvdy6VTPiQYAAAD66uXXb/0liYijr041ptREts5YHc633NNtngwqD2D4xkadADAybvCFi8vrHzhpYD85pDwAAIDBufy5R9f/p6Lt+v+lO67/w3n3lNf/gXOk1/X/q9NDTgQYuo7rf7861U4P64NJBhgqY3zgpO8Bel7//2P/cwEAAAZjujEluUI2BpiOXK5QiLjUeCxAPlnfLJfmI+JTEfHnmfwL6fLCqJMGAAAAAAAAAAAAAAAAAAAAAAAAgOdMvZ5EHQAAADjXInJ/TyIiicmImS8+8dTfieQ/M415RFz75Uc/u75Sq+0tpPX/elRf+3lW//YovsEAAAAAOrXG6a1xPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD00/17N1ZbU1v1G4OOe/drETHbLf54TDbmk5GPiBcfJDHetl8SEWN9iH90MyJe6RY/SdOK2SyLzvi5iJgacfyX+hAfLrJbaf/zYbfXXy7m4nEn0/n6G8+mZ3V3rlf/l3vU/4316P8unXDsiWz+6u3fFXvGvxnx6nj3/qcVf+IZ+9/vfffwsNe6+q8jLnd9/0k+EatY294tVg8Or2xur2yUNko7i4sL7y69t/TO0nxxfbNcyv7tGuPHn//9/45r/4s94s9m7U862580c6rXux/z9Y7l/96+fu8z3TZMIu7+MCt3+f9/pVf87Ny/kb0PpOsvt8pHzXK71377p9eOa/9aj/ZPHhM/rXuz10E7vPXtH/y1Wcqfcg8AYJCqB4dbK+Vyae95L6SNGWyI/JDbNXcGzuoFKLRGUWcln7NSGG2/BAAA9N/jD/2jzgQAAAAAAAAAAAAAAAAAAAAurtbf/7d+y3kQPyfWHm+yVUiSobcVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOA4/w8AAP//Fe7QbQ==")
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000200)=ANY=[@ANYBLOB="1201410130f56920ac05190272f00102030109021b00010000100009045507010349020009"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000580)={0x84, &(0x7f0000000340)=ANY=[@ANYBLOB='\x00N\b'], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0x40, &(0x7f0000000640)=ANY=[])
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)

6.1887665s ago: executing program 3 (id=1783):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_i', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0xe0000000, 0x564b043a, 0x83, 0xffff, 0x5, 0x2, 0x0, 0x0, 0x80, 0x80000001}}, 0x50)
lgetxattr(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)=ANY=[@ANYBLOB='ce'], 0x0, 0x0)
syz_fuse_handle_req(r0, &(0x7f0000006340)="7c7a6a069306f2c5ddf91f36944f207a1bd11284b4445fa3507bbc5def2e6fec4bb7c6001eafe381e277221f30085acd5d0c251f7c60c23874c04db6aa516f773dd2e57e746d1a085193c8b7664fceb1fe764d87f4395c66e5d4eee443a555692ebe80f3a11b8be74963f1a18c1d0cd71dec65e609e065e14615d2e8b283e55b4aa8b485f81ce52443d61fac9f08cf34f2997c05a63f98f988cfcea9a5650b37dff5817e5033b3912c226bd9bf68b528dec710584242fbdcf7dd0d55e394d3742039e6960bb589fb9ba18ac8e9e82cdbd08e9b584d0a8224cae3e9dd91e25699549007dc0d99165a73cda1c99fc48f6bfdb900c60e4481222505c58cc1108fbaf317d361d1f2d78f6db6e14b283ca9f1927f4f8a0f6f52818be03c7b257aec57f06a0a4279131a2bb0a13b23ab188ea50a686abb2f7e4d0f7a166f358e4cb886b7fbdf51cd9a153410dcc4cc5db7e8e94cc9ba2371a328480ad20f51d7fa012f367a0a8f9c882c47b5f714f0e1b35f72b2261989513c1428d648aa8ab8c12c87dfea38d5be0d49097fce804c9cd2ac8f61b68579853129351e3bcdbdae3371d2b12a150d94b3097161c226c50a1d2c1f8b4c10a986e21dbbb854ad1d26d0ce5d950835d14664ee8f58c537f5256b761b4707fe8d46cc1658798d285310a1cff127b1280cab3f1f633569391d5a7cc08aa1d108b93c38df397d90bbb81753930934df7dcaf8f960dff660fe239aa15cf48872668cacf4d664dc0809fe9d780ab202c3a968abb56655267c907eb3343809b2407105a5c14d53a3b17a9a1552314d27e13daf48a2bb7b2c9fc15aba9ae1d6325c11fbe8432c067efa72878ca56c6463b6cf4d29646905422908a4a1f7741d0049febed4fc2b7cc27154031e50a0ab297826383935bef6a0f968db92128e8a940509b5368146bdcacc852b9d0b4ae9624635f9e69f3a7bc8e6f3340c7de46f49feb20a46f11aef464fa6696a60865bdd0c40b1c411c9661fa9f6393a33a7eb4afaef3eb1ab4634a42baeea780ac6c0c4fc8cf7a92cf0592f993ac85bdfd6c18ba4b7cf4c4438a8330413de8365b4a080234f59edefca0c5ce9697b20cc7b71d04438c00cf3d557bd03b5e1b86e167d2d6e09714135ef720667d0f2e7ca54da419d1bf6722eda31381059216009cd8c99ba1d7f9ebc1bc021457a195fa5be2f0727a84cf4cac5e080f22c836a4955d5ed06bee2eec0d39abc5f459ac43596fee3b341dfbd7ce6f4e57ea42e1e8d4f65880b8b77d2ee27dc1efe95ff1bacf5aa14933456b68645380d0f2ef6284b9946857456d64f4cb656998e99e3e286f596b31c69a69d0ee8444ed838ca2f0ead1be9538e4e927239d0e65a3f871dcad33881f69592eed93a9fafc934aefa67bb87d582d0ae4cfbb5c50325774bbc259a277749751228d3610f95fd56e9fbccb288eca1b14c8255b6996a59c91efbb08440ed91cdd53b0aab82600906904cee2a117a06157e24fa822e1cf4f9db4c2e8a5e842cfc503e578e69002fbae194b6bc7c8b69aac7359292109b712eb49d21946f5ea2745ab77ef59950dcfd926df2aef20e85f2a14554aabb417f15c725c73edd4853926ad6c525afa2c65de213cee799c18d1ced9424d10d7076fc5862579702a5f91031381f41cb8d9899ab514cfa1c8c51437df9710271d8cf69e8900921cba296703f1a7b5234500c1625884fea594d836a930b06142a6e577cd9c2a32cae65e712624abeeffc423a5d5ed7bd75fcb1a82ecec8acd0da9918a5c7c189f14f8cdf37062f93b87f9188501556060ffc6eac435cb1624f2af688316366e03cfb869eacf83d9d45fce910c3347f810b614c2e4291e70471ca2b574241c3f3d9740c6a45c7296a2f275acbde72e513ef4e5a1123a57c2eb1bd023af716c16a7747204338f60b6e3ac514af50b21952c21592aefb6149828a5183ba581d5ee8647f374645ff941bab67bef760ce353b456c4b51c5d3a0c5372b1773b944ad67a92937dd838e1b6f550a1dca975d6230e430bcc278afed54e0621008b2f850107b0244359e3747be5282630452d432e5df0fd160795effed150f9396a7da5a1e4dce0c8f62280ff2fbfaa813859a671208b4b9f05fe450729b0efad83a790acd688a90e5fee5550de4ddeac70ecd125ad076c4e2b68652e6ea520e2b6b339b4b9dc219d853e06b9aa79d022e53607213fc254e15ec3e6b776d2b562997e0fe52b98c58e1c0316b22a4219460053da87e7baff7dc1892c2de2f324dd1169b977f3a6698d0234c78de3e46ba5824f3e373f264e8d28fbb4cc108a41fdecd4b629d92b0a65f84366bf504eb5a894ba40c89f9df854dc469fa174ac85cb8d2adfdc099ca9848a1032b2e2f375bd1544dfb69e33492e1a4b921ad7ff17c4c7e357ff69f42d2301c302ee2ed313f0e9a20ebfe028a8737d6e38bf179940179cb779b70c2276264cb4f23249db7d5f179baa842b70f5b287cf74ce1ff6b70a56be8f2fe15aeadca229804923d28a793838bc605eaf5dcd362f757577ebdac54b09fd73326720d3522d002a41a3b5f2450f48286a5ea45836b5ee77fc415f47e0716049ec2610d607737fd5a73b066b4876f9d744f6b3486b088dd3bfc3d393a27c6c799ce078e2ee348257b5ec1ba9de76da2a67ca912dc2dd5afc70834ceecbb8bd41f6e790294cacd5891bef1b4e2124dcd6dffdedee8f16b3bddc030429dcb0f98e6fe0649cb14eed3293fa4933b2ab8c0ec0ff4dbbced1e32dceb317252e715b872b00478cbd7b0275b7394a0ccfe9887410b32f1ce9266b3b83470ec982cf908507d3ad0cc366bff3759388b624701b3e0dc0e7928386b155b50b42a8e352622516beeeddfb79866a2eb1d360802cd19d62fd171267a0fece5f54e315a8cd49c41072f2a7a0baab5aadae2c1ff28e285b642f8d3869321bd18b4aed107feaa12d055b179a8ab7b50e2796d287a196e280d527b526c45c8aa98696d88a02d923d06fedf51336c0695c218e70448073921971093ea44b5352e10ce6cec26d082b93f69958165bd986f56650a62224c2d9fd044bd8fefd33544c6bd141b4cc211a087fa57c09e195c8edffe559048db738d1395f5e2625dd7cd035b8c76aad6c238fb52a7c5ff0965fc7122a5899746ca88abd699d6078623722fff92726e18613519f2b1927504fd5cb7a38ffa373c3883022f0387953530834affb5f05e0f44c24caa75561b2b63994493ab857fdc30900586fed09298d846e5936869b43d81c4b91902028e57a8f2da16355ccb7a77d29ecc8e66015e979b2f3edc5b8d77c45348dea55c9ed6b7465acf899f4bc1a7edcae0b0daf69ff85c504eea1294620b6d3dbb004575044a5ae7c110010c2cf39827fbdab3b42ac35d147fc53bb5e7de6c47091dc80c14b8da494b2e913d1a52085e29af19edc4a417346c5a896a3851cb6132511e0627d190b77623c8a3bb6085eff22ede7127f7988a1d388fb70ea20d5c1b2424c5aa83532bc5162a5d177968b4a46583f2d4b92d04a5f19145221aeaf724d92ea1d4dfb53021b47585bbe5ce35f8d09a83e13fdb1de8e52dc646d41e810879ce9c830959c3ee93f11a16d030d141863244395e3f847505fe6d9594a34009fec9a743c033b9793335684cc5c3d0eb0ad094f40a60264b02cd88c583c850d99c5b9c6c5dcef467ca3ea38f2aa42f5657cd940aeb12960efa18d571e4f958b9cd90918e069a486d84f214617ce29c0f2c26bf84f12f5036f26a8de0c8359f572654bf5ee06d38f741c464976d95ae3fdda45c2ed2d08ef71d3590e82d235e0fa357c568158791a195d4a2d9615e1edc85be64cfd169f925ffc4f636f86783cf43624a77bdb9b172228097f02f391df00668dafbd9932298b23cfadfd1b8d14a25cb408a440f930f0813de73c1eb2eb4b3c802d718a672453d0038965c6dc98db96fb4e06f1fda72782d0839d4e8b477ebdb2c73510db44f643ec7dc4fcb837806853caa35cf622aff9d44381d3f7adae00650cbb6f0334ceca14ec982dfb5817d7fd49251c203b6463a09c14885f754603291ccf0a7ceaa57284ee751774fa5ad72f9f7a32fa542947af40601e98057895f2869d4ec2db0d73930962535fc9e12ba7e6777cb458592bee505b367012ebd27b256fa0fac1452cf3b28eab573549b7c7a13752ca0189768f738d5f8030fe999f7bdc466d67bb32937ae469f1a1e21fac2ae2ab92a0a260bf0e9ce20625e82f88d0ed4d13876aed768765d77433bb9137d92d622df502aef574de82fe28063128fe5a1787ced99734c2f3f221e80d3baefd367d01d950ee1bc981b4b5ff86b2a96ab78fa3c1201303cab473103d89bb185afc77dd2cb7ac1564045036fe9fcf85af5d73a7553bc45bf5e221564540982db2f81e612e7c1715d3498b8d7851c0160146d6eaae9e30c81dedfca8e7122fcb69b26b396629b723f1e1822b8d5d8f2ac583728a5ab40010f88aa42f37f2031a3e99d8d6661e63f86f65af521066ea6af89c89e1748521b8368cd03409e895a941025ee777653f55e66cd1a0cca21308666260c3b9a306ddadb322eb1d09f7b27fd570cd35b6ec88bb391e3ae4745e17fb4dd7aef1d75b4ebb91e6e7789b241566d7c0cc97a3a126ed50b0cb621e015414f62641afd85bad78470463f86d8287aa56d331911c23c4cae8e5dfea33f3789c03d61f51c590417b5ff9f1aa35ab6a15364296c5f9399216ce565210a4075ac5e43e916850774a127f9174d95b43d839e056b4a7d679bb8804951ca171c0b59f4d6f32c4fe8f908b9a1614591f5d1e1cf3348e02317ec4655c693417a4c4e7007a8db02faa1634f8eea9c9bbe5b149ce2279953a54884392dc7251dd38670fd59d9d1da5203340909d50f779e864339014bcb545d825cdcccedc558a1d01a2784b8f499ce9fa2ddb0dd1dc0b93d1b282a96cb4ecf152474dbc4b2853b30c8e5fcea85bdab949f5eb1e98d81c102c349f680230082db5aba9e20209c35b16598507d28211b49763b598a7e60519d5b28b67c027cb2657cf2ac7c7455291fcfe63f0b43afcd3afaea934da97c209d02e5b47a686c1c284aeee5d662fd9d9be7c576259d9f1a36fc0f7fe329a1da1dbe078381233940745fc28a56db98b1a8442325168158e3f0b3cbf8a368d19dd20cdfc1c4f3893a30a49223050159b0bb8b7c59ca705ae25453988d87ca6cdd2bd2fe37847ba67cbcf7a494925a8598b7b50a741c9ced10ea08e35c422b79265561a07f40ebb89bc46069a1c1ad95949fe757a76ff6b5386a043abc967c367a9d86b54d374e573540dfc1f6d396f398abe9735f523b778fd124ac1e1eb832a66dd4b1838a50e6a4eb1b95b8a60a94f067b24d1194976c539d5ec287a261bf25904575be3ff49e7411a8dc09739649828124c14fc2b89dad1f3f5725db2e45f5a447cd3e4bdf9e1e95c5ad7c76fcf0c1021cb6c32e6985e1d113030d534eecb0dff2554183ee18da2da5d21a8b994a81f05e0e6ae89b20bffb4be333d1956270da23e9905830921b1f3d615a56a20b11d45ccd1d22b910e33f475a92c31fa5b4675ddee18336d0ee7b75c07df2a9d4ad53d83142219a00aef15e1e9dace0f039d63a530fdf671a54aba3882dad0d439632af5576726c3aa095cc1a0a03063e8a6581b78bef501acc24b05a0150d8f683c90e8e5e283a49f898906dab926e544ead48cb9bf9a6e1bf140b5273443b8cb8166b2d8a5464a3e9d9f4246ac81ea91b33a0b399dde9f5efaf792bb04cfa028f40b7c92db2d9c33e16ef58b9263350879ea94e581a1187b2d1931b1cd7606a76bd8943b7c3098a33bdf476960af7bdf2854b1336e72feb603b8bb2242df0839d157843d369a50a615068ff5d99ecebe8dc19158a6c654e853cedf860a727bf8140c062f5d307fdcd150ad0af03d2c3a913b91047858ed6382d2d2d30f5c0bd419c2cd4047f225107ea8bf4a3a69384f16b5b5bb2655bdb750db4e975794592987df95f6a90374b0a08769b2c957faa16a21270196afba76b4527f01f0c5db7fa16e2da81fc49336e20bc3ee1ccbcb62255c84513d9ceb706f03c25000517070c03b7bce838e6b6cbc7f767959fbd62e11ab7ea6d760cff674a4296e6185eb348028b472290922160f3ea36c22c8375a016f505017c0a0e041dd8e52b4f19ccfc701109a19391a059d77db239d40a06d84a6f0ccd08aaad764e53ad1da19ee825a4d25ca7cd538289bffe135486ec1614e28b3682c7081a1b0a2c7272f4e36f6d0d9e68d84209126dc59312d48eed1c63c90efeadd472259392c28746abf394c5c6c97d3fb00b70a74c313a817ee1719c33f16d58f297fc7eacbca5803df115745079c5434e851ad6c1f0e8ba0bdbb66cbb6789b89a23526b476ad0f2cea0907e72702f93d37bdfe7b39fb9b33fb1111e58f5c45db8cc38afe4e03a318aa0690afb870a67aeda7da9640fdad1e1f551dd4757c69b4f523b616e502514a2e35495916f2e5ddab1ad9534644d99ec56e818caba173773aa5e45104deb869b23063eaea5542d3bc503a6948b83779aa46879443cad02477451b46429f1f67560c31d4377f96031ab94866a73be753c4ab91cc6576c3991c3423103ebae604e887c56cbacb9e95b8b46300b62e698a6456a0d175cf682eacabbe301e0b0ea34f963daed0dc6c1b75fa5e3870959913e69e61911d9ff646e9c6bab33fe566871027e861577c4d7fdfdf94ce7ac1a3f6d29daf28d660431a89c0b56c4b95090e2ca5df62c1e5c5dbf98f067751819d4c5914aa33883b7b521aab30d14e1cfae74fcf3ad4b2cf9448009d3223ad984e0c50f92d465573a6fc2894f8a5d4e855316738ecfd6a6c157d39b5c44d80a7cba944cf9f7a701899859821cf2bc248459f7a350fefba53c1481a7197f024f2eb74251455c06f4b82dfcf3ccf3e3b98b898fa1b16c310125e5e9fd4019acccbe91b4d842ddd52ee56f6d3112dec80159d6d3ef93bca70e7afcccb223361c39addbe3c429934cd0ae35f36a8f6309f08e36b27341db1f21fd8a148b239361b31a85f53bd1ad49fadace6c64d5f4363427fb2f268e8aec6d81cdb7f1252baa4652dc55881661114bf98cdf17190379591f0e22dc97e790f53f463bbb0ad0ead78ddf7dfe2e26052acc31cfe52b822afd5ec5c75957106cb5c368c09252ff3e4f624d90e599279fb985ecdb7d8880dfe05ac2d2da83e34e2b9b88f5dd60107a4509902fcddf4a36605e5c7a2606a4aea9fd4b5b24ca6b67d6945d133869cf9276d8c30b08c2a9f4bf03f4e0b956fd5f3c80b958ac5c41e4115b6708799c3102bd8b6c7fe17ff8c3f89c7437255faf69d1e16074086dd44d038bc0211ac74743169b462dbc085d77bf45eea72bf8348308bf48feea02d739a0fee9fbf71023ef8c6828da1aec8618cc2345ff663f88bc52a990e6b9591425435b0c7900ea4068f5aa6345e94254e259a71290fa23281658a6a165d1dee10dcb355518264824665ff2c5538de9ae4487782911f79e0bb09bc2c2d8e0d91b33cbec839075c9b38c848e9d2fad7368e96c1932042c3e85fd95b7d4500e6cae9e649082e9d5ca6f2cf91fc7ecaccc1049525d4325003424cacbd6eb5b8cc30b6893bd1ef46a8e7cbcc87dc2dda5c802ef1f8bb607c7457eb161254dc0feb60ed5ed0383fdb4db91d7e41d45c8eb80c1981e801ef05703f97f8710a2e00eb0559f854f700f946937b9e68c75ad6d0015d5d79be5423d0d846bc76f92ea7ebb0302b3d3c695c0aafa83b2bf029a444709cbf2cefbdcc7eaf3dd7a16f8ca8c861e883db10d433f7fec547be45e6829962e430bb3c93e8cdfb342c1cb7e53d8a6ea625d5574c4b4303f61c4338a658e652ab2bc0029c0a78a5114f495a439956909cf42128cb4348affbecb20b7fea98e22160e9a58e7666a00e7b37fbec4bd3860d66a39d1232a57e8cc50710c5c666f7efa98f16f9a02d843c94b0842a383945d06899998ff2fd01ffb58ab53ea89b2c93634c48d0420edb9791b8e451b35b534b8b2874c4859c684cd14afb5335a2555c75ad9df018635bb7131a7ef204ccecfed33a675fc51687e3f8818406fbf58e7b5fde1ca96153817e1b632e89a78d967eb6a34af1dac0d9ffa448b7b9bac27afc305a7b47febbe0a37036c18aef6852b1b2759d67479f9edb169e796d949844a1624b1e832a2eee9be36dc5866d6fde431cfcbd4e305d322c9dd07f83b5b361daaa74bfc9fbce8b447210c327468659ecbb0a5fc20d0cb79de7d1d70bf251c81d5f38711f3f4bd4752685b077058beb465711b1359d2a7d2f59216c5a807121bb97e7ccacc46526e4072f1d6de3b487d492fed0995e2273fa3bb115bd08d32d8e57eb2aa8f9d3b81babd1b8334c3a5e69422b75502ced3793d07b9bdf38e9d9fa1d2e48c7886dfc41985e8ffc49f09c4ba58ddc3b4cbf562b591f8939ced5d18214a77cc753075334a157373cc33cbc07a731cd6342492f5e05f78108e627bc88777203c76632bbe0120924c7a51bbfc9dc789a5695b7c95ef544935032fb81d499c454a2d78727875c20bc8a48a9f23cf6595c17c9cdaa8d04bab8ac567ebd3bbcdb40e11f1893fea3970f176f75f38d17d6ee1bd4ab76c660723a776bc72319199ab82c40ac4a9f4f475e8fd4643a4be8601cb5172e112c236c7c430078601bf183a59a03885e994c1116a9d4ef275790ff2417ffd85b43274fc57654466fa394958aeb11f343c3439604af13997011af70b67df1a9dfa4cdb751a2dc3e5bbf42f7b9ebc6dcebb2dbdc57d7a2cef7409dba307b7cf6eab148a924566341d035cabc877c68d0fbfaebdd39c16304b63a1bae376fb4650708bf5695dfd7ffc01f43f0021f622de0b116ea494454497337a0ec469963de7f9d2b1d6c5a7a0a7835777a78a2b9e16eec696446981d2fea550f011419b96f7b2018d027b87fc715521b0302bd7b5b3bc5f033346029eced73df07dd1bb1f91848376b40b9e9da7233e7832edcc7b54ef6fd320d19efce78d58ea7020fbbdf77612dc8a4f3281915ac9706f346e405b9f489f8f2e9a2decb8d18bec1e5f735a4ec69bba4dc5d36c9c1cc50b92fe67b2cdd53fa671c0cbe331abdf46787e7c9912b951aa20700dba6cf5a209fe5c9c61ef62a8e2e572ec774b2d0f42d570633fc44d44826e848d47a8f386a5704e0a3eaf1d06617181aeb166334ab55d5aedccb27abf19a42a480930e25465721336c70a2ea7799d21a3659124ac9503efc99c1b13ca2b9723e3e338055f9b3cef7502017ebbb09a64b06462db353a5c562101cb7fbf29e056deeb1ff0c7bc877210c941c87401ceae52bcecc83e87655069ab931bd813c1a87d67554f5d2cf435e6dd92a515c22f5d5a9a44ebc81e9c4849104343b80824005619312a9e349d996e366d381da42edad1a560bf5e31ecd049e92ceaf42954958600a7868599fe10e9b34587368d3044250c3d1a8ba6c8dcb6d318d4f9e71c2d33fc74cb57620a8343258d072f3aa767b4b178f3f66d5a713dae2426296c12edf9ee37636869e30df64cd3855fae20bc7602c1b7e6c8246ed4be71231a5ec7b5e7a9ebb08bf8667d8f2900ecdb0a0addc14a2328eebc448db13013e6a3c1a661065e5ac0a04b5171bd84c9d9d947a6c31257ed13a966530c5e20168c100117cf82b4c00ea3ad00ea65e1af89535b3f11a1418ddad33db8cec281543732d2ff4eab54b12cc95f7d872e75bc01bf6c580540b0e26413c6c2321ddfb0447bdb6acf05ddf2bb92534a3a5f37d6da882289f6fefc6a213cdfcf34902137fa3b982b2b4c27c611f08909a18405482f1e3a2bf3635d3e970457541da16e37bb3c422cceeb484bb64c78724431a543ecf4ca851914c1555e3b785ec87bba3769927f6c29f80e7ae8632bdb9acdddf7c3b5580740d9b2bfc25086c9566844136f3fac74f429121f86c378c68c20a194b0c98b1e92991954cbf60477e217a2e25297fc7b18972e40c531ec19e1eea193bbc8893392d8528c6a0375bcb4b082d20d5c47cb330bbb4b74b91ab55d4a0d3e1dee8182c581e8e70ac30108eeb7185c6ea3f786881ad124e1404651ee95cdb0fbb0d0f4a2b43c795ec1cd4e46234a88862d57903ce878b641004fb637341e5d6bf5163f1a3467b828f6eea96c3c2bb79503687867e11eec32dec452e0fdd2eaacfc0a477ee839ef049855da734d18212142dfe2a95ab9ad9bc4f98c3bfa34134c7e6c9f8669303314d4e8c1bc5475e8fcf418cbdb3246ebf393d911cdfee8f2550dc1593ece59ced81a4ffb2484f9c8ebed0aed8d418138445c4e96b209adcc4afd70f09901662daa2c8c557d6039768d97e6b9518f0de4ac2e0187ba08a4a9128d3e632fca102137338b5e568f12c7bd28db772c800fb5f4d4e683b201840731bb7c034235cd73313cde88891bbb31597bb537696e6c987302297f9717b8053779aed447d33ef9129e84d3031fa9b453bd5731fb010ffd19a9133e0ccbec2461cdd31ba294d68c60a8535b15584bab6e6d0ce6c1cef4755bd5f7d90f4debb40af1437a19a96ef9c0709692156152091c7efb58f2d39a65b96416dc09e8091ae08d9be5235a3c1ec062862baa1aab788f28e83ba4635cecc6671f2320f42b4f711e7d0fcad89d6727d3630da1ef35e32dee39eda665946abe6224f17f2acc29e62518fd51eb7f193d9bb16c38204069098c293fdce24c1c79229fd08622a4256b581cffce12e46c20248dc902753f0e3c91f9685b3d45f984620e262b3487d67d152f1c50de3fd2067a9d3debf715f346dd2f712c55545336a9036ba82bb06cfae59a48d083c3388f77790c9639fa0a9c33f4c66c7513042bffb765c2a4b3657dddf0ea094d8d79018f66c8ef8e9df980a89906275edf4a467a5db0a623976899f0efd167aab6ff385cdde59027a95a570277cb94ebce503906c28527e3114eb9ed739d0c2f4cf82786b35c0054718f47381ed8ce9b107e1f1019be5fc877166da667036f0c1b84e2b5118b5f4babc052d997e5f1e8c4cf45eb26430b74d9e1df3735b8d5df559903143d983e974bed6cc608c2580a991bdd3628ec676d348de8752cafa80c1661f162e35c25fc0ba0198423f83214fed800f9355ac8ea67951cfeeb3736b50c1e14d45d33aa25fc72c38702bd5dd217842e54114f4799c45ff1b7cec9729382ff7fc3ff80cbe1a13d03e19eecd7de676f6791fe34143ae30c97da9623907d974a37b65d0ef5d46b718d58541c6b1902814de71218ca7396ceb5fdacdc3cf4d110862402e7cc6254f1e44e28593fd443290262db75fd482ce1d305d6bf9fd3e5e0efbedac5a4d097650b111e6e9e1b2c66a23ac5bf27ed78d25d1a54c16ca4287126736c2f17ab73e683798c29d16481775ada8e20d94b00b6b29654b18f60e2853fdc7d3ba55d7df660db90288b6f440efd19f0478047b12c7b07ab2b1c9529597e6462d20612e6c3b6d1b1d11305f8ddc811860450504b7cbf9794edd0d07c25ab6307d74afdce958355eb919dcb1fcb8038c6dd5e774ee398dc8553a9ddeb551f", 0x2000, &(0x7f0000000b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x18}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

