last executing test programs:

1.888501153s ago: executing program 0 (id=185):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x2014800, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r4 = landlock_create_ruleset(0x0, 0x0, 0x0)
landlock_restrict_self(r4, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB="9feb010018000000000000003400000034000000050000000300000000ff00110300000000000000000000000000000400000000000000000100000400000000080000000200"/79], 0x0, 0x51}, 0x28)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r6, &(0x7f0000003b80)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x5c}, 0x1, 0x0, 0x0, 0x24004000}, 0x0)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r5, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000400)={0x0}}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = dup(0xffffffffffffffff)
syz_io_uring_setup(0x239, 0x0, &(0x7f0000000180), &(0x7f00000001c0))
ioctl$TIOCSETD(r8, 0x5423, &(0x7f00000004c0)=0x4)
r9 = syz_genetlink_get_family_id$tipc(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000040)={0x30, r9, 0x1, 0xffffffff, 0x0, {{}, {}, {0x14, 0x19, {0xfffffffe, 0x9}}}}, 0x30}}, 0x0)

1.410985827s ago: executing program 1 (id=194):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f00000021c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040)}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000680)={r0, 0x0, 0xe, 0x0, &(0x7f0000000300)="14fd54ab72df97e6256c00000000", 0x0, 0xfeff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.340563981s ago: executing program 1 (id=196):
syz_mount_image$squashfs(&(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x0, &(0x7f0000000240), 0x1, 0x1a4, &(0x7f0000000000)="$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")

1.250668541s ago: executing program 1 (id=197):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r0 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x9840)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x1, @buffer={0x300, 0x56, &(0x7f0000000440)=""/86}, &(0x7f0000000380)="259374c94982", 0x0, 0x0, 0x14, 0x0, 0x0})

1.197771545s ago: executing program 1 (id=198):
syz_mount_image$exfat(&(0x7f0000000540), &(0x7f0000000040)='./file0\x00', 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB='utf8,utf8,iocharset=cp862,iocharset=cp864,discard,errors=remount-ro,fmask=00000000000000000007777,gid=', @ANYRESOCT=0x0, @ANYBLOB="2c757466382c616c6c6f775f7574696d653d3030303030303030303030303030303030312c616c6c6f775f7574696d653d30303030303030303030303030303030303030333737372c0002e5cc2c3640db32594e71db"], 0x1, 0x1526, &(0x7f0000000780)="$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")
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x8080c61)
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r0, 0x2007c00)

1.137161159s ago: executing program 1 (id=200):
syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000080)='./file0\x00', 0x3810082, &(0x7f0000000280)=ANY=[@ANYBLOB='undelete,gid=', @ANYRESDEC=0x0, @ANYBLOB=',gid=forget,rootdir=00000000000000001055,iocharset=cp864,unhide,gid=ignore,mode=00000000000000000000001,anchor=00000000000000000000,\x00'], 0x1, 0xc3c, &(0x7f0000002680)="$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")
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x802053, 0x0, 0xfc, 0x0, &(0x7f00000000c0))

1.136844359s ago: executing program 2 (id=202):
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x12, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000020000008500000011000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000003900000095"], &(0x7f00000002c0)='syzkaller\x00', 0x2, 0x0, 0x0, 0x1e00, 0x61, '\x00', 0x0, @cgroup_sock_addr=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1.090080459s ago: executing program 2 (id=203):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x2, [@const={0x0, 0x0, 0x0, 0xa, 0x2}, @int={0x0, 0x0, 0x0, 0x1, 0x5}, @union={0x0, 0x1, 0x0, 0x5, 0x0, 0x0, [{0x0, 0x1}]}]}}, 0x0, 0x4e, 0x0, 0x1}, 0x20)

1.089871467s ago: executing program 1 (id=204):
syz_usb_connect(0x0, 0x34, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0xc0, 0x8e, 0x61, 0x10, 0x17cc, 0x1010, 0x5354, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x22, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x66, 0x0, 0x0, 0xdd, 0xf3, 0x90, 0x0, [@uac_as={[@format_type_i_discrete={0x8, 0x24, 0x2, 0x1, 0x1, 0x2}, @format_type_i_discrete={0x8, 0x24, 0x2, 0x1, 0x0, 0x0, 0x8}]}]}}]}}]}}, 0x0)