6.122021584s ago: executing program 1 (id=1784):
r0 = syz_open_dev$dvb_frontend(&(0x7f0000000080), 0x0, 0x2)
ioctl$FE_SET_PROPERTY(r0, 0x40106f52, &(0x7f0000000040)={0x3b, &(0x7f0000000200)=[{0x20, '\x00', @buffer={"785f629b000bc36e4c47ceeef4e988279ccb9ce37f092b150598374457bf103b", 0x20}, 0x9}]})
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000a00)=ANY=[@ANYBLOB="40000000180015"], 0x40}], 0x1, 0x0, 0x0, 0x40065}, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740), 0x0, 0x810)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000001740)=[{{0x0, 0x0, &(0x7f0000000100)=[{0x0}], 0x1}}], 0x1, 0x24088804)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000300)=[{{&(0x7f0000000280)={0xa, 0x4e20, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000000600)="6a9ee35872dedd3fa3577ce3d64d437abb6e906ee0d0354bcc7edf38e105d37f635fbb3b9c00a3d3bc61866fb3389eff2a0443cf6c38450ce2732419a8329bbe26f4eb1c9edcbf53fb1b0df9c77d6864e90753e3800dff58b9950616473ea1e55b947db3de3ebb8f63edf11ebec9eef2da6b9f545e28273d239534a4682dc23c44a85f64d17bbf41e291f3e3092626f045d8b2b5df6e478729cc88a79aa5f7fe99e374f09c34fe5b63b6dffd256f4ab6ec553520f191b386b290ce1e7fe4c59288afbcafe11869395eaa", 0xca}, {&(0x7f0000002840)="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", 0xc36}], 0x2, &(0x7f0000000b40)}}], 0x1, 0x4000081)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

5.882892557s ago: executing program 3 (id=1785):
socket$kcm(0xa, 0x2, 0x0)
r0 = socket(0x10, 0x3, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8000000000000000}, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_emit_vhci(0x0, 0x6)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f0000000340), 0x0, 0x0)
read$msr(r2, &(0x7f0000048040)=""/102392, 0x18ff8)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000340), 0x10, 0x0}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vxcan0\x00'})
pipe2$9p(0x0, 0x80)
read$FUSE(0xffffffffffffffff, &(0x7f0000000380)={0x2020}, 0x4)
socket(0x11, 0x1, 0xb)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000001840)=[{{0x0, 0x0, &(0x7f0000000440)}, 0xfffff120}], 0x1, 0x0, 0x0)
write(r0, &(0x7f00000000c0)="240000001e005f0214fffffffffffff807000000b800000000000000080008001d0000", 0x23)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)

4.916406692s ago: executing program 3 (id=1786):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x2, 0x1000}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000005580)=""/102392, 0x18ff8)
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000100)={{0x104, 0x80, 0x0, 0x6a8}, 'syz1\x00', 0x2f})

4.874919344s ago: executing program 1 (id=1788):
r0 = socket$kcm(0x2, 0x200000000000001, 0x106)
shutdown(r0, 0x1)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
pipe2$9p(&(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x800)
write$P9_RXATTRWALK(r1, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x6)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r3 = add_key(0x0, &(0x7f0000000280)={'syz', 0x1}, &(0x7f00000002c0)="1d", 0x1, 0xfffffffffffffffe)
keyctl$read(0xb, r3, &(0x7f0000001300)=""/4096, 0xffffffffffffffd2)
mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x5, 0x10, 0xffffffffffffffff, 0xa7deb000)
ioctl$EXT4_IOC_GETFSUUID(0xffffffffffffffff, 0x8008662c, &(0x7f0000000140))
r4 = fsopen(&(0x7f0000000240)='pvfs2\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000b40)='source', 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x4001, @loopback}, 0x10, 0x0, 0x0, 0x0, 0x0, 0xa7}, 0x30004084)
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x2)

4.165614044s ago: executing program 3 (id=1789):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x1, 0x442a, &(0x7f0000004480)="$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")
r1 = openat(0xffffffffffffff9c, 0x0, 0x42, 0x40)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0xc4042, 0x1ff)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x6200, 0x0)
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$inet6(r4, &(0x7f0000000040)={0x1d, 0x4e24, 0x2, @remote, 0x2}, 0x1c)
sendfile(r2, r3, 0x0, 0x20fffe82)
fallocate(r1, 0x1, 0x8e13, 0x8ffff)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x50, 0x2, 0x6, 0x201, 0x0, 0x0, {0x0, 0x0, 0xfffd}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}, @IPSET_ATTR_DATA={0x4}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x3}]}, 0x50}, 0x1, 0x0, 0x0, 0x20044000}, 0x0)

3.854296572s ago: executing program 0 (id=1790):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xfffffff9)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000580)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/59, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/231, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/70, 0x100000})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0x73, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x32, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)

3.721880889s ago: executing program 1 (id=1791):
socketpair$unix(0x1, 0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bd2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
io_setup(0x200, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000002b40)='net/udp6\x00')
quotactl_fd$Q_QUOTAOFF(r3, 0xffffffff80000302, 0x0, 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r4}, 0x4)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x10, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0x1}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r4}}]}, &(0x7f0000000080)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r5, 0x0, 0xe, 0x0, &(0x7f0000009f80)="c674015814a875ec92e8793fce1d", 0x0, 0x130000b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x27)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

3.555941038s ago: executing program 0 (id=1792):
r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
setsockopt$bt_rfcomm_RFCOMM_LM(r0, 0x12, 0x3, &(0x7f0000000000)=0x5, 0x4)
getsockopt$bt_rfcomm_RFCOMM_LM(r0, 0x12, 0x3, 0x0, &(0x7f0000000200))

3.322329082s ago: executing program 0 (id=1793):
r0 = socket$alg(0x26, 0x5, 0x0)
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYRES16, @ANYBLOB="050000"], 0x70}, 0x1, 0x0, 0x0, 0x20004090}, 0x0)
keyctl$dh_compute(0x17, &(0x7f0000000140), &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
getpid()
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000340)={<r1=>0x0}, &(0x7f0000000380)=0xc)
capget(&(0x7f0000000000)={0x20071026, r1}, &(0x7f00000000c0)={0x192c0, 0x3, 0x3ff, 0xfffffffa, 0xb88, 0x2})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x20042, 0x0)
dup(0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000004c0)={0x7, 0x800000000000008a}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
mount(&(0x7f0000000000)=@nullb, &(0x7f0000000080)='./cgroup\x00', &(0x7f00000000c0)='gfs2\x00', 0x10, 0x0)

1.716882183s ago: executing program 0 (id=1794):
socket$kcm(0xa, 0x2, 0x0)
r0 = socket(0x10, 0x3, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8000000000000000}, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_emit_vhci(0x0, 0x6)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f0000000340), 0x0, 0x0)
read$msr(r2, &(0x7f0000048040)=""/102392, 0x18ff8)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000340), 0x10, 0x0}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vxcan0\x00'})
pipe2$9p(0x0, 0x80)
read$FUSE(0xffffffffffffffff, &(0x7f0000000380)={0x2020}, 0x4)
socket(0x11, 0x1, 0xb)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000001840)=[{{0x0, 0x0, &(0x7f0000000440)}, 0xfffff120}], 0x1, 0x0, 0x0)
write(r0, &(0x7f00000000c0)="240000001e005f0214fffffffffffff807000000b800000000000000080008001d0000", 0x23)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)

1.611865428s ago: executing program 1 (id=1795):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_sys\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x6, &(0x7f0000000040)={0x0, 0x0, 0xb39, 0xffffffffffffffff})
openat$uinput(0xffffffffffffff9c, &(0x7f0000000840), 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
splice(r1, 0x0, 0xffffffffffffffff, 0x0, 0x7, 0x0)
openat2$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000600)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
r3 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000002000/0x4000)=nil)
shmctl$SHM_LOCK(r3, 0xb)
read$FUSE(r2, 0x0, 0x0)

582.429907ms ago: executing program 0 (id=1796):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'syzkaller0\x00', 0x2})
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f00000002c0)={0x0, 'syzkaller0\x00', {0x1}, 0xb5})
r2 = socket$netlink(0x10, 0x3, 0xc)
preadv(r0, &(0x7f0000000140)=[{&(0x7f00000022c0)=""/4096, 0x1000}], 0x1, 0x2, 0x8032a)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})

550.044578ms ago: executing program 3 (id=1797):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mount$cgroup2(0x0, &(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000080), 0x0, &(0x7f00000001c0)={[{@memory_hugetlb_accounting}, {@favordynmods}]})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000340)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x2014800, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC(r1, 0x0, 0xcc, &(0x7f0000000100)={@multicast1, @multicast2, 0x0, "aaa517d60f2811d48c8a2cc60c4380bc23b510d442ff13482864280a9c0f4eb5", 0x0, 0xcc, 0x81}, 0x3c)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd25, 0x25dfdbfe, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xfff3}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x4, 0x3c}}]}}]}, 0x48}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=@newtfilter={0xb0, 0x2c, 0xd2b, 0x70bd2b, 0x25dfdbfb, {0x0, 0x0, 0x0, r4, {0xd}, {}, {0x7, 0xe}}, [@filter_kind_options=@f_u32={{0x8}, {0x7c, 0x2, [@TCA_U32_ACT={0x54, 0x7, [@m_skbedit={0x50, 0x1, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PRIORITY={0x8, 0x3, {0xf, 0x3}}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0x6, 0x9, 0x20000000, 0x1, 0xd6}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}]}, @TCA_U32_SEL={0x24, 0x5, {0x8, 0x7, 0x1, 0x3d3f, 0x0, 0xfff, 0x3, 0x58f, [{0x2, 0x20008000, 0x4, 0x1}]}}]}}, @TCA_RATE={0x6, 0x5, {0x2, 0xe}}]}, 0xb0}, 0x1, 0x0, 0x0, 0x1}, 0x24040084)

155.236571ms ago: executing program 0 (id=1798):
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8000}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_getparam(0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
eventfd(0xfffffff9)
r1 = openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240))
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, 0x0)
sendmsg$TCPDIAG_GETSOCK(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="4c0000001200010003950000000100000a090000400100"], 0x4c}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
getsockname$packet(r2, 0x0, &(0x7f0000000200))
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)

0s ago: executing program 2 (id=1799):
r0 = socket$kcm(0x2, 0x200000000000001, 0x106)
shutdown(r0, 0x1)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
pipe2$9p(&(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x800)
write$P9_RXATTRWALK(r1, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x6)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r3 = add_key(0x0, &(0x7f0000000280)={'syz', 0x1}, &(0x7f00000002c0)="1d", 0x1, 0xfffffffffffffffe)
keyctl$read(0xb, r3, &(0x7f0000001300)=""/4096, 0xffffffffffffffd2)
mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x5, 0x10, 0xffffffffffffffff, 0xa7deb000)
ioctl$EXT4_IOC_GETFSUUID(0xffffffffffffffff, 0x8008662c, &(0x7f0000000140))
r4 = fsopen(&(0x7f0000000240)='pvfs2\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000b40)='source', 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x4001, @loopback}, 0x10, 0x0, 0x0, 0x0, 0x0, 0xa7}, 0x30004084)
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x2)

kernel console output (not intermixed with test programs):

terval 52, changing to 9
[  254.935308][  T786] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  254.951407][  T786] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  254.971541][  T786] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  255.005531][  T786] usb 2-1: Product: syz
[  255.020903][  T786] usb 2-1: Manufacturer: syz
[  255.461810][  T786] cdc_wdm 2-1:1.0: skipping garbage
[  255.541516][  T786] cdc_wdm 2-1:1.0: skipping garbage
[  255.636455][  T786] cdc_wdm 2-1:1.0: cdc-wdm0: USB WDM device
[  255.646155][  T786] cdc_wdm 2-1:1.0: Unknown control protocol
[  256.085539][ T7291] loop2: detected capacity change from 0 to 4096
[  256.139107][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  256.145590][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  256.716561][ T5771] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.416181][   T27] usb 2-1: USB disconnect, device number 5
[  258.677656][ T7323] loop3: detected capacity change from 0 to 8192
[  259.958487][  T786] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  260.135205][ T7330] loop0: detected capacity change from 0 to 40427
[  260.159686][ T7330] F2FS-fs (loop0): invalid crc value
[  260.167366][  T786] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  260.186400][ T7330] F2FS-fs (loop0): Found nat_bits in checkpoint
[  260.209215][  T786] usb 2-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  260.245779][ T7330] F2FS-fs (loop0): Start checkpoint disabled!
[  260.259174][ T7330] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  260.284101][  T786] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66
[  260.357073][  T786] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  260.485143][  T786] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  260.674966][  T786] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  260.917585][  T786] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  261.004275][  T786] usb 2-1: Product: syz
[  261.028352][  T786] usb 2-1: Manufacturer: syz
[  261.088107][  T786] cdc_wdm 2-1:1.0: skipping garbage
[  261.140567][  T786] cdc_wdm 2-1:1.0: skipping garbage
[  261.154466][  T786] cdc_wdm 2-1:1.0: cdc-wdm0: USB WDM device
[  261.175038][  T786] cdc_wdm 2-1:1.0: Unknown control protocol
[  261.233030][   T49] kworker/u4:3: attempt to access beyond end of device
[  261.233030][   T49] loop0: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  261.250683][   T49] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  261.258223][   T49] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  261.267189][   T49] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  262.355779][ T7354] kvm: pic: non byte read
[  262.365648][ T7354] kvm: pic: non byte read
[  262.371652][ T7354] kvm: pic: level sensitive irq not supported
[  262.371795][ T7354] kvm: pic: non byte read
[  262.388615][ T7354] kvm: pic: non byte read
[  262.393508][ T7354] kvm: pic: non byte read
[  262.399618][ T7354] kvm: pic: single mode not supported
[  262.399641][ T7354] kvm: pic: level sensitive irq not supported
[  262.406911][ T7354] kvm: pic: non byte read
[  262.419837][ T7354] kvm: pic: non byte read
[  262.424706][ T7354] kvm: pic: non byte read
[  262.430671][ T7354] kvm: pic: level sensitive irq not supported
[  262.430748][ T7354] kvm: pic: non byte read
[  262.658640][ T7359] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  263.149245][ T5868] usb 2-1: USB disconnect, device number 6
[  263.821392][ T7367] loop1: detected capacity change from 0 to 128
[  263.869942][ T7367] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  263.950702][ T7367] hpfs: filesystem error: improperly stopped
[  263.978223][ T7367] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  264.010866][ T7367] hpfs: You really don't want any checks? You are crazy...
[  264.052192][ T7367] hpfs: hpfs_map_sector(): read error
[  264.071152][ T7367] hpfs: code page support is disabled
[  264.089903][ T7367] hpfs: hpfs_map_4sectors(): unaligned read
[  264.108232][ T7367] hpfs: hpfs_map_4sectors(): unaligned read
[  264.131820][ T7367] hpfs: filesystem error: unable to find root dir
[  264.270994][ T7368] loop2: detected capacity change from 0 to 40427
[  264.280969][ T7368] F2FS-fs (loop2): invalid crc value
[  264.290473][ T7368] F2FS-fs (loop2): Found nat_bits in checkpoint
[  264.340579][ T7368] F2FS-fs (loop2): Start checkpoint disabled!
[  264.359034][ T7368] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  265.182951][   T12] kworker/u4:1: attempt to access beyond end of device
[  265.182951][   T12] loop2: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  265.204711][   T12] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  265.212693][ T7381] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  265.213349][   T12] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  265.231055][   T12] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  266.132738][ T5868] usb 1-1: new full-speed USB device number 5 using dummy_hcd
[  267.895067][ T7403] syz.2.464 (7403): drop_caches: 2
[  268.200855][ T5868] usb 1-1: config 0 interface 0 altsetting 251 has an invalid endpoint with address 0x43, skipping
[  268.222589][ T5868] usb 1-1: config 0 interface 0 has no altsetting 0
[  268.241716][ T5868] usb 1-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  268.253134][ T5868] usb 1-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  268.263356][ T5868] usb 1-1: Product: syz
[  268.267573][ T5868] usb 1-1: Manufacturer: syz
[  268.272739][ T5868] usb 1-1: SerialNumber: syz
[  268.283529][ T5868] usb 1-1: config 0 descriptor??
[  268.289970][ T7393] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  268.464019][ T5868] snd-usb-audio: probe of 1-1:0.0 failed with error -22
[  268.717738][ T5776] udevd[5776]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  268.762373][  T786] usb 1-1: USB disconnect, device number 5
[  268.906518][ T7407] loop1: detected capacity change from 0 to 40427
[  268.925081][ T7407] F2FS-fs (loop1): invalid crc value
[  268.936871][ T7407] F2FS-fs (loop1): Found nat_bits in checkpoint
[  268.994400][ T7407] F2FS-fs (loop1): Start checkpoint disabled!
[  269.017682][ T7407] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  269.265086][ T7416] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  269.404158][ T3468] kworker/u4:12: attempt to access beyond end of device
[  269.404158][ T3468] loop1: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  269.423445][ T3468] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  269.436355][ T3468] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  269.445030][ T3468] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  272.101498][ T7445] loop0: detected capacity change from 0 to 40427
[  272.115121][ T7445] F2FS-fs (loop0): invalid crc value
[  272.164690][ T7445] F2FS-fs (loop0): Found nat_bits in checkpoint
[  272.214591][ T7445] F2FS-fs (loop0): Start checkpoint disabled!
[  272.233056][ T7445] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  273.630695][ T7456] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  273.799407][  T993] kworker/u4:5: attempt to access beyond end of device
[  273.799407][  T993] loop0: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  273.814835][  T993] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  273.866098][  T993] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  273.888821][  T993] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  275.398942][ T7484] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  277.844404][ T7504] loop3: detected capacity change from 0 to 256
[  278.791882][ T7508] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  278.871270][  T786] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  279.068381][  T786] usb 1-1: Using ep0 maxpacket: 8
[  279.299723][  T786] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  279.348201][  T786] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  279.385048][  T786] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  279.408179][  T786] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12592, setting to 1024
[  279.448629][  T786] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  279.480268][  T786] usb 1-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  279.511136][  T786] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  279.550594][  T786] usb 1-1: config 0 descriptor??
[  279.557551][ T7506] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  280.267914][ T7525] ERROR: device name not specified.
[  280.584905][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.593750][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.613135][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.640956][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.647868][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.654992][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.668508][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.675641][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.685276][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.694612][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.703383][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.710701][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.717734][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.724996][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.734565][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.742754][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.752818][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.760172][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.767221][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.774470][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.781823][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.793236][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.801678][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.810272][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.817278][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.824772][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.831947][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.843840][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.850938][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.857821][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.865238][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.873118][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.880902][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.887927][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.894980][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.902016][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.909280][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.916151][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.924954][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.932020][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.939075][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.945982][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.953084][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.960208][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.967092][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.974231][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.981187][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.988189][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  280.996017][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  281.003156][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  281.010379][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  281.017344][ T5780] Bluetooth: hci4: Received unexpected HCI Event 0x00
[  281.033040][ T5786] Bluetooth: hci4: Opcode 0x0c03 failed: -71
[  281.041423][  T786] usb 1-1: USB disconnect, device number 6
[  282.174466][ T5786] Bluetooth: hci2: unexpected event for opcode 0x0c0d
[  282.958720][ T7541] loop1: detected capacity change from 0 to 256
[  284.409220][ T7549] loop0: detected capacity change from 0 to 40427
[  284.440071][ T7549] F2FS-fs (loop0): invalid crc value
[  284.447698][ T7549] F2FS-fs (loop0): Found nat_bits in checkpoint
[  284.493523][ T7549] F2FS-fs (loop0): Start checkpoint disabled!
[  284.529635][ T7549] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  286.249983][ T5786] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  286.258726][ T5786] Bluetooth: hci2: Injecting HCI hardware error event
[  286.268690][ T5780] Bluetooth: hci2: hardware error 0x00
[  287.930402][ T2971] kworker/u4:9: attempt to access beyond end of device
[  287.930402][ T2971] loop0: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  288.173653][ T2971] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  288.368433][ T2971] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  288.375458][ T2971] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  288.528502][ T7570] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  288.535588][ T7570] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  288.593221][ T7570] vhci_hcd vhci_hcd.0: Device attached
[  288.858653][ T6315] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  288.878651][ T5868] usb 37-1: new low-speed USB device number 2 using vhci_hcd
[  288.969765][ T5780] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  288.988871][   T23] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  289.097520][ T6315] usb 3-1: config 0 has no interfaces?
[  289.107653][ T6315] usb 3-1: New USB device found, idVendor=0df6, idProduct=0056, bcdDevice=a0.b5
[  289.122381][ T6315] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  289.137522][ T6315] usb 3-1: config 0 descriptor??
[  289.191825][   T23] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  289.206157][ T7576] trusted_key: syz.1.516 sent an empty control message without MSG_MORE.
[  289.234101][   T23] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  289.262473][   T23] usb 4-1: New USB device found, idVendor=054c, idProduct=0df2, bcdDevice=d6.af
[  289.291876][   T23] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  289.311173][   T23] usb 4-1: config 0 descriptor??
[  289.402752][ T7571] usb 37-1: recv xbuf, 0
[  289.419830][  T993] vhci_hcd: stop threads
[  289.433007][  T993] vhci_hcd: release socket
[  289.439500][  T993] vhci_hcd: disconnect device
[  289.458771][   T27] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  289.498621][ T5868] vhci_hcd: vhci_device speed not set
[  289.650228][   T27] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  289.713657][   T27] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  289.724538][   T27] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  289.740720][   T23] playstation 0003:054C:0DF2.0003: unknown main item tag 0x0
[  289.754713][   T27] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  289.769067][   T23] playstation 0003:054C:0DF2.0003: unknown main item tag 0x0
[  289.778600][   T27] usb 1-1: SerialNumber: syz
[  289.797355][   T23] playstation 0003:054C:0DF2.0003: unknown main item tag 0x0
[  289.806072][   T23] playstation 0003:054C:0DF2.0003: unknown main item tag 0x0
[  289.845023][   T23] playstation 0003:054C:0DF2.0003: unknown main item tag 0x0
[  289.878617][   T23] playstation 0003:054C:0DF2.0003: hidraw0: USB HID v1.01 Device [HID 054c:0df2] on usb-dummy_hcd.3-1/input0
[  289.910752][ T6315] usb 3-1: USB disconnect, device number 2
[  290.071811][   T27] usb 1-1: 0:2 : does not exist
[  290.183932][   T23] playstation 0003:054C:0DF2.0003: Failed to retrieve feature with reportID 32: -71
[  290.203295][   T27] usb 1-1: USB disconnect, device number 7
[  290.218597][   T23] playstation 0003:054C:0DF2.0003: Failed to retrieve DualSense firmware info: -71
[  290.238719][   T23] playstation 0003:054C:0DF2.0003: Failed to get firmware info from DualSense
[  290.263642][   T23] playstation 0003:054C:0DF2.0003: Failed to create dualsense.
[  290.289815][ T5776] udevd[5776]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  290.321199][   T23] playstation: probe of 0003:054C:0DF2.0003 failed with error -71
[  290.350469][ T7583] fuse: Unknown parameter 'd½0xffffffffffffffff00000000000000000000'
[  290.367375][   T23] usb 4-1: USB disconnect, device number 5
[  290.559840][ T5780] Bluetooth: hci0: unexpected event for opcode 0x0c0d
[  290.598540][ T6315] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  290.984561][ T6315] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  292.098424][ T6315] usb 2-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  292.109960][ T6315] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66
[  292.119888][ T6315] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  292.131239][ T6315] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  292.177275][ T6315] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  292.312903][ T6315] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  292.364078][ T6315] usb 2-1: Product: syz
[  292.421292][ T6315] usb 2-1: Manufacturer: syz
[  292.483353][ T6315] cdc_wdm 2-1:1.0: skipping garbage
[  292.488893][ T6315] cdc_wdm 2-1:1.0: skipping garbage
[  292.501139][ T6315] cdc_wdm 2-1:1.0: cdc-wdm0: USB WDM device
[  292.509194][ T6315] cdc_wdm 2-1:1.0: Unknown control protocol
[  293.196952][ T7601] loop0: detected capacity change from 0 to 256
[  294.608641][ T5780] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  294.621359][ T5780] Bluetooth: hci0: Injecting HCI hardware error event
[  294.633122][ T5780] Bluetooth: hci0: hardware error 0x00
[  295.427349][ T6315] usb 2-1: USB disconnect, device number 7
[  295.470875][ T7617] fuse: Unknown parameter 'd½0xffffffffffffffff00000000000000000000'
[  297.860978][ T5780] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  298.276208][ T7637] loop2: detected capacity change from 0 to 256
[  300.674537][ T7655] loop2: detected capacity change from 0 to 256
[  300.712053][ T7655] exfat: Deprecated parameter 'utf8'
[  300.719279][ T7655] exfat: Deprecated parameter 'namecase'
[  301.327465][ T7655] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  301.831906][ T7665] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  306.746452][ T7704] netlink: 8 bytes leftover after parsing attributes in process `syz.3.557'.
[  308.212890][ T7721] tmpfs: Bad value for 'mpol'
[  312.380529][ T7745] loop3: detected capacity change from 0 to 2048
[  312.411247][ T7745] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  317.532937][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  317.539408][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  318.572662][ T7790] usb usb7: usbfs: process 7790 (syz.1.578) did not claim interface 0 before use
[  322.098671][ T7828] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  322.332604][ T7836] loop0: detected capacity change from 0 to 128
[  322.369177][ T7836] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  322.449501][ T7836] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  323.479754][ T7848] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  323.787733][ T7856] loop1: detected capacity change from 0 to 256
[  323.822471][ T7856] exfat: Deprecated parameter 'utf8'
[  323.827956][ T7856] exfat: Deprecated parameter 'namecase'
[  323.947491][ T7856] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  326.691542][ T7874] loop0: detected capacity change from 0 to 32768
[  326.739101][ T7874] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.604 (7874)
[  326.811403][ T7874] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  326.853759][ T7874] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  326.876315][ T7874] BTRFS info (device loop0): enabling ssd optimizations
[  326.919536][ T7874] BTRFS info (device loop0): using spread ssd allocation scheme
[  326.967932][ T7874] BTRFS info (device loop0): use no compression
[  327.008535][ T7874] BTRFS info (device loop0): turning on sync discard
[  327.024757][ T7874] BTRFS error (device loop0): unrecognized commit_interval value 0x0000000080000000
[  327.103210][ T7874] BTRFS error (device loop0): open_ctree failed: -22
[  327.142768][ T5776] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by udevd (5776)
[  327.734434][ T7889] sd 0:0:1:0: PR command failed: 1026
[  327.755052][ T7889] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  327.802762][ T7889] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  328.635038][ T7894] syz.2.605 (7894): drop_caches: 2
[  329.781207][ T7904] loop3: detected capacity change from 0 to 256
[  329.855699][ T7904] exfat: Deprecated parameter 'utf8'
[  329.878820][ T7904] exfat: Deprecated parameter 'namecase'
[  329.881944][ T5873] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  329.965632][ T7876] loop1: detected capacity change from 0 to 40427
[  330.031990][ T7876] F2FS-fs (loop1): invalid crc value
[  330.048705][ T7904] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  330.065833][ T7876] F2FS-fs (loop1): Found nat_bits in checkpoint
[  330.123282][ T5873] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  330.167113][ T5873] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  330.229763][ T5873] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  330.291573][ T5873] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  330.334338][ T5873] usb 1-1: SerialNumber: syz
[  330.372028][ T7876] F2FS-fs (loop1): Start checkpoint disabled!
[  330.593523][ T5873] usb 1-1: 0:2 : does not exist
[  330.669403][ T5873] usb 1-1: USB disconnect, device number 8
[  331.369160][ T7919] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  331.596894][ T7924] loop0: detected capacity change from 0 to 256
[  333.468503][   T27] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  333.692422][   T27] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  333.740501][   T27] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  333.775498][   T27] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  333.788489][   T27] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  333.818408][   T27] usb 3-1: SerialNumber: syz
[  333.945162][ T7942] loop0: detected capacity change from 0 to 40427
[  334.015421][ T7942] F2FS-fs (loop0): invalid crc value
[  334.035234][ T7942] F2FS-fs (loop0): Found nat_bits in checkpoint
[  334.094602][   T27] usb 3-1: 0:2 : does not exist
[  334.127849][ T7947] loop1: detected capacity change from 0 to 32768
[  334.184166][   T27] usb 3-1: USB disconnect, device number 3
[  334.275619][ T7942] F2FS-fs (loop0): Start checkpoint disabled!
[  334.297899][ T5776] udevd[5776]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  334.330448][ T7947] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  334.348499][ T7947] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  334.361857][ T7942] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  334.368528][ T7947] BTRFS info (device loop1): setting nodatasum
[  334.423980][ T7947] BTRFS info (device loop1): force zlib compression, level 3
[  334.452990][ T7947] BTRFS info (device loop1): metadata ratio 1
[  334.584527][ T7947] BTRFS info (device loop1): enabling ssd optimizations
[  334.629707][ T7947] BTRFS info (device loop1): allowing degraded mounts
[  334.636697][ T7947] BTRFS info (device loop1): using free space tree
[  335.199534][ T2936] kworker/u4:8: attempt to access beyond end of device
[  335.199534][ T2936] loop0: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  335.254936][ T2936] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  335.265455][ T2936] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  335.337514][ T2936] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  335.714258][ T5770] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  338.166462][ T7994] loop1: detected capacity change from 0 to 512
[  338.247602][ T7994] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  338.274768][ T7996] loop0: detected capacity change from 0 to 256
[  338.342285][ T7994] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  338.366625][ T7996] exfat: Deprecated parameter 'utf8'
[  338.379335][ T7994] ext4 filesystem being mounted at /146/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  338.450079][ T7996] exfat: Deprecated parameter 'namecase'
[  338.642093][ T7996] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  339.300315][ T8003] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  339.704035][ T8001] loop3: detected capacity change from 0 to 40427
[  339.743714][ T8001] F2FS-fs (loop3): invalid crc value
[  339.775712][ T8001] F2FS-fs (loop3): Found nat_bits in checkpoint
[  339.947540][ T8001] F2FS-fs (loop3): Start checkpoint disabled!
[  339.972524][ T8001] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  340.539522][   T12] kworker/u4:1: attempt to access beyond end of device
[  340.539522][   T12] loop3: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  340.578354][   T12] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  340.598556][   T12] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  340.621890][   T12] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  340.995048][ T8025] loop2: detected capacity change from 0 to 256
[  342.886421][ T5770] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  344.222285][ T8060] loop2: detected capacity change from 0 to 256
[  345.067613][ T8054] loop1: detected capacity change from 0 to 40427
[  345.114309][ T8054] F2FS-fs (loop1): invalid crc value
[  345.162021][ T8054] F2FS-fs (loop1): Found nat_bits in checkpoint
[  345.638059][ T8054] F2FS-fs (loop1): Start checkpoint disabled!
[  345.668390][ T8054] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  345.977217][ T8076] loop0: detected capacity change from 0 to 512
[  346.095783][ T8076] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  346.232752][ T8076] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  346.309147][ T8076] ext4 filesystem being mounted at /152/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  346.588592][   T49] kworker/u4:3: attempt to access beyond end of device
[  346.588592][   T49] loop1: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  346.633800][   T49] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  346.800782][   T49] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  346.808567][   T49] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  348.216794][ T8102] loop3: detected capacity change from 0 to 256
[  349.818511][ T6315] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  350.012753][ T6315] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  350.051844][ T6315] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  350.072298][ T6315] usb 2-1: config 0 has no interface number 0
[  350.083572][ T6315] usb 2-1: config 0 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  350.109027][ T6315] usb 2-1: New USB device found, idVendor=04d9, idProduct=a055, bcdDevice= 0.18
[  350.123257][ T6315] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  350.165913][ T6315] usb 2-1: config 0 descriptor??
[  350.191466][ T8123] capability: warning: `syz.2.671' uses deprecated v2 capabilities in a way that may be insecure
[  350.208889][ T6315] usbhid 2-1:0.1: couldn't find an input interrupt endpoint
[  350.469912][ T8124] gfs2: not a GFS2 filesystem
[  351.547550][ T5773] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  351.708176][ T8143] loop0: detected capacity change from 0 to 256
[  352.782850][  T786] usb 2-1: USB disconnect, device number 8
[  352.817059][ T8148] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  353.003640][ T8156] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  355.613098][ T8175] loop3: detected capacity change from 0 to 256
[  357.471496][   T27] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  357.706593][   T27] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[  357.742542][   T27] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  357.783488][   T27] usb 3-1: config 0 has no interface number 0
[  357.807061][   T27] usb 3-1: config 0 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  357.870037][   T27] usb 3-1: New USB device found, idVendor=04d9, idProduct=a055, bcdDevice= 0.18
[  357.881476][   T27] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  357.939127][   T27] usb 3-1: config 0 descriptor??
[  357.970433][   T27] usbhid 3-1:0.1: couldn't find an input interrupt endpoint
[  358.821469][ T8204] loop3: detected capacity change from 0 to 40427
[  358.849709][ T8204] F2FS-fs (loop3): invalid crc value
[  358.877030][ T8204] F2FS-fs (loop3): Found nat_bits in checkpoint
[  358.932349][ T8204] F2FS-fs (loop3): Start checkpoint disabled!
[  360.934054][ T8204] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  361.587204][ T6315] usb 3-1: USB disconnect, device number 4
[  361.957408][  T993] kworker/u4:5: attempt to access beyond end of device
[  361.957408][  T993] loop3: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  361.992811][  T993] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  362.008798][  T993] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  362.018673][  T993] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  364.450031][ T8218] loop2: detected capacity change from 0 to 32768
[  364.494493][ T8218] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.699 (8218)
[  364.602732][ T8218] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  364.658859][ T8232] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  364.676666][ T8218] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  364.720537][ T8218] BTRFS info (device loop2): setting nodatasum
[  364.742604][ T8218] BTRFS info (device loop2): force zlib compression, level 3
[  364.760566][ T8218] BTRFS info (device loop2): metadata ratio 1
[  364.777522][ T8218] BTRFS info (device loop2): enabling ssd optimizations
[  364.802111][ T8218] BTRFS info (device loop2): allowing degraded mounts
[  364.834840][ T8218] BTRFS info (device loop2): using free space tree
[  364.867225][ T8218] workqueue: Failed to create a rescuer kthread for wq "btrfs-worker": -EINTR
[  364.936935][ T8218] workqueue: Failed to create a rescuer kthread for wq "btrfs-delalloc": -EINTR
[  364.949164][ T8218] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR
[  364.989539][ T8218] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR
[  365.009328][ T8218] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR
[  365.067120][ T8218] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR
[  365.117629][ T8218] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR
[  365.159565][ T8218] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR
[  365.201075][ T8218] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  365.241538][ T8218] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  365.271440][ T8218] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  365.319464][ T8218] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  365.381883][ T8218] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  365.443480][ T8218] BTRFS error (device loop2): open_ctree failed: -12
[  365.916060][ T8263] netlink: 'syz.0.706': attribute type 10 has an invalid length.
[  365.935489][ T5776] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by udevd (5776)
[  365.975996][ T8263] bridge0: port 2(bridge_slave_1) entered disabled state
[  365.983878][ T8263] bridge0: port 1(bridge_slave_0) entered disabled state
[  366.087717][ T8263] bridge0: port 2(bridge_slave_1) entered blocking state
[  366.094955][ T8263] bridge0: port 2(bridge_slave_1) entered forwarding state
[  366.103491][ T8263] bridge0: port 1(bridge_slave_0) entered blocking state
[  366.110700][ T8263] bridge0: port 1(bridge_slave_0) entered forwarding state
[  366.146439][ T8263] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  367.303250][ T8277] kvm: kvm [8276]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x4910
[  367.342801][ T8277] kvm: kvm [8276]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x10000003c
[  367.377767][ T8277] kvm: kvm [8276]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x2130
[  367.422685][ T8277] kvm: kvm [8276]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x1928
[  368.005840][ T5868] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  368.212156][ T5868] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  368.238419][ T5868] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  368.286448][ T5868] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  368.315896][ T8306] No such timeout policy "syz1"
[  368.367877][ T5868] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  368.480188][ T5868] usb 3-1: SerialNumber: syz
[  368.511235][ T8295] loop3: detected capacity change from 0 to 32768
[  368.862154][ T5868] usb 3-1: 0:2 : does not exist
[  368.881204][ T8295] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  368.937219][ T8295] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  369.008584][ T5868] usb 3-1: USB disconnect, device number 5
[  369.015507][ T8295] BTRFS info (device loop3): setting nodatasum
[  369.077165][ T8295] BTRFS info (device loop3): force zlib compression, level 3
[  369.110952][ T8295] BTRFS info (device loop3): metadata ratio 1
[  369.117220][ T8295] BTRFS info (device loop3): enabling ssd optimizations
[  369.153461][ T5776] udevd[5776]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  369.174106][ T8295] BTRFS info (device loop3): allowing degraded mounts
[  369.198853][ T8295] BTRFS info (device loop3): using free space tree
[  369.469909][ T5771] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  369.954079][ T8336] gfs2: not a GFS2 filesystem
[  370.044337][ T8338] loop3: detected capacity change from 0 to 128
[  370.112778][ T8338] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  370.157131][ T8338] hpfs: filesystem error: improperly stopped
[  370.177260][ T8338] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  370.209202][ T8338] hpfs: You really don't want any checks? You are crazy...
[  370.216968][ T8338] hpfs: hpfs_map_sector(): read error
[  370.228394][ T8338] hpfs: code page support is disabled
[  370.239384][ T8338] hpfs: hpfs_map_4sectors(): unaligned read
[  370.266668][ T8338] hpfs: hpfs_map_4sectors(): unaligned read
[  370.286517][ T8338] hpfs: filesystem error: unable to find root dir
[  370.313721][ T8338] hpfs: hpfs_map_4sectors(): unaligned read
[  370.330139][ T8338] hpfs: hpfs_map_sector(): read error
[  372.128390][ T5821] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  373.834510][ T5821] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  373.891794][ T5821] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  373.914070][ T5821] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  373.938425][ T5821] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  373.959162][ T5821] usb 4-1: SerialNumber: syz
[  374.200300][ T5821] usb 4-1: 0:2 : does not exist
[  374.285523][ T5821] usb 4-1: USB disconnect, device number 6
[  374.372935][ T5776] udevd[5776]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  376.159640][ T8378] syz.3.738 (8378): drop_caches: 2
[  376.740609][ T8383] gfs2: not a GFS2 filesystem
[  376.976093][ T8381] loop2: detected capacity change from 0 to 40427
[  377.017932][ T8381] F2FS-fs (loop2): invalid crc value
[  377.052156][ T8381] F2FS-fs (loop2): Found nat_bits in checkpoint
[  377.101992][ T8381] F2FS-fs (loop2): Start checkpoint disabled!
[  377.112922][ T8381] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  377.663299][ T8390] loop0: detected capacity change from 0 to 256
[  377.830642][   T49] kworker/u4:3: attempt to access beyond end of device
[  377.830642][   T49] loop2: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  377.877745][   T49] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  377.912529][   T49] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  377.961890][   T49] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  378.981929][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  378.990747][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  379.169443][ T8404] netlink: 20 bytes leftover after parsing attributes in process `syz.1.746'.
[  379.973494][ T8414] fuse: Bad value for 'fd'
[  382.925205][ T8429] loop1: detected capacity change from 0 to 256
[  382.956908][ T8429] exfat: Deprecated parameter 'utf8'
[  382.993375][ T8429] exfat: Deprecated parameter 'namecase'
[  383.098117][ T8429] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  383.968346][  T968] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  384.176080][  T968] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  384.199788][  T968] usb 1-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  384.224024][  T968] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66
[  384.290661][  T968] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  384.318350][  T968] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  384.363114][  T968] usb 1-1: string descriptor 0 read error: -71
[  384.378823][  T968] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  384.401837][  T968] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  384.431689][  T968] usb 1-1: can't set config #1, error -71
[  384.468607][  T968] usb 1-1: USB disconnect, device number 9
[  386.082192][ T8453] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  386.330671][ T8458] ERROR: device name not specified.
[  387.608348][  T968] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  388.643221][  T968] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  388.657436][  T968] usb 1-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  388.672038][  T968] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66
[  388.685866][  T968] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  389.899094][  T968] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  389.970149][  T968] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  389.998497][  T968] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  390.006608][  T968] usb 1-1: Product: syz
[  390.056334][  T968] usb 1-1: Manufacturer: syz
[  390.091040][  T968] cdc_wdm 1-1:1.0: skipping garbage
[  390.096351][  T968] cdc_wdm 1-1:1.0: skipping garbage
[  390.159050][  T968] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device
[  390.188157][  T968] cdc_wdm 1-1:1.0: Unknown control protocol
[  391.708787][ T5821] usb 1-1: USB disconnect, device number 10
[  392.927360][ T8493] loop2: detected capacity change from 0 to 256
[  398.644822][ T8526] syzkaller0: entered promiscuous mode
[  398.678471][ T8526] syzkaller0: entered allmulticast mode
[  401.048545][ T8539] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  403.326051][ T8560] syzkaller0: entered promiscuous mode
[  403.358370][ T8560] syzkaller0: entered allmulticast mode
[  403.586583][ T8567] loop1: detected capacity change from 0 to 256
[  403.887339][ T8570] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  405.160703][ T8598] syzkaller0: entered promiscuous mode
[  405.166450][ T8598] syzkaller0: entered allmulticast mode
[  405.477265][ T8602] gfs2: not a GFS2 filesystem
[  405.943048][ T8610] 9pnet_fd: Insufficient options for proto=fd
[  406.201890][ T8606] loop3: detected capacity change from 0 to 32768
[  406.218020][ T8606] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.812 (8606)
[  406.250789][ T8606] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  406.277601][ T8606] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  406.311829][ T8606] BTRFS info (device loop3): setting nodatasum
[  406.320562][ T8606] BTRFS info (device loop3): force zlib compression, level 3
[  406.328137][ T8606] BTRFS info (device loop3): metadata ratio 1
[  406.337503][ T8606] BTRFS info (device loop3): enabling ssd optimizations
[  406.361682][ T8606] BTRFS info (device loop3): allowing degraded mounts
[  406.370120][ T8606] BTRFS info (device loop3): using free space tree
[  406.416925][ T8621] syzkaller0: entered promiscuous mode
[  406.438140][ T8621] syzkaller0: entered allmulticast mode
[  406.604520][ T5771] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  407.168520][ T5868] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  408.475045][ T5868] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  408.493852][ T5868] usb 2-1: config 0 has no interface number 0
[  408.542831][ T5868] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  408.565417][ T5868] usb 2-1: New USB device found, idVendor=04d9, idProduct=a055, bcdDevice= 0.18
[  408.594193][ T5868] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  408.634731][ T5868] usb 2-1: config 0 descriptor??
[  408.691224][ T5868] usbhid 2-1:0.1: couldn't find an input interrupt endpoint
[  408.795251][ T8657] cgroup2: Unknown parameter 'memory_hugetlb_accounting'
[  410.089014][  T786] usb 2-1: USB disconnect, device number 9
[  410.107250][ T8666] 9pnet_fd: Insufficient options for proto=fd
[  411.845912][ T8682] syzkaller0: entered promiscuous mode
[  411.852729][ T8682] syzkaller0: entered allmulticast mode
[  412.697411][ T8696] 9pnet_fd: Insufficient options for proto=fd
[  416.535359][ T8719] loop2: detected capacity change from 0 to 512
[  416.757300][ T8719] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  417.013652][ T8719] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  417.055140][ T8719] ext4 filesystem being mounted at /225/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  417.701850][ T8735] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  418.658898][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  418.890179][ T8741] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  421.419302][ T8754] syzkaller0: entered promiscuous mode
[  421.424886][ T8754] syzkaller0: entered allmulticast mode
[  422.581389][ T8770] loop2: detected capacity change from 0 to 512
[  422.614710][ T8770] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  422.794809][ T8770] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  422.819847][ T8770] ext4 filesystem being mounted at /229/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  424.460347][ T8776] loop1: detected capacity change from 0 to 1024
[  424.578541][ T5873] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  424.858323][ T5873] usb 4-1: Using ep0 maxpacket: 8
[  424.884749][ T5873] usb 4-1: config 0 has an invalid interface number: 168 but max is 0
[  424.902798][ T5873] usb 4-1: config 0 has no interface number 0
[  424.921194][ T5873] usb 4-1: New USB device found, idVendor=1286, idProduct=1fa4, bcdDevice=9f.7a
[  424.936047][ T5873] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  424.944808][ T5873] usb 4-1: Product: syz
[  424.949461][ T5873] usb 4-1: Manufacturer: syz
[  424.954209][ T5873] usb 4-1: SerialNumber: syz
[  424.962538][ T5873] usb 4-1: config 0 descriptor??
[  425.015818][ T5873] mvusb_mdio: probe of 4-1:0.168 failed with error -5
[  425.070233][   T28] audit: type=1800 audit(1770887025.338:3): pid=8776 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.860" name="file1" dev="loop1" ino=2 res=0 errno=0
[  426.127479][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  426.604417][ T5868] usb 4-1: USB disconnect, device number 7
[  429.298084][ T8817] loop0: detected capacity change from 0 to 512
[  429.325409][ T8817] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  430.260071][ T8817] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  430.373574][ T8817] ext4 filesystem being mounted at /207/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  433.679011][ T5773] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  434.124647][ T8844] loop0: detected capacity change from 0 to 40427
[  434.151787][ T8844] F2FS-fs (loop0): invalid crc value
[  434.180548][ T8844] F2FS-fs (loop0): Found nat_bits in checkpoint
[  434.217564][ T8844] F2FS-fs (loop0): Start checkpoint disabled!
[  434.278654][ T8844] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  435.419630][ T2936] kworker/u4:8: attempt to access beyond end of device
[  435.419630][ T2936] loop0: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  435.541474][ T2936] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  435.570718][ T2936] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  435.577980][ T2936] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  437.109493][ T8860] cgroup2: Unknown parameter 'memory_hugetlb_accounting'
[  440.487629][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  440.494847][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  443.214372][ T8889] loop2: detected capacity change from 0 to 512
[  443.324881][ T8889] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  443.502054][ T8889] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  443.538568][ T8893] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  443.569061][ T8889] ext4 filesystem being mounted at /237/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  445.223093][ T8913] 9pnet_fd: Insufficient options for proto=fd
[  445.567789][ T8917] cgroup2: Unknown parameter 'memory_hugetlb_accounting'
[  448.591924][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  451.158391][ T8942] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  452.123697][ T8949] fuse: Bad value for 'fd'
[  452.364092][ T8954] loop1: detected capacity change from 0 to 256
[  452.960364][ T8962] gfs2: not a GFS2 filesystem
[  453.039718][ T8963] loop1: detected capacity change from 0 to 512
[  453.073779][ T8963] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  453.119653][ T8963] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  453.188993][ T8963] ext4 filesystem being mounted at /214/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  455.368730][ T8975] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  456.410289][ T5770] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  456.586817][ T8983] fuse: Bad value for 'fd'
[  459.350235][ T9003] Bluetooth: MGMT ver 1.22
[  459.961900][ T9011] loop2: detected capacity change from 0 to 256
[  459.969251][ T9011] exfat: Deprecated parameter 'utf8'
[  459.974717][ T9011] exfat: Deprecated parameter 'namecase'
[  459.983191][ T5868] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  460.037135][ T9011] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  460.327262][ T5868] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  460.337279][ T5868] usb 1-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  460.351277][ T5868] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66
[  460.466789][ T5868] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  460.756863][ T5868] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  460.810651][ T5868] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  460.859851][ T5868] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  460.918344][ T5868] usb 1-1: Product: syz
[  460.933596][ T5868] usb 1-1: Manufacturer: syz
[  460.987899][ T5868] cdc_wdm 1-1:1.0: skipping garbage
[  460.998859][ T5868] cdc_wdm 1-1:1.0: skipping garbage
[  461.019988][ T5868] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device
[  461.042968][ T5868] cdc_wdm 1-1:1.0: Unknown control protocol
[  461.632478][    C1] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes
[  461.781951][ T9029] loop2: detected capacity change from 0 to 256
[  464.348443][ T5873] usb 1-1: USB disconnect, device number 11
[  464.546292][ T9041] gfs2: not a GFS2 filesystem
[  464.978669][ T9044] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  467.519800][ T9069] loop1: detected capacity change from 0 to 256
[  468.018436][ T6315] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  468.221690][ T6315] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  468.237199][ T6315] usb 1-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  468.263416][ T6315] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66
[  468.283754][ T6315] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  468.364904][ T6315] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  468.379771][ T6315] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  468.401837][ T6315] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  468.417021][ T6315] usb 1-1: Product: syz
[  468.421952][ T6315] usb 1-1: Manufacturer: syz
[  468.472535][ T6315] cdc_wdm 1-1:1.0: skipping garbage
[  468.497322][ T6315] cdc_wdm 1-1:1.0: skipping garbage
[  468.524975][ T6315] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device
[  468.547137][ T6315] cdc_wdm 1-1:1.0: Unknown control protocol
[  470.715841][    C0] cdc_wdm 1-1:1.0: wdm_int_callback - 4 bytes
[  471.298499][ T9089] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  472.021022][ T6315] usb 1-1: USB disconnect, device number 12
[  472.613263][  T786] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  473.339033][  T786] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  473.392702][  T786] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  473.419328][  T786] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  473.468344][  T786] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  473.476600][  T786] usb 2-1: SerialNumber: syz
[  473.774507][  T786] usb 2-1: 0:2 : does not exist
[  474.675947][  T786] usb 2-1: USB disconnect, device number 10
[  474.742934][ T9035] udevd[9035]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  477.587380][ T9124] loop2: detected capacity change from 0 to 8192
[  478.608626][ T5873] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  478.840538][ T5873] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  478.874596][ T5873] usb 4-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  478.900648][ T5873] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[  478.917983][ T5873] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  478.966553][ T5873] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  478.994003][ T5873] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  479.003379][ T5873] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  479.029542][ T5873] usb 4-1: Product: syz
[  479.033795][ T5873] usb 4-1: Manufacturer: syz
[  479.055515][ T5873] cdc_wdm 4-1:1.0: skipping garbage
[  479.077217][ T5873] cdc_wdm 4-1:1.0: skipping garbage
[  479.090616][ T5873] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[  479.096598][ T5873] cdc_wdm 4-1:1.0: Unknown control protocol
[  479.712906][    C1] cdc_wdm 4-1:1.0: wdm_int_callback - 4 bytes
[  480.408426][ T9144] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  481.248366][   T23] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  481.440775][ T5868] usb 4-1: USB disconnect, device number 8
[  481.510670][   T23] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  481.548416][   T23] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  481.599457][   T23] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  481.614001][   T23] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  481.649327][   T23] usb 1-1: SerialNumber: syz
[  482.232377][   T23] usb 1-1: 0:2 : does not exist
[  482.449352][   T23] usb 1-1: USB disconnect, device number 13
[  483.090348][ T9035] udevd[9035]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  483.298689][ T9164] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  484.559004][ T9180] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  486.037139][ T9194] loop1: detected capacity change from 0 to 128
[  486.433875][ T9196] syz.1.969: attempt to access beyond end of device
[  486.433875][ T9196] loop1: rw=2049, sector=145, nr_sectors = 352 limit=128
[  488.181332][ T9201] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  488.548361][   T27] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  488.901895][   T27] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  488.918284][   T27] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  489.008300][   T27] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  489.018601][   T27] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  489.029745][   T27] usb 2-1: SerialNumber: syz
[  489.675663][   T27] usb 2-1: 0:2 : does not exist
[  489.720865][   T27] usb 2-1: USB disconnect, device number 11
[  489.780288][ T9035] udevd[9035]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  490.035139][ T9216] fuse: Bad value for 'fd'
[  493.778529][ T9229] fuse: Bad value for 'group_id'
[  495.695865][ T9246] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  495.713217][ T9249] fuse: Bad value for 'fd'
[  496.350122][    T8] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  497.370394][    T8] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  497.398472][    T8] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  497.421005][    T8] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  497.432327][    T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  497.441053][    T8] usb 2-1: SerialNumber: syz
[  497.676171][    T8] usb 2-1: 0:2 : does not exist
[  497.718605][    T8] usb 2-1: USB disconnect, device number 12
[  497.793635][ T9035] udevd[9035]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  497.890447][ T9267] gfs2: not a GFS2 filesystem
[  499.979552][ T9285] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  500.055695][ T9288] syzkaller0: entered promiscuous mode
[  500.072914][ T9288] syzkaller0: entered allmulticast mode
[  501.978706][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  501.985337][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  502.160229][ T9311] gfs2: not a GFS2 filesystem
[  504.178857][   T27] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  504.474558][ T9328] syzkaller0: entered promiscuous mode
[  504.482418][ T9328] syzkaller0: entered allmulticast mode
[  504.519166][   T27] usb 1-1: Using ep0 maxpacket: 8
[  504.526851][   T27] usb 1-1: config 0 has an invalid interface number: 168 but max is 0
[  504.543439][   T27] usb 1-1: config 0 has no interface number 0
[  504.556041][   T27] usb 1-1: New USB device found, idVendor=1286, idProduct=1fa4, bcdDevice=9f.7a
[  504.581921][   T27] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  504.582737][ T9330] loop3: detected capacity change from 0 to 256
[  504.600142][   T27] usb 1-1: Product: syz
[  504.606621][   T27] usb 1-1: Manufacturer: syz
[  504.625773][   T27] usb 1-1: SerialNumber: syz
[  504.641258][   T28] audit: type=1800 audit(1770887104.908:4): pid=9330 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1011" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop3" ino=1048713 res=0 errno=0
[  504.657392][   T27] usb 1-1: config 0 descriptor??
[  504.683286][    C0] vkms_vblank_simulate: vblank timer overrun
[  504.784834][   T27] mvusb_mdio: probe of 1-1:0.168 failed with error -5
[  504.838710][ T9332] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  506.449131][  T786] usb 1-1: USB disconnect, device number 14
[  510.966841][ T9391] loop1: detected capacity change from 0 to 1024
[  510.971315][ T9379] loop3: detected capacity change from 0 to 40427
[  510.983801][ T9379] F2FS-fs (loop3): invalid crc value
[  510.995033][ T9379] F2FS-fs (loop3): Found nat_bits in checkpoint
[  511.046589][   T28] audit: type=1800 audit(1770887111.308:5): pid=9391 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1026" name="file1" dev="loop1" ino=2 res=0 errno=0
[  511.682151][ T9379] F2FS-fs (loop3): Start checkpoint disabled!
[  511.934513][ T9398] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  518.302681][ T9432] loop3: detected capacity change from 0 to 1024
[  518.439268][   T28] audit: type=1800 audit(1770887118.708:6): pid=9432 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1038" name="file1" dev="loop3" ino=2 res=0 errno=0
[  534.930888][ T9501] gfs2: not a GFS2 filesystem
[  538.189435][ T9515] loop3: detected capacity change from 0 to 512
[  538.239970][ T9515] EXT4-fs (loop3): bad block size 65536
[  540.308305][    T8] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  540.428107][ T9521] fuse: Unknown parameter 'group_i00000000000000000000'
[  540.503360][    T8] usb 4-1: Using ep0 maxpacket: 32
[  540.520210][    T8] usb 4-1: config 0 has an invalid interface number: 85 but max is 0
[  540.534316][    T8] usb 4-1: config 0 has no interface number 0
[  540.542108][    T8] usb 4-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  540.556486][    T8] usb 4-1: config 0 interface 85 has no altsetting 0
[  540.568469][ T9523] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  540.579044][    T8] usb 4-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  540.588148][    T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  540.628391][    T8] usb 4-1: Product: syz
[  540.632642][    T8] usb 4-1: Manufacturer: syz
[  540.637295][    T8] usb 4-1: SerialNumber: syz
[  540.668554][    T8] usb 4-1: config 0 descriptor??
[  544.676717][    T8] appletouch 4-1:0.85: Geyser mode initialized.
[  544.691493][    T8] input: appletouch as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.85/input/input7
[  544.827278][    T8] usb 4-1: USB disconnect, device number 9
[  544.833309][    C0] appletouch 4-1:0.85: atp_complete: usb_submit_urb failed with result -19
[  545.350237][    T8] appletouch 4-1:0.85: input: appletouch disconnected
[  550.121968][ T9552] loop3: detected capacity change from 0 to 40427
[  550.178612][ T9552] F2FS-fs (loop3): invalid crc value
[  550.197970][ T9552] F2FS-fs (loop3): Found nat_bits in checkpoint
[  550.263059][ T9552] F2FS-fs (loop3): Start checkpoint disabled!
[  550.281948][ T9552] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  550.345514][ T9555] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  552.740832][ T3468] kworker/u4:12: attempt to access beyond end of device
[  552.740832][ T3468] loop3: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  552.796201][ T3468] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  552.828913][ T3468] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  552.835875][ T3468] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  552.979758][ T9566] loop1: detected capacity change from 0 to 128
[  552.998836][ T9566] ext4: Unknown parameter 'hash'
[  553.067559][ T9035] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  556.038288][   T23] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  557.142079][   T23] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  557.166288][   T23] usb 1-1: config 0 has no interface number 0
[  557.173267][   T23] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  557.185324][   T23] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  557.196779][   T23] usb 1-1: New USB device found, idVendor=04d9, idProduct=a055, bcdDevice= 0.18
[  557.207550][   T23] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  557.222378][   T23] usb 1-1: config 0 descriptor??
[  557.748637][ T9592] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  557.903165][   T23] usbhid 1-1:0.1: can't add hid device: -71
[  557.922777][   T23] usbhid: probe of 1-1:0.1 failed with error -71
[  557.945148][   T23] usb 1-1: USB disconnect, device number 15
[  562.207761][ T9609] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1091'.
[  562.267148][ T9607] loop3: detected capacity change from 0 to 40427
[  562.284034][ T9607] F2FS-fs (loop3): invalid crc value
[  562.306354][ T9607] F2FS-fs (loop3): Found nat_bits in checkpoint
[  562.342968][ T9607] F2FS-fs (loop3): Start checkpoint disabled!
[  562.372088][ T9607] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  563.263453][ T9616] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  563.292296][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  563.298968][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  563.300273][ T2971] kworker/u4:9: attempt to access beyond end of device
[  563.300273][ T2971] loop3: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  563.351657][ T2971] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  563.388314][ T2971] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  563.395277][ T2971] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  563.577562][ T9622] loop1: detected capacity change from 0 to 256
[  564.078338][ T9625] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  565.400034][ T9636] ERROR: device name not specified.
[  567.036579][ T9650] loop1: detected capacity change from 0 to 40427
[  567.070228][ T9650] F2FS-fs (loop1): invalid crc value
[  567.104036][ T9650] F2FS-fs (loop1): Found nat_bits in checkpoint
[  567.144454][ T9650] F2FS-fs (loop1): Start checkpoint disabled!
[  567.163233][ T9650] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  568.203339][   T49] kworker/u4:3: attempt to access beyond end of device
[  568.203339][   T49] loop1: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  568.277526][ T9665] ERROR: device name not specified.
[  568.331329][   T49] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  568.343850][   T49] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  568.351187][   T49] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  568.706513][ T9670] loop2: detected capacity change from 0 to 256
[  571.156560][ T9688] loop3: detected capacity change from 0 to 40427
[  571.262260][ T9688] F2FS-fs (loop3): invalid crc value
[  571.300121][ T9688] F2FS-fs (loop3): Found nat_bits in checkpoint
[  571.341566][ T9688] F2FS-fs (loop3): Start checkpoint disabled!
[  571.350290][ T9686] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  571.359728][ T9688] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  573.185016][ T2971] kworker/u4:9: attempt to access beyond end of device
[  573.185016][ T2971] loop3: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  573.233813][ T2971] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  573.248801][ T2971] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  573.255831][ T2971] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  573.838641][ T9707] ERROR: device name not specified.
[  575.713068][ T9730] cgroup2: Unknown parameter 'memory_hugetlb_accounting'
[  580.547713][ T9760] ERROR: device name not specified.
[  582.228928][ T9769] loop3: detected capacity change from 0 to 1024
[  582.384486][   T28] audit: type=1800 audit(1770887182.638:7): pid=9769 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1133" name="file1" dev="loop3" ino=2 res=0 errno=0
[  582.916989][ T9773] gfs2: not a GFS2 filesystem
[  583.089505][ T9776] fuse: Unknown parameter 'group_id00000000000000000000'
[  586.095461][ T9801] ERROR: device name not specified.
[  588.675974][ T9808] cgroup2: Unknown parameter 'memory_hugetlb_accounting'
[  591.150823][ T9819] syzkaller0: entered promiscuous mode
[  591.156389][ T9819] syzkaller0: entered allmulticast mode
[  594.888399][ T9842] syz.1.1155 (9842): drop_caches: 2
[  598.936161][ T9856] ERROR: device name not specified.
[  601.629930][ T9864] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  602.816481][   T27] IPVS: starting estimator thread 0...
[  603.008533][ T9877] IPVS: using max 17 ests per chain, 40800 per kthread
[  603.944825][ T9887] syzkaller0: entered promiscuous mode
[  603.967450][ T9887] syzkaller0: entered allmulticast mode
[  604.398401][ T9896] ERROR: device name not specified.
[  605.528270][ T9898] loop3: detected capacity change from 0 to 40427
[  605.590616][ T9898] F2FS-fs (loop3): invalid crc value
[  605.632827][ T9898] F2FS-fs (loop3): Found nat_bits in checkpoint
[  605.700446][ T9898] F2FS-fs (loop3): Start checkpoint disabled!
[  605.731931][ T9898] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  605.845298][ T9907] gfs2: not a GFS2 filesystem
[  605.858585][ T9905] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  606.006630][ T9911] fuse: Bad value for 'user_id'
[  606.255475][  T993] kworker/u4:5: attempt to access beyond end of device
[  606.255475][  T993] loop3: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  606.275038][  T993] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  606.298394][  T993] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  606.312432][  T993] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  606.954814][ T5868] IPVS: starting estimator thread 0...
[  606.963229][ T9922] IPVS: sed: FWM 3 0x00000003 - no destination available
[  607.058470][ T9924] IPVS: using max 19 ests per chain, 45600 per kthread
[  607.108532][ T9926] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  607.137397][ T9929] syzkaller0: entered promiscuous mode
[  607.143650][ T9929] syzkaller0: entered allmulticast mode
[  607.743428][ T9935] loop2: detected capacity change from 0 to 40427
[  607.785488][ T9935] F2FS-fs (loop2): invalid crc value
[  607.819552][ T9935] F2FS-fs (loop2): Found nat_bits in checkpoint
[  607.889166][ T9935] F2FS-fs (loop2): Start checkpoint disabled!
[  607.906714][ T9935] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  609.423939][ T2936] kworker/u4:8: attempt to access beyond end of device
[  609.423939][ T2936] loop2: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  609.690425][ T2936] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  609.831552][ T2936] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  610.005122][ T2936] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  612.218961][ T9954] fuse: Bad value for 'fd'
[  614.559839][ T9969] syzkaller0: entered promiscuous mode
[  614.592208][ T9969] syzkaller0: entered allmulticast mode
[  617.607978][ T9992] loop0: detected capacity change from 0 to 40427
[  617.659070][ T9992] F2FS-fs (loop0): invalid crc value
[  617.684393][ T9992] F2FS-fs (loop0): Found nat_bits in checkpoint
[  617.735410][ T9992] F2FS-fs (loop0): Start checkpoint disabled!
[  617.748574][ T9992] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  618.894532][ T9999] syz.1.1198 (9999): drop_caches: 2
[  619.849884][   T49] kworker/u4:3: attempt to access beyond end of device
[  619.849884][   T49] loop0: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  619.894763][   T49] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  621.098365][   T49] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  621.105409][   T49] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  623.188666][ T6315] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  623.390143][ T6315] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  623.405270][ T6315] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  623.556646][ T6315] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  623.698652][ T6315] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  623.706857][ T6315] usb 1-1: SerialNumber: syz
[  624.032461][ T6315] usb 1-1: 0:2 : does not exist
[  624.141780][ T6315] usb 1-1: USB disconnect, device number 16
[  624.213245][ T9901] udevd[9901]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  624.750574][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  624.756983][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  626.821603][T10036] syz.3.1210 (10036): drop_caches: 2
[  628.118444][T10039] syzkaller0: entered promiscuous mode
[  628.132461][T10042] gfs2: not a GFS2 filesystem
[  628.179908][T10039] syzkaller0: entered allmulticast mode
[  629.115385][T10051] loop0: detected capacity change from 0 to 1024
[  629.389116][   T28] audit: type=1800 audit(1770887229.648:8): pid=10051 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1216" name="file1" dev="loop0" ino=2 res=0 errno=0
[  630.699262][T10062] 9pnet_fd: Insufficient options for proto=fd
[  631.939431][T10072] loop1: detected capacity change from 0 to 512
[  631.947111][T10072] FAT-fs (loop1): Unrecognized mount option "" or missing value
[  636.128642][T10085] loop2: detected capacity change from 0 to 512
[  636.219360][T10085] EXT4-fs (loop2): bad block size 65536
[  638.065013][T10090] ERROR: device name not specified.
[  638.438436][   T23] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  638.688610][   T23] usb 3-1: Using ep0 maxpacket: 32
[  638.700074][   T23] usb 3-1: config 0 has an invalid interface number: 85 but max is 0
[  638.718347][   T23] usb 3-1: config 0 has no interface number 0
[  638.724587][   T23] usb 3-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  638.758298][   T23] usb 3-1: config 0 interface 85 has no altsetting 0
[  638.768898][   T23] usb 3-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  638.798340][   T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  638.818558][   T23] usb 3-1: Product: syz
[  638.822996][   T23] usb 3-1: Manufacturer: syz
[  638.846989][   T23] usb 3-1: SerialNumber: syz
[  638.873490][   T23] usb 3-1: config 0 descriptor??
[  638.907869][T10094] loop0: detected capacity change from 0 to 1024
[  639.226709][   T28] audit: type=1800 audit(1770887239.488:9): pid=10094 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1227" name="file1" dev="loop0" ino=2 res=0 errno=0
[  640.018291][   T23] appletouch 3-1:0.85: Failed to read mode from device.
[  640.127930][   T23] appletouch: probe of 3-1:0.85 failed with error -5
[  640.205146][   T23] usb 3-1: USB disconnect, device number 6
[  640.903904][T10108] 9pnet_fd: Insufficient options for proto=fd
[  641.259830][    T8] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  641.345235][T10112] syzkaller0: entered promiscuous mode
[  641.386104][T10112] syzkaller0: entered allmulticast mode
[  641.458320][    T8] usb 2-1: Using ep0 maxpacket: 32
[  641.480544][    T8] usb 2-1: config 0 has an invalid interface number: 188 but max is 0
[  641.496777][    T8] usb 2-1: config 0 has no interface number 0
[  641.517433][    T8] usb 2-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[  641.555641][    T8] usb 2-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  641.581750][    T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  641.618270][    T8] usb 2-1: Product: syz
[  641.630496][    T8] usb 2-1: Manufacturer: syz
[  641.643152][    T8] usb 2-1: SerialNumber: syz
[  641.694641][    T8] usb 2-1: config 0 descriptor??
[  641.722076][T10106] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  641.994637][T10106] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  642.174536][T10116] fuse: Unknown parameter 'group_i00000000000000000000'
[  643.455749][    T8] asix 2-1:0.188 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  643.500063][    T8] asix: probe of 2-1:0.188 failed with error -71
[  643.808647][T10132] loop2: detected capacity change from 0 to 40427
[  643.822915][    T8] usb 2-1: USB disconnect, device number 13
[  643.841004][T10132] F2FS-fs (loop2): invalid crc value
[  644.068637][T10132] F2FS-fs (loop2): Found nat_bits in checkpoint
[  644.136889][T10132] F2FS-fs (loop2): Start checkpoint disabled!
[  644.171422][T10132] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  645.519116][ T8714] kworker/u4:4: attempt to access beyond end of device
[  645.519116][ T8714] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  645.552527][ T8714] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  645.972492][T10147] syzkaller0: entered promiscuous mode
[  646.007760][T10147] syzkaller0: entered allmulticast mode
[  647.324608][T10161] 9pnet_fd: Insufficient options for proto=fd
[  647.931521][T10164] loop0: detected capacity change from 0 to 4096
[  648.041152][T10170] ERROR: device name not specified.
[  648.991048][T10164] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  649.213248][T10175] xt_hashlimit: size too large, truncated to 1048576
[  651.859367][T10190] syzkaller0: entered promiscuous mode
[  651.864909][T10190] syzkaller0: entered allmulticast mode
[  652.589880][T10194] fuse: Invalid rootmode
[  653.411736][ T5773] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  653.680284][T10200] loop3: detected capacity change from 0 to 64
[  653.824374][ T9901] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  654.773025][T10206] ERROR: device name not specified.
[  655.428609][    T8] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  657.122742][    T8] usb 4-1: Using ep0 maxpacket: 8
[  657.207834][    T8] usb 4-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  657.236737][    T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  657.276948][T10216] syzkaller0: entered promiscuous mode
[  657.291456][    T8] pvrusb2: Hardware description: Terratec Grabster AV400
[  657.318525][T10216] syzkaller0: entered allmulticast mode
[  657.341201][    T8] pvrusb2: **********
[  657.345258][    T8] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  657.368255][    T8] pvrusb2: Important functionality might not be entirely working.
[  657.376160][    T8] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  657.398391][    T8] pvrusb2: **********
[  657.558966][ T2321] pvrusb2: Invalid write control endpoint
[  657.889073][ T2321] pvrusb2: Invalid write control endpoint
[  657.895231][ T2321] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  657.906795][T10220] loop2: detected capacity change from 0 to 512
[  657.935741][T10220] EXT4-fs (loop2): bad block size 65536
[  657.988323][ T2321] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  657.999896][ T2321] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  658.046989][ T2321] pvrusb2: Device being rendered inoperable
[  658.061494][ T2321] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[  658.089330][ T2321] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  658.097700][T10210] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1259'.
[  658.128428][ T2321] pvrusb2: Attached sub-driver cx25840
[  658.134337][ T2321] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  658.189582][ T2321] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  658.389866][T10229] pvrusb2: Killing an I2C write to 0 that is too large (desired=62 limit=61)
[  658.585339][T10233] 9pnet_fd: Insufficient options for proto=fd
[  659.444251][T10226] syzkaller0: entered promiscuous mode
[  659.478197][T10226] syzkaller0: entered allmulticast mode
[  659.694485][T10237] fuse: Bad value for 'rootmode'
[  659.720471][   T23] usb 4-1: USB disconnect, device number 10
[  661.324345][ T5868] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  661.525345][ T5868] usb 3-1: Using ep0 maxpacket: 32
[  661.542754][ T5868] usb 3-1: config 0 has an invalid interface number: 188 but max is 0
[  661.566433][ T5868] usb 3-1: config 0 has no interface number 0
[  661.585196][ T5868] usb 3-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[  661.611122][ T5868] usb 3-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  661.636395][ T5868] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  661.658389][ T5868] usb 3-1: Product: syz
[  661.668227][ T5868] usb 3-1: Manufacturer: syz
[  661.668633][T10244] loop3: detected capacity change from 0 to 128
[  661.674313][ T5868] usb 3-1: SerialNumber: syz
[  661.699291][T10244] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  661.718871][ T5868] usb 3-1: config 0 descriptor??
[  661.724915][T10235] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  661.742692][T10244] hpfs: filesystem error: improperly stopped
[  661.755623][T10244] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  661.792595][T10244] hpfs: You really don't want any checks? You are crazy...
[  661.800564][T10244] hpfs: hpfs_map_sector(): read error
[  661.822402][T10244] hpfs: code page support is disabled
[  661.828042][T10244] hpfs: hpfs_map_4sectors(): unaligned read
[  661.853985][T10244] hpfs: hpfs_map_4sectors(): unaligned read
[  661.872858][T10244] hpfs: filesystem error: unable to find root dir
[  661.957429][T10235] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  662.425370][T10252] loop1: detected capacity change from 0 to 256
[  663.727312][ T5868] asix 3-1:0.188 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  663.948412][ T5868] asix: probe of 3-1:0.188 failed with error -71
[  663.959597][T10261] fuse: Bad value for 'fd'
[  663.963374][ T5868] usb 3-1: USB disconnect, device number 7
[  664.810891][T10268] gfs2: not a GFS2 filesystem
[  667.529291][T10282] loop1: detected capacity change from 0 to 40427
[  667.539088][T10282] F2FS-fs (loop1): invalid crc value
[  667.680006][T10282] F2FS-fs (loop1): Found nat_bits in checkpoint
[  667.721400][T10282] F2FS-fs (loop1): Start checkpoint disabled!
[  667.741483][T10282] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  668.294557][T10289] fuse: Bad value for 'rootmode'
[  668.496180][   T42] kworker/u4:2: attempt to access beyond end of device
[  668.496180][   T42] loop1: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  668.535056][   T42] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  668.559000][T10292] 9pnet_fd: Insufficient options for proto=fd
[  668.567581][   T42] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  669.662676][T10309] xt_hashlimit: size too large, truncated to 1048576
[  669.688901][   T23] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  669.859068][ T5786] Bluetooth: hci1: command 0x0406 tx timeout
[  669.878381][   T23] usb 4-1: device descriptor read/64, error -71
[  669.891868][    T8] IPVS: starting estimator thread 0...
[  670.048350][T10312] IPVS: using max 16 ests per chain, 38400 per kthread
[  670.158268][   T23] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  670.318485][   T23] usb 4-1: device descriptor read/64, error -71
[  670.440072][   T23] usb usb4-port1: attempt power cycle
[  670.848861][   T23] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  670.909052][   T23] usb 4-1: device descriptor read/8, error -71
[  671.178231][   T23] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  671.217027][T10330] loop2: detected capacity change from 0 to 1024
[  671.238306][   T23] usb 4-1: device descriptor read/8, error -71
[  671.286594][   T28] audit: type=1800 audit(1770887271.548:10): pid=10330 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1292" name="file1" dev="loop2" ino=2 res=0 errno=0
[  671.419690][   T23] usb usb4-port1: unable to enumerate USB device
[  672.055083][T10334] fuse: Bad value for 'rootmode'
[  673.003125][T10287] Bluetooth: hci1: command 0x0406 tx timeout
[  673.028454][T10328] syz.1.1291 (10328): drop_caches: 2
[  676.652358][T10345] loop3: detected capacity change from 0 to 32768
[  676.717833][T10345] JBD2: Ignoring recovery information on journal
[  676.777964][T10345] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  676.857004][T10360] gfs2: not a GFS2 filesystem
[  676.931251][   T28] audit: type=1800 audit(1770887277.188:11): pid=10361 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1296" name="file1" dev="loop3" ino=17058 res=0 errno=0
[  677.582653][T10345] syz.3.1296 (10345) used greatest stack depth: 18312 bytes left
[  677.761712][ T5771] ocfs2: Unmounting device (7,3) on (node local)
[  677.922897][T10370] fuse: Unknown parameter 'use00000000000000000000'
[  679.438407][ T6315] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  679.628389][ T6315] usb 4-1: Using ep0 maxpacket: 8
[  679.640676][ T6315] usb 4-1: config 0 has an invalid interface number: 168 but max is 0
[  679.649194][ T6315] usb 4-1: config 0 has no interface number 0
[  679.663061][ T6315] usb 4-1: New USB device found, idVendor=1286, idProduct=1fa4, bcdDevice=9f.7a
[  679.718686][ T6315] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  679.731143][ T6315] usb 4-1: Product: syz
[  679.735370][ T6315] usb 4-1: Manufacturer: syz
[  679.744186][ T6315] usb 4-1: SerialNumber: syz
[  679.761277][ T6315] usb 4-1: config 0 descriptor??
[  679.817695][ T6315] mvusb_mdio: probe of 4-1:0.168 failed with error -5
[  679.974350][ T5873] usb 4-1: USB disconnect, device number 15
[  681.270767][T10395] loop2: detected capacity change from 0 to 32768
[  681.324235][T10395] JBD2: Ignoring recovery information on journal
[  682.118783][T10395] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  682.283882][T10419] fuse: Unknown parameter 'use00000000000000000000'
[  682.537136][T10395] syz.2.1312 (10395) used greatest stack depth: 18288 bytes left
[  683.017648][ T5772] ocfs2: Unmounting device (7,2) on (node local)
[  683.737281][T10435] loop1: detected capacity change from 0 to 40427
[  683.748188][T10435] F2FS-fs (loop1): invalid crc value
[  683.783996][T10435] F2FS-fs (loop1): Found nat_bits in checkpoint
[  683.900275][T10435] F2FS-fs (loop1): Start checkpoint disabled!
[  683.928317][T10435] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  684.983678][  T786] IPVS: starting estimator thread 0...
[  685.053994][ T3468] kworker/u4:12: attempt to access beyond end of device
[  685.053994][ T3468] loop1: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  685.082851][T10454] fuse: Bad value for 'fd'
[  685.107855][ T3468] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  685.138003][ T3468] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  685.145253][T10450] IPVS: using max 26 ests per chain, 62400 per kthread
[  685.158551][ T3468] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  686.167423][T10467] fuse: Unknown parameter 'use00000000000000000000'
[  686.184463][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  686.190917][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  688.029362][T10495] fuse: Bad value for 'fd'
[  688.912647][T10503] cgroup2: Unknown parameter 'memory_hugetlb_accounting'
[  690.348921][T10531] fuse: Bad value for 'fd'
[  690.828291][ T6315] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  691.028210][ T6315] usb 1-1: Using ep0 maxpacket: 32
[  691.052665][ T6315] usb 1-1: config 0 has an invalid interface number: 188 but max is 0
[  691.078305][ T6315] usb 1-1: config 0 has no interface number 0
[  691.084510][ T6315] usb 1-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[  691.111094][ T6315] usb 1-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  691.128179][ T6315] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  691.147266][ T6315] usb 1-1: Product: syz
[  691.151978][ T6315] usb 1-1: Manufacturer: syz
[  691.156639][ T6315] usb 1-1: SerialNumber: syz
[  691.191167][ T6315] usb 1-1: config 0 descriptor??
[  691.219773][T10537] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  691.455338][T10537] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  691.612562][T10545] loop3: detected capacity change from 0 to 32768
[  691.626181][T10555] fuse: Unknown parameter '0x0000000000000003'
[  691.675659][T10545] JBD2: Ignoring recovery information on journal
[  691.783849][T10545] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  692.189301][ T5771] ocfs2: Unmounting device (7,3) on (node local)
[  692.587697][ T6315] asix 1-1:0.188 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[  692.598646][ T6315] asix: probe of 1-1:0.188 failed with error -32
[  692.822381][T10571] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1372'.
[  693.122512][T10573] loop3: detected capacity change from 0 to 40427
[  693.149487][T10573] F2FS-fs (loop3): invalid crc value
[  693.159437][T10573] F2FS-fs (loop3): Found nat_bits in checkpoint
[  693.211748][T10573] F2FS-fs (loop3): Start checkpoint disabled!
[  693.223273][T10573] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  693.898813][ T6315] usb 1-1: USB disconnect, device number 17
[  694.010482][   T49] kworker/u4:3: attempt to access beyond end of device
[  694.010482][   T49] loop3: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  694.023060][T10583] fuse: Unknown parameter '0x0000000000000003'
[  694.050581][   T49] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  694.063506][   T49] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  694.074096][   T49] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  696.771043][T10606] loop0: detected capacity change from 0 to 40427
[  696.781239][T10606] F2FS-fs (loop0): invalid crc value
[  696.796502][T10606] F2FS-fs (loop0): Found nat_bits in checkpoint
[  696.847604][T10606] F2FS-fs (loop0): Start checkpoint disabled!
[  696.849976][ T6315] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  696.876176][T10606] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  697.198403][ T6315] usb 4-1: Using ep0 maxpacket: 32
[  697.296297][ T6315] usb 4-1: config 0 has an invalid interface number: 188 but max is 0
[  697.354942][ T6315] usb 4-1: config 0 has no interface number 0
[  697.388411][ T6315] usb 4-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[  697.469384][ T6315] usb 4-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  697.501885][ T6315] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  697.519106][T10616] fuse: Unknown parameter '0x0000000000000003'
[  697.528942][ T6315] usb 4-1: Product: syz
[  697.537609][ T6315] usb 4-1: Manufacturer: syz
[  697.556403][ T6315] usb 4-1: SerialNumber: syz
[  697.587554][ T6315] usb 4-1: config 0 descriptor??
[  697.610125][T10608] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  697.651950][   T11] kworker/u4:0: attempt to access beyond end of device
[  697.651950][   T11] loop0: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  697.685868][   T11] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  697.698220][   T11] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  697.709616][   T11] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  699.077072][T10618] syz.1.1389 (10618): drop_caches: 2
[  699.087506][T10608] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  700.015979][ T6315] asix 4-1:0.188 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61
[  700.056104][ T6315] asix 4-1:0.188 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffc3
[  700.069236][ T6315] asix: probe of 4-1:0.188 failed with error -61
[  700.765230][T10639] loop2: detected capacity change from 0 to 1024
[  700.829389][T10639] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  700.844923][T10639] ext4 filesystem being mounted at /371/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  701.149057][T10643] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm ext4lazyinit: bg 0: block 112: padding at end of block bitmap is not set
[  701.663777][ T6315] usb 4-1: USB disconnect, device number 16
[  701.795132][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  702.062003][T10653] loop3: detected capacity change from 0 to 40427
[  702.098639][T10653] F2FS-fs (loop3): invalid crc value
[  702.119615][T10653] F2FS-fs (loop3): Found nat_bits in checkpoint
[  702.133661][T10655] fuse: Unknown parameter '0x0000000000000003'
[  702.214833][T10653] F2FS-fs (loop3): Start checkpoint disabled!
[  702.252243][T10653] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  703.056991][ T2986] kworker/u4:10: attempt to access beyond end of device
[  703.056991][ T2986] loop3: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  703.073123][ T2986] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  703.084320][ T2986] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  703.094537][ T2986] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  705.392524][T10682] fuse: Unknown parameter '0x0000000000000003'
[  705.468446][ T5821] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  705.668730][ T5821] usb 2-1: Using ep0 maxpacket: 32
[  705.742732][ T5821] usb 2-1: config 0 has an invalid interface number: 188 but max is 0
[  705.798744][ T5821] usb 2-1: config 0 has no interface number 0
[  705.872301][ T5821] usb 2-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[  705.965351][ T5821] usb 2-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  706.037037][ T5821] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  706.106477][ T5821] usb 2-1: Product: syz
[  706.141898][ T5821] usb 2-1: Manufacturer: syz
[  706.185977][ T5821] usb 2-1: SerialNumber: syz
[  706.266377][ T5821] usb 2-1: config 0 descriptor??
[  706.337911][T10680] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  706.676864][T10680] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  706.930568][T10702] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  707.528920][T10708] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  707.538601][ T5821] asix 2-1:0.188 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61
[  707.584763][ T5821] asix 2-1:0.188 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffc3
[  707.624271][ T5821] asix: probe of 2-1:0.188 failed with error -61
[  710.346382][ T5821] usb 2-1: USB disconnect, device number 14
[  710.491588][T10725] fuse: Unknown parameter '0x0000000000000003'
[  712.051058][T10733] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  713.984993][T10755] fuse: Unknown parameter 'fd0xffffffffffffffff'
[  718.959586][T10788] fuse: Unknown parameter 'fd0x0000000000000003'
[  719.051615][T10790] xt_hashlimit: size too large, truncated to 1048576
[  724.743471][T10821] loop3: detected capacity change from 0 to 262144
[  724.773836][T10821] BTRFS: device fsid 7e32c2af-f87a-45a1-bcba-64dea7c56a53 devid 1 transid 8 /dev/loop3 scanned by syz.3.1450 (10821)
[  724.815074][T10821] BTRFS info (device loop3): first mount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  724.825670][T10821] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm
[  724.835023][T10821] BTRFS info (device loop3): setting nodatasum
[  724.841342][T10821] BTRFS info (device loop3): using free space tree
[  726.029762][ T5771] BTRFS info (device loop3): last unmount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  726.334361][T10825] loop0: detected capacity change from 0 to 32768
[  726.478283][T10825] JBD2: Ignoring recovery information on journal
[  726.686806][T10825] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  727.302089][ T5773] ocfs2: Unmounting device (7,0) on (node local)
[  729.279950][  T786] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  729.481361][  T786] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  729.545425][  T786] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  729.619765][  T786] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  729.650352][  T786] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  729.698791][  T786] usb 2-1: SerialNumber: syz
[  730.001290][  T786] usb 2-1: cannot find UAC_HEADER
[  730.031168][T10870] ERROR: device name not specified.
[  730.794679][  T786] snd-usb-audio: probe of 2-1:1.0 failed with error -22
[  730.804800][  T786] usb 2-1: USB disconnect, device number 15
[  730.884529][ T9847] udevd[9847]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  731.942696][T10875] loop2: detected capacity change from 0 to 1024
[  732.552854][T10881] gfs2: not a GFS2 filesystem
[  732.611335][T10875] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  732.623915][T10875] ext4 filesystem being mounted at /390/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  734.593215][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  737.438216][  T786] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  737.655376][  T786] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  737.666092][  T786] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  737.688338][  T786] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  737.951569][  T786] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  738.299116][  T786] usb 1-1: SerialNumber: syz
[  738.592109][  T786] usb 1-1: 0:2 : does not exist
[  738.643479][  T786] usb 1-1: USB disconnect, device number 18
[  738.761071][ T9901] udevd[9901]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  743.108531][T10948] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  743.700352][T10956] gfs2: not a GFS2 filesystem
[  746.531831][T10967] xt_hashlimit: size too large, truncated to 1048576
[  746.670931][T10970] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  747.658755][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  747.665219][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  748.477525][T10982] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  754.107492][T11012] loop1: detected capacity change from 0 to 1024
[  754.163054][T11012] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  754.306282][T11012] ext4 filesystem being mounted at /365/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  754.588368][T11015] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm ext4lazyinit: bg 0: block 112: padding at end of block bitmap is not set
[  754.778361][T11023] EXT4-fs error (device loop1): ext4_map_blocks:718: inode #15: comm syz.1.1497: lblock 0 mapped to illegal pblock 0 (length 1)
[  754.807304][T11023] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #15: comm syz.1.1497: lblock 0 mapped to illegal pblock 0 (length 1)
[  754.848851][T11023] EXT4-fs error (device loop1): ext4_ext_remove_space:2929: inode #15: comm syz.1.1497: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  754.877183][T11024] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #15: comm syz.1.1497: lblock 0 mapped to illegal pblock 0 (length 1)
[  754.920361][T11024] EXT4-fs error (device loop1): ext4_ext_remove_space:2929: inode #15: comm syz.1.1497: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  754.943513][T11024] EXT4-fs error (device loop1) in ext4_setattr:5663: Corrupt filesystem
[  755.274558][ T5770] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  759.628851][T11049] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1510'.
[  761.883574][T11063] tipc: Started in network mode
[  761.889299][T11063] tipc: Node identity ac14140f, cluster identity 4711
[  761.903602][T11063] tipc: New replicast peer: 255.255.255.255
[  761.912092][T11063] tipc: Enabled bearer <udp:syz2>, priority 10
[  761.927553][T11063] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1513'.
[  761.936900][T11063] tipc: Disabling bearer <udp:syz2>
[  763.394294][T11066] loop0: detected capacity change from 0 to 1024
[  763.871447][T11066] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  763.928479][T11066] ext4 filesystem being mounted at /366/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  764.148588][T11072] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm ext4lazyinit: bg 0: block 112: padding at end of block bitmap is not set
[  765.789682][ T5773] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  769.525027][T11114] fuse: Bad value for 'fd'
[  769.878646][T11116] loop1: detected capacity change from 0 to 1024
[  769.964512][T11116] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  769.978415][T11116] ext4 filesystem being mounted at /371/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  770.771022][ T5770] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  771.025518][T11129] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1529'.
[  774.735000][T11143] gfs2: not a GFS2 filesystem
[  774.829613][T11151] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  774.838357][T11070] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  775.091435][T11070] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  775.114047][T11070] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  775.156847][T11070] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  775.172897][T11070] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  775.187795][T11070] usb 3-1: SerialNumber: syz
[  775.356728][T11070] usb 3-1: 0:2 : does not exist
[  775.465895][T11070] usb 3-1: USB disconnect, device number 8
[  775.565038][ T9901] udevd[9901]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  775.800499][T11163] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1539'.
[  777.804417][T11180] loop1: detected capacity change from 0 to 1024
[  777.880710][T11180] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  778.068414][T11180] ext4 filesystem being mounted at /375/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  778.858183][ T5770] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  779.532452][T11191] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  779.678710][T10633] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  779.897234][T11200] gfs2: not a GFS2 filesystem
[  779.906558][T10633] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  779.917843][T10633] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  779.936414][T10633] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  779.945722][T10633] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  779.953940][T10633] usb 2-1: SerialNumber: syz
[  780.453152][T10633] usb 2-1: 0:2 : does not exist
[  780.536757][T11202] fuse: Unknown parameter '0x0000000000000003'
[  780.544480][T10633] usb 2-1: USB disconnect, device number 16
[  780.617137][ T9901] udevd[9901]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  780.792434][T11206] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1552'.
[  781.967009][T11214] loop1: detected capacity change from 0 to 1024
[  782.002634][T11214] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  782.044251][T11214] ext4 filesystem being mounted at /378/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  782.771372][ T5770] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  782.906326][T11229] loop1: detected capacity change from 0 to 256
[  785.257015][T11240] gfs2: not a GFS2 filesystem
[  786.420048][T11246] fuse: Unknown parameter '0x0000000000000003'
[  786.809524][T11248] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1564'.
[  787.676060][T11252] syz.2.1565 (11252): drop_caches: 2
[  789.308442][  T786] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  789.534894][  T786] usb 4-1: Using ep0 maxpacket: 32
[  789.593350][  T786] usb 4-1: config 0 has an invalid interface number: 188 but max is 0
[  789.602587][  T786] usb 4-1: config 0 has no interface number 0
[  789.610965][  T786] usb 4-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[  789.625406][  T786] usb 4-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  789.635603][  T786] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  789.643757][  T786] usb 4-1: Product: syz
[  789.648475][  T786] usb 4-1: Manufacturer: syz
[  789.653325][  T786] usb 4-1: SerialNumber: syz
[  789.665513][  T786] usb 4-1: config 0 descriptor??
[  789.695283][T11256] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  789.979100][T11256] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  790.816924][  T786] asix 4-1:0.188 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61
[  790.851819][  T786] asix 4-1:0.188 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffc3
[  790.965709][  T786] asix: probe of 4-1:0.188 failed with error -61
[  791.545123][T11277] loop1: detected capacity change from 0 to 512
[  791.572890][T11277] EXT4-fs: Ignoring removed nobh option
[  791.654912][T11277] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1572: invalid indirect mapped block 256 (level 2)
[  791.714909][T11277] EXT4-fs (loop1): Remounting filesystem read-only
[  791.742248][T11277] EXT4-fs (loop1): 2 truncates cleaned up
[  791.761995][T11277] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  792.233468][T10633] usb 4-1: USB disconnect, device number 17
[  792.486614][ T5770] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  793.200382][T11292] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1575'.
[  793.669098][T11300] fuse: Unknown parameter 'fd0x0000000000000003'
[  793.704928][T11299] loop3: detected capacity change from 0 to 1024
[  793.779243][T11299] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  793.846325][T11299] ext4 filesystem being mounted at /391/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  794.677407][ T5771] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  795.245303][T11318] tipc: New replicast peer: 255.255.255.255
[  795.252294][T11318] tipc: Enabled bearer <udp:syz2>, priority 10
[  795.262199][T11318] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1580'.
[  795.271262][T11318] tipc: Disabling bearer <udp:syz2>
[  797.388317][ T5868] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  797.564853][T11335] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1586'.
[  797.588413][ T5868] usb 4-1: Using ep0 maxpacket: 32
[  797.598967][ T5868] usb 4-1: config 0 has an invalid interface number: 188 but max is 0
[  797.619319][ T5868] usb 4-1: config 0 has no interface number 0
[  797.625571][ T5868] usb 4-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[  797.676911][ T5868] usb 4-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  797.696781][ T5868] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  797.743480][ T5868] usb 4-1: Product: syz
[  797.772816][ T5868] usb 4-1: Manufacturer: syz
[  797.793084][ T5868] usb 4-1: SerialNumber: syz
[  797.822849][ T5868] usb 4-1: config 0 descriptor??
[  797.842017][T11328] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  798.078837][T11328] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  798.394214][T11340] loop0: detected capacity change from 0 to 1024
[  798.457866][T11340] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  798.488861][T11340] ext4 filesystem being mounted at /384/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  798.954713][ T5868] asix 4-1:0.188 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61
[  798.970452][ T5868] asix 4-1:0.188 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffc3
[  798.991983][ T5868] asix: probe of 4-1:0.188 failed with error -61
[  799.353436][ T5773] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  800.130131][T11349] loop2: detected capacity change from 0 to 1764
[  800.267222][ T5868] usb 4-1: USB disconnect, device number 18
[  800.280033][ T9901] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  800.427264][T11355] fuse: Unknown parameter 'fd0x0000000000000003'
[  802.643717][T11379] ERROR: device name not specified.
[  802.671031][T11380] loop1: detected capacity change from 0 to 512
[  802.754241][T11380] EXT4-fs (loop1): bad block size 65536
[  803.232484][    T8] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  803.668253][    T8] usb 2-1: device descriptor read/64, error -71
[  803.998192][    T8] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  804.188334][    T8] usb 2-1: device descriptor read/64, error -71
[  804.821035][    T8] usb usb2-port1: attempt power cycle
[  805.194878][T11395] loop2: detected capacity change from 0 to 1024
[  805.685355][T11396] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  805.778582][    T8] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  806.139261][    T8] usb 2-1: device descriptor read/8, error -71
[  806.589380][T11403] fuse: Unknown parameter 'fd0x0000000000000003'
[  806.980379][T11408] ERROR: device name not specified.
[  809.056246][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  809.062871][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  810.152318][T11424] loop0: detected capacity change from 0 to 1024
[  810.851584][T11427] loop3: detected capacity change from 0 to 512
[  810.868804][T11427] EXT4-fs (loop3): bad block size 65536
[  811.219135][ T7581] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  811.428171][ T7581] usb 4-1: device descriptor read/64, error -71
[  811.638902][T11439] ERROR: device name not specified.
[  811.738290][ T7581] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  811.908411][ T7581] usb 4-1: device descriptor read/64, error -71
[  812.098473][ T7581] usb usb4-port1: attempt power cycle
[  812.538471][ T7581] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  812.599286][ T7581] usb 4-1: device descriptor read/8, error -71
[  812.878295][ T7581] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  812.919851][T11438] loop1: detected capacity change from 0 to 32768
[  812.949001][ T7581] usb 4-1: device descriptor read/8, error -71
[  813.088706][ T7581] usb usb4-port1: unable to enumerate USB device
[  813.389763][T11438] JBD2: Ignoring recovery information on journal
[  813.567619][T11438] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  814.937746][ T5770] ocfs2: Unmounting device (7,1) on (node local)
[  815.251200][T11454] loop3: detected capacity change from 0 to 1024
[  816.310180][T11465] loop2: detected capacity change from 0 to 1024
[  816.354591][T11465] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  816.379878][T11465] ext4 filesystem being mounted at /430/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  816.427789][T11470] ERROR: device name not specified.
[  817.223021][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  817.266963][T11476] cgroup2: Unknown parameter 'memory_hugetlb_accounting'
[  817.434838][T11474] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  817.545835][T11481] loop2: detected capacity change from 0 to 512
[  817.578956][T11481] EXT4-fs (loop2): bad block size 65536
[  817.878278][ T7581] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  818.078335][ T7581] usb 3-1: device descriptor read/64, error -71
[  819.448286][ T7581] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  819.741172][ T7581] usb 3-1: device descriptor read/64, error -71
[  819.909854][ T7581] usb usb3-port1: attempt power cycle
[  820.856669][T11499] loop1: detected capacity change from 0 to 1024
[  821.030786][T11501] ERROR: device name not specified.
[  821.180286][   T28] audit: type=1800 audit(1770887421.428:12): pid=11499 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1635" name="file1" dev="loop1" ino=2 res=0 errno=0
[  821.698457][T11508] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  823.547130][T11519] cgroup2: Unknown parameter 'memory_hugetlb_accounting'
[  824.164398][ T5821] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  824.385330][ T5821] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  824.422696][ T5821] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  824.459743][ T5821] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  824.478273][ T5821] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  824.502891][ T5821] usb 1-1: SerialNumber: syz
[  824.617977][T11523] tipc: New replicast peer: 255.255.255.255
[  824.635643][T11523] tipc: Enabled bearer <udp:syz2>, priority 10
[  824.734705][ T5821] usb 1-1: 0:2 : does not exist
[  824.792831][ T5821] usb 1-1: USB disconnect, device number 19
[  824.930029][T11381] udevd[11381]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  825.194999][T11527] loop3: detected capacity change from 0 to 512
[  825.251794][T11527] EXT4-fs (loop3): bad block size 65536
[  825.578236][ T7581] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  825.752274][    T8] tipc: Node number set to 2886997007
[  825.779176][T11531] ERROR: device name not specified.
[  825.838420][ T7581] usb 4-1: Using ep0 maxpacket: 32
[  825.848420][ T7581] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  825.927713][ T7581] usb 4-1: config 0 has no interfaces?
[  825.964119][ T7581] usb 4-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  825.998445][ T7581] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  826.006915][ T7581] usb 4-1: Product: syz
[  826.011715][ T7581] usb 4-1: Manufacturer: syz
[  826.017502][ T7581] usb 4-1: SerialNumber: syz
[  826.039472][ T7581] usb 4-1: config 0 descriptor??
[  826.098383][T11534] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  829.826224][    T8] usb 4-1: USB disconnect, device number 23
[  831.312789][T11567] ERROR: device name not specified.
[  832.060094][T11572] input: syz1 as /devices/virtual/input/input9
[  832.728383][    T8] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  836.400408][T11600] cgroup2: Unknown parameter 'memory_hugetlb_accounting'
[  836.913557][T11609] ERROR: device name not specified.
[  837.143375][T11619] loop2: detected capacity change from 0 to 512
[  837.162894][T11619] EXT4-fs: Ignoring removed nobh option
[  837.212332][T11619] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.1671: invalid indirect mapped block 256 (level 2)
[  837.236307][T11619] EXT4-fs (loop2): Remounting filesystem read-only
[  837.256718][T11619] EXT4-fs (loop2): 2 truncates cleaned up
[  837.263784][T11619] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  837.386631][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  841.480702][T11648] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  842.973442][    T8] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  843.108923][ T5873] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  843.206640][   T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  845.428322][T11669] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  848.764734][ T2971] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  850.568266][ T5786] Bluetooth: hci1: command 0x0406 tx timeout
[  852.799593][ T5873] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  853.594057][T11723] fuse: Bad value for 'group_id'
[  854.489596][ T8714] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  854.672076][T11748] ERROR: device name not specified.
[  855.528143][T10287] Bluetooth: hci1: command 0x0406 tx timeout
[  857.880757][T11765] fuse: Bad value for 'group_id'
[  858.591986][T11775] ERROR: device name not specified.
[  860.411571][   T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  860.424924][T10287] Bluetooth: hci1: command 0x0406 tx timeout
[  862.169628][ T5873] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  862.345103][T11800] gfs2: not a GFS2 filesystem
[  863.458373][T11810] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  863.482054][T11808] ERROR: device name not specified.
[  865.348426][ T5786] Bluetooth: hci1: command 0x0406 tx timeout
[  866.053615][  T993] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  866.689426][T11826] loop2: detected capacity change from 0 to 1024
[  866.763896][   T28] audit: type=1800 audit(1770887467.028:13): pid=11826 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1730" name="file1" dev="loop2" ino=2 res=0 errno=0
[  867.610823][T11824] loop1: detected capacity change from 0 to 32768
[  867.858002][T11824] JBD2: Ignoring recovery information on journal
[  868.192676][T11824] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  868.796560][ T5770] ocfs2: Unmounting device (7,1) on (node local)
[  869.133256][T11848] gfs2: not a GFS2 filesystem
[  869.543147][T11850] ERROR: device name not specified.
[  870.499144][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  870.506926][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  871.359959][T11859] loop1: detected capacity change from 0 to 1024
[  871.399438][T11859] EXT4-fs: Ignoring removed nobh option
[  871.694317][T11859] EXT4-fs: Ignoring removed nomblk_io_submit option
[  871.848582][T10287] Bluetooth: hci1: command 0x0406 tx timeout
[  871.849268][ T5821] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  872.009206][ T2971] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  872.032712][T11859] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  872.957066][ T5770] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  873.023190][T11879] 9pnet_fd: Insufficient options for proto=fd
[  873.636348][T11884] ERROR: device name not specified.
[  877.662379][ T5786] Bluetooth: hci1: command 0x0406 tx timeout
[  877.762406][ T3468] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  879.047771][T11922] ERROR: device name not specified.
[  879.059168][T11924] 9pnet_fd: Insufficient options for proto=fd
[  880.200699][T11929] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  880.336192][T11934] loop1: detected capacity change from 0 to 512
[  880.396025][T11934] EXT4-fs (loop1): bad block size 65536
[  880.708244][   T23] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  880.900975][   T23] usb 2-1: Using ep0 maxpacket: 32
[  880.934035][   T23] usb 2-1: config 0 has an invalid interface number: 85 but max is 0
[  880.948400][   T23] usb 2-1: config 0 has no interface number 0
[  880.955423][   T23] usb 2-1: config 0 interface 85 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  880.975008][   T23] usb 2-1: config 0 interface 85 has no altsetting 0
[  880.996117][   T23] usb 2-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  881.006329][   T23] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  881.031177][   T23] usb 2-1: Product: syz
[  881.089576][   T23] usb 2-1: Manufacturer: syz
[  881.120493][   T23] usb 2-1: SerialNumber: syz
[  881.203944][   T23] usb 2-1: config 0 descriptor??
[  881.244075][   T23] appletouch 2-1:0.85: Could not find int-in endpoint
[  881.254422][   T23] appletouch: probe of 2-1:0.85 failed with error -5
[  881.269644][   T23] usbhid 2-1:0.85: couldn't find an input interrupt endpoint
[  882.295330][T11950] ERROR: device name not specified.
[  882.381912][T11952] gfs2: not a GFS2 filesystem
[  883.018524][T11960] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  884.324532][ T5821] usb 2-1: USB disconnect, device number 21
[  884.470510][T11970] fuse: Unknown parameter 'grou00000000000000000000'
[  885.870684][T11979] ERROR: device name not specified.
[  886.173843][T11988] gfs2: not a GFS2 filesystem
[  887.991252][T11996] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  888.000402][T11997] fuse: Unknown parameter 'group_i00000000000000000000'
[  889.769506][T12015] ERROR: device name not specified.
[  890.235815][T12020] loop2: detected capacity change from 0 to 512
[  890.244332][T12020] EXT4-fs (loop2): bad block size 65536
[  890.568616][    T8] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  890.768352][    T8] usb 3-1: Using ep0 maxpacket: 32
[  890.785639][T12032] gfs2: not a GFS2 filesystem
[  890.794304][    T8] usb 3-1: config 0 has an invalid interface number: 85 but max is 0
[  890.828595][    T8] usb 3-1: config 0 has no interface number 0
[  890.858213][    T8] usb 3-1: config 0 interface 85 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  892.026765][    T8] usb 3-1: config 0 interface 85 has no altsetting 0
[  892.071295][    T8] usb 3-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  892.098826][    T8] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  892.163190][    T8] usb 3-1: Product: syz
[  892.177994][    T8] usb 3-1: Manufacturer: syz
[  892.193616][    T8] usb 3-1: SerialNumber: syz
[  892.216464][    T8] usb 3-1: config 0 descriptor??
[  892.251692][    T8] appletouch 3-1:0.85: Could not find int-in endpoint
[  892.271038][    T8] appletouch: probe of 3-1:0.85 failed with error -5
[  892.314946][    T8] usbhid 3-1:0.85: couldn't find an input interrupt endpoint
[  892.349081][T12018] loop3: detected capacity change from 0 to 32768
[  892.402292][T12018] JBD2: Ignoring recovery information on journal
[  892.695185][T12018] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  893.164270][   T28] audit: type=1800 audit(1770887493.428:14): pid=12018 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1789" name="file1" dev="loop3" ino=17058 res=0 errno=0
[  893.508706][ T5771] ocfs2: Unmounting device (7,3) on (node local)
[  893.818921][T12050] cgroup2: Unknown parameter 'memory_hugetlb_accounting'
[  893.956443][T11070] usb 3-1: USB disconnect, device number 12
[  932.008639][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  932.015042][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  999.548004][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  999.555401][    C0] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P5772/1:b..l P3468/1:b.el P5142/1:b..l
[  999.566141][    C0] rcu: 	(detected by 0, t=10502 jiffies, g=74001, q=163 ncpus=2)
[  999.574053][    C0] task:udevd           state:R  running task     stack:23048 pid:5142  ppid:1      flags:0x00004002
[  999.586199][    C0] Call Trace:
[  999.589522][    C0]  <TASK>
[  999.592571][    C0]  __schedule+0x1553/0x45a0
[  999.597121][    C0]  ? asan.module_dtor+0x20/0x20
[  999.602133][    C0]  ? ep_poll_callback+0x5cb/0xa40
[  999.607247][    C0]  ? preempt_schedule+0xc0/0xd0
[  999.612124][    C0]  preempt_schedule_common+0x82/0xc0
[  999.617459][    C0]  preempt_schedule+0xc0/0xd0
[  999.622157][    C0]  ? schedule_preempt_disabled+0x20/0x20
[  999.628175][    C0]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  999.634233][    C0]  ? lock_chain_count+0x20/0x20
[  999.639191][    C0]  preempt_schedule_thunk+0x1a/0x30
[  999.644426][    C0]  _raw_spin_unlock_irqrestore+0x111/0x120
[  999.650698][    C0]  ? _raw_spin_unlock+0x40/0x40
[  999.655749][    C0]  ? __wake_up_common+0x2a4/0x4e0
[  999.660926][    C0]  __wake_up_sync_key+0x12c/0x1a0
[  999.666095][    C0]  ? __wake_up_locked_key_bookmark+0x20/0x20
[  999.672139][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[  999.677772][    C0]  ? sock_def_readable+0xad/0x420
[  999.683004][    C0]  sock_def_readable+0x1e1/0x420
[  999.688013][    C0]  netlink_sendskb+0x9b/0x130
[  999.692730][    C0]  netlink_sendmsg+0x8d0/0xbf0
[  999.697541][    C0]  ? __might_fault+0xaa/0x120
[  999.702254][    C0]  ? netlink_getsockopt+0x590/0x590
[  999.707569][    C0]  ? aa_sock_msg_perm+0x94/0x150
[  999.712877][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  999.718205][    C0]  ? security_socket_sendmsg+0x80/0xa0
[  999.723694][    C0]  ? netlink_getsockopt+0x590/0x590
[  999.728921][    C0]  ____sys_sendmsg+0x5ba/0x960
[  999.733800][    C0]  ? __lock_acquire+0x7d40/0x7d40
[  999.738929][    C0]  ? __asan_memset+0x22/0x40
[  999.743657][    C0]  ? __sys_sendmsg_sock+0x30/0x30
[  999.748795][    C0]  ? __import_iovec+0x3fa/0x850
[  999.753982][    C0]  ? import_iovec+0x73/0xa0
[  999.758732][    C0]  ___sys_sendmsg+0x2a6/0x360
[  999.763466][    C0]  ? __sys_sendmsg+0x2a0/0x2a0
[  999.768303][    C0]  __se_sys_sendmsg+0x1c2/0x2b0
[  999.773217][    C0]  ? __x64_sys_sendmsg+0x80/0x80
[  999.778220][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[  999.783647][    C0]  do_syscall_64+0x55/0xa0
[  999.788096][    C0]  ? clear_bhb_loop+0x40/0x90
[  999.792799][    C0]  ? clear_bhb_loop+0x40/0x90
[  999.797574][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  999.803585][    C0] RIP: 0033:0x7fe22dea7407
[  999.808734][    C0] RSP: 002b:00007ffe284543e0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e
[  999.817416][    C0] RAX: ffffffffffffffda RBX: 00007fe22e65c880 RCX: 00007fe22dea7407
[  999.825699][    C0] RDX: 0000000000000000 RSI: 00007ffe28454440 RDI: 0000000000000004
[  999.833706][    C0] RBP: 000055d6e7f95be0 R08: 0000000000000000 R09: 0000000000000000
[  999.841819][    C0] R10: 0000000000000000 R11: 0000000000000202 R12: 00000000000000f2
[  999.849907][    C0] R13: 000055d6e7f729e0 R14: 0000000000000000 R15: 0000000000000000
[  999.857907][    C0]  </TASK>
[  999.860941][    C0] task:kworker/u4:12   state:R  running task     stack:22152 pid:3468  ppid:2      flags:0x00004000
[  999.871845][    C0] Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet
[  999.879766][    C0] Call Trace:
[  999.883065][    C0]  <TASK>
[  999.886111][    C0]  __schedule+0x1553/0x45a0
[  999.890859][    C0]  ? asan.module_dtor+0x20/0x20
[  999.895735][    C0]  ? mark_lock+0x94/0x320
[  999.900194][    C0]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  999.906528][    C0]  ? preempt_schedule_irq+0xb4/0x150
[  999.911834][    C0]  preempt_schedule_irq+0xbf/0x150
[  999.916999][    C0]  ? preempt_schedule_notrace+0x110/0x110
[  999.922757][    C0]  ? verify_lock_unused+0x140/0x140
[  999.928082][    C0]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[  999.933919][    C0]  irqentry_exit+0x67/0x70
[  999.938398][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  999.944503][    C0] RIP: 0010:lock_acquire+0x142/0x420
[  999.949823][    C0] Code: 42 0f b6 04 38 84 c0 0f 85 09 02 00 00 41 83 3e 00 0f 85 17 01 00 00 43 c6 44 3c 08 00 48 c7 84 24 a0 00 00 00 00 00 00 00 9c <8f> 84 24 a0 00 00 00 4c 8b b4 24 a0 00 00 00 43 c6 44 3c 08 f8 fa
[  999.969539][    C0] RSP: 0018:ffffc9000cee7898 EFLAGS: 00000246
[  999.975714][    C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 1cbd54798351d900
[  999.983696][    C0] RDX: 0000000000000000 RSI: ffffffff8b1c81c0 RDI: ffffffff8b1c8180
[  999.991679][    C0] RBP: ffffc9000cee79a8 R08: ffffffff8e8addaf R09: 1ffffffff1d15bb5
[  999.999752][    C0] R10: dffffc0000000000 R11: fffffbfff1d15bb6 R12: 1ffff920019dcf20
[ 1000.007749][    C0] R13: ffffffff8d131fa0 R14: ffff88802db78adc R15: dffffc0000000000
[ 1000.015857][    C0]  ? batadv_iv_ogm_schedule+0x3e7/0xf10
[ 1000.021450][    C0]  ? read_lock_is_recursive+0x20/0x20
[ 1000.027104][    C0]  ? batadv_primary_if_get_selected+0x7b/0x410
[ 1000.033358][    C0]  ? batadv_iv_ogm_queue_add+0xcf0/0xcf0
[ 1000.039019][    C0]  batadv_iv_ogm_schedule+0x40b/0xf10
[ 1000.044865][    C0]  ? batadv_iv_ogm_schedule+0x3e7/0xf10
[ 1000.050450][    C0]  ? batadv_iv_ogm_schedule+0x3e7/0xf10
[ 1000.056010][    C0]  ? batadv_iv_send_outstanding_bat_ogm_packet+0x850/0x850
[ 1000.063240][    C0]  batadv_iv_send_outstanding_bat_ogm_packet+0x733/0x850
[ 1000.070387][    C0]  ? process_scheduled_works+0x96f/0x15d0
[ 1000.076174][    C0]  process_scheduled_works+0xa5d/0x15d0
[ 1000.081871][    C0]  ? assign_work+0x430/0x430
[ 1000.086619][    C0]  ? assign_work+0x3d0/0x430
[ 1000.091246][    C0]  worker_thread+0xa55/0xfc0
[ 1000.095875][    C0]  kthread+0x2fa/0x390
[ 1000.099963][    C0]  ? pr_cont_work+0x560/0x560
[ 1000.104832][    C0]  ? kthread_blkcg+0xd0/0xd0
[ 1000.109434][    C0]  ret_from_fork+0x48/0x80
[ 1000.113882][    C0]  ? kthread_blkcg+0xd0/0xd0
[ 1000.118517][    C0]  ret_from_fork_asm+0x11/0x20
[ 1000.123423][    C0]  </TASK>
[ 1000.126568][    C0] task:syz-executor    state:R  running task     stack:21392 pid:5772  ppid:5768   flags:0x00004000
[ 1000.137616][    C0] Call Trace:
[ 1000.140904][    C0]  <TASK>
[ 1000.143848][    C0]  __schedule+0x1553/0x45a0
[ 1000.148410][    C0]  ? mark_lock+0x94/0x320
[ 1000.152788][    C0]  ? asan.module_dtor+0x20/0x20
[ 1000.157671][    C0]  ? preempt_schedule+0xc0/0xd0
[ 1000.162540][    C0]  preempt_schedule_common+0x82/0xc0
[ 1000.167847][    C0]  preempt_schedule+0xc0/0xd0
[ 1000.172569][    C0]  ? schedule_preempt_disabled+0x20/0x20
[ 1000.178223][    C0]  ? __lock_acquire+0x7d40/0x7d40
[ 1000.183262][    C0]  preempt_schedule_thunk+0x1a/0x30
[ 1000.188482][    C0]  _raw_spin_unlock+0x3a/0x40
[ 1000.193203][    C0]  ? copy_page_range+0x2b6f/0x3670
[ 1000.198343][    C0]  copy_page_range+0x2ba0/0x3670
[ 1000.203328][    C0]  ? pfn_valid+0x450/0x450
[ 1000.207834][    C0]  ? mas_wr_store_entry+0x151/0x340
[ 1000.213114][    C0]  ? mas_store+0x37e/0x550
[ 1000.217557][    C0]  ? mas_empty_area_rev+0x1960/0x1960
[ 1000.222951][    C0]  ? up_write+0x1c3/0x410
[ 1000.227294][    C0]  ? anon_vma_interval_tree_verify+0x150/0x150
[ 1000.233465][    C0]  copy_mm+0x11cb/0x1d50
[ 1000.237752][    C0]  ? copy_signal+0x680/0x680
[ 1000.242366][    C0]  ? lockdep_init_map_type+0x9c/0x8e0
[ 1000.247784][    C0]  ? __init_rwsem+0x122/0x160
[ 1000.252503][    C0]  ? copy_signal+0x556/0x680
[ 1000.257130][    C0]  copy_process+0x16f7/0x3d80
[ 1000.262121][    C0]  ? copy_process+0x96e/0x3d80
[ 1000.266921][    C0]  ? __pidfd_prepare+0x140/0x140
[ 1000.271998][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[ 1000.277248][    C0]  kernel_clone+0x24b/0x8a0
[ 1000.281820][    C0]  ? create_io_thread+0x190/0x190
[ 1000.286985][    C0]  __x64_sys_clone+0x1b7/0x230
[ 1000.291876][    C0]  ? __ia32_sys_vfork+0x140/0x140
[ 1000.296945][    C0]  ? lock_chain_count+0x20/0x20
[ 1000.301917][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[ 1000.307157][    C0]  do_syscall_64+0x55/0xa0
[ 1000.311631][    C0]  ? clear_bhb_loop+0x40/0x90
[ 1000.316694][    C0]  ? clear_bhb_loop+0x40/0x90
[ 1000.321400][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1000.327598][    C0] RIP: 0033:0x7fe2cf1c4a12
[ 1000.332657][    C0] RSP: 002b:00007ffdf2e2de60 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 1000.341181][    C0] RAX: ffffffffffffffda RBX: 00007ffdf2e2de60 RCX: 00007fe2cf1c4a12
[ 1000.349269][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 1000.357357][    C0] RBP: 00007ffdf2e2dfec R08: 0000000000000000 R09: 0000000000000001
[ 1000.365413][    C0] R10: 00005555738597d0 R11: 0000000000000246 R12: 0000000000000001
[ 1000.373435][    C0] R13: 000000000000002c R14: 00000000000d9fb7 R15: 00007ffdf2e2e040
[ 1000.381544][    C0]  </TASK>
[ 1000.384629][    C0] rcu: rcu_preempt kthread starved for 10582 jiffies! g74001 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[ 1000.396197][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 1000.406351][    C0] rcu: RCU grace-period kthread stack dump:
[ 1000.412480][    C0] task:rcu_preempt     state:R  running task     stack:26760 pid:17    ppid:2      flags:0x00004000
[ 1000.423387][    C0] Call Trace:
[ 1000.426689][    C0]  <TASK>
[ 1000.429663][    C0]  __schedule+0x1553/0x45a0
[ 1000.434238][    C0]  ? _raw_spin_unlock+0x31/0x40
[ 1000.439390][    C0]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1000.445521][    C0]  ? asan.module_dtor+0x20/0x20
[ 1000.450500][    C0]  ? enqueue_timer+0x23d/0x550
[ 1000.455324][    C0]  ? __mod_timer+0x984/0xdb0
[ 1000.460135][    C0]  schedule+0xbd/0x170
[ 1000.464976][    C0]  schedule_timeout+0x188/0x2d0
[ 1000.470735][    C0]  ? console_conditional_schedule+0x40/0x40
[ 1000.477418][    C0]  ? update_process_times+0x1b0/0x1b0
[ 1000.483251][    C0]  ? prepare_to_swait_event+0x339/0x360
[ 1000.489218][    C0]  rcu_gp_fqs_loop+0x313/0x1590
[ 1000.494730][    C0]  ? rcu_gp_init+0x1162/0x1560
[ 1000.499623][    C0]  ? rcu_gp_kthread+0x3b0/0x3b0
[ 1000.504483][    C0]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1000.510664][    C0]  ? rcu_gp_init+0x1560/0x1560
[ 1000.515980][    C0]  ? rcu_gp_cleanup+0xb41/0xc90
[ 1000.520874][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1000.526701][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[ 1000.532541][    C0]  rcu_gp_kthread+0x9d/0x3b0
[ 1000.537597][    C0]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[ 1000.543091][    C0]  ? __kthread_parkme+0x7a/0x1c0
[ 1000.548695][    C0]  ? __kthread_parkme+0x162/0x1c0
[ 1000.553881][    C0]  kthread+0x2fa/0x390
[ 1000.558021][    C0]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[ 1000.563217][    C0]  ? kthread_blkcg+0xd0/0xd0
[ 1000.567860][    C0]  ret_from_fork+0x48/0x80
[ 1000.572330][    C0]  ? kthread_blkcg+0xd0/0xd0
[ 1000.577157][    C0]  ret_from_fork_asm+0x11/0x20
[ 1000.582016][    C0]  </TASK>
[ 1000.585231][    C0] rcu: Stack dump where RCU GP kthread last ran:
[ 1000.591592][    C0] Sending NMI from CPU 0 to CPUs 1:
[ 1000.596952][    C1] NMI backtrace for cpu 1
[ 1000.596988][    C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted syzkaller #0
[ 1000.597004][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1000.597014][    C1] RIP: 0010:pv_native_safe_halt+0xf/0x10
[ 1000.597040][    C1] Code: d7 22 02 c3 cc cc cc cc cc cc cc f3 0f 1e fa 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 66 90 0f 00 2d 83 e1 43 00 fb f4 <c3> 66 0f 1f 00 55 41 57 41 56 41 54 53 50 8b 2f eb 2e 41 89 de 80
[ 1000.597055][    C1] RSP: 0018:ffffc90000187de0 EFLAGS: 000002c2
[ 1000.597071][    C1] RAX: 1fae106d5eb33a00 RBX: ffffffff8162a490 RCX: 1fae106d5eb33a00
[ 1000.597084][    C1] RDX: 0000000000000001 RSI: ffffffff8acac900 RDI: ffffffff8b1c81e0
[ 1000.597096][    C1] RBP: ffffc90000187f20 R08: ffff8880b8f36b2b R09: 1ffff110171e6d65
[ 1000.597108][    C1] R10: dffffc0000000000 R11: ffffed10171e6d66 R12: 1ffff110036ce780
[ 1000.597121][    C1] R13: 1ffff92000030fc8 R14: 0000000000000001 R15: dffffc0000000000
[ 1000.597132][    C1] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[ 1000.597146][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1000.597158][    C1] CR2: 00007fa90d9b1700 CR3: 000000001f71e000 CR4: 00000000003506e0
[ 1000.597173][    C1] Call Trace:
[ 1000.597189][    C1]  <TASK>
[ 1000.597195][    C1]  default_idle+0x13/0x20
[ 1000.597215][    C1]  default_idle_call+0x6c/0xa0
[ 1000.597235][    C1]  do_idle+0x1f0/0x4e0
[ 1000.597257][    C1]  ? asm_sysvec_call_function_single+0x1a/0x20
[ 1000.597278][    C1]  ? idle_inject_timer_fn+0x60/0x60
[ 1000.597304][    C1]  ? do_idle+0xc/0x4e0
[ 1000.597324][    C1]  cpu_startup_entry+0x43/0x60
[ 1000.597344][    C1]  start_secondary+0xee/0xf0
[ 1000.597363][    C1]  secondary_startup_64_no_verify+0x179/0x17b
[ 1000.597394][    C1]  </TASK>