1.089734085s ago: executing program 2 (id=205):
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000040)='./file0\x00', 0x100c404, &(0x7f0000000740)=ANY=[@ANYBLOB='dots,gid=', @ANYRESHEX=0xee01, @ANYBLOB="2c6e6f646f74732c6e6f646f74732c74696d655f6f66667365743d3078303030303030303030303030303664382c646f74732c646f74732c6e6f646f74732c6e6f646f7473732c646f74632c6e6f646f74732c646f74732c646f74732c646973636172642c646f74732c73686f77657865632c6e6f646f74732c646f74732c6e6f646f74732c646f74732c00240c88de60ce773898288e87dab81b83c62bc14335093e8354f077de0020"], 0xfd, 0x1f9, &(0x7f0000000540)="$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")

1.040219786s ago: executing program 2 (id=206):
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000080)='./file1\x00', 0x1808004, &(0x7f0000000000)=ANY=[@ANYRES16=0x0, @ANYRES64], 0x4, 0x7cc, &(0x7f0000002200)="$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")
open_by_handle_at(0xffffffffffffff9c, &(0x7f0000000640)=ANY=[@ANYBLOB="20000000020000001d"], 0x202400)

990.303818ms ago: executing program 2 (id=207):
r0 = socket$inet6(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
r1 = socket$inet6(0x10, 0x3, 0x0)
write(r1, &(0x7f0000000040)="2400000021002551241c0165ff00fc020200000000100f000ee1000c08000b0000000000", 0x24)

990.016851ms ago: executing program 0 (id=208):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0xca)
socket$nl_route(0x10, 0x3, 0x0)
getpid()
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)

989.85874ms ago: executing program 0 (id=209):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x1010002, &(0x7f00000008c0)={[{@iocharset={'iocharset', 0x3d, 'cp864'}}, {@utf8}, {@shortname_mixed}, {@iocharset={'iocharset', 0x3d, 'cp857'}}, {@uni_xlate}, {@utf8}, {@utf8no}, {@uni_xlate}, {@uni_xlateno}, {@iocharset={'iocharset', 0x3d, 'macgreek'}}, {@shortname_winnt}, {@iocharset={'iocharset', 0x3d, 'cp863'}}, {@utf8no}, {@shortname_win95}, {@uni_xlate}, {@fat=@uid}, {@numtail}]}, 0x1, 0x36b, &(0x7f0000000500)="$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")

989.752549ms ago: executing program 2 (id=210):
r0 = syz_clone(0x2180, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000480)='task\x00')
fchdir(r1)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r2 = syz_open_procfs(r0, &(0x7f0000000040)='syscall\x00')
syz_usb_connect(0x0, 0x202, &(0x7f0000000780)=ANY=[@ANYBLOB="1201100152018b401e040740185d000000010902f001"], 0x0)
pread64(r2, &(0x7f0000000500)=""/31, 0x1f, 0x40000000009)

939.627805ms ago: executing program 0 (id=211):
r0 = memfd_create(&(0x7f0000000280)='\x00\x00\x00\x00\x00\x00z\x9b\xb6\xe8t;\xfc\x02\x00\x00\x009\xa0\x8b\x14d\xa2\xa1\xa8!\xe8\xd1\xa0\x8a\xce0\x1c\xb7\xf1\xccm\xce\xd4\xdb\x89\xe5\x8f\xe2\xb6\xd6\x9cF\xbd\xff\x14\x05\x00\x00\x00\x00\x00\x00\x00\xf3\xdc\x91\'\x06\\8\r\xfc\xeeG\xbe\x90C\x1c)5\x98\xa3\xfa\a\xf9\x98\xbb}\xeb\x86P=\xe51\x9d,\xb7\xe6_M\xbe\x19\xea#\xff[\xd1\xc3\x9a\xa3\x1b\xf9\xe9\x1d \xce1\xc9\x9f\xb0\x14\xc2\xeb\xf9\xceE\xad\xa4\x92\f\xef\x87g\xb6\xabW\xac\rP\xf42\xb7\xc8\xaajn\xd7\n\r\x802\xd7\x1b$\x95tO*\xf4\xae\xb8\xb8m\xbf\r\xd5\xbf*\xfd\xc7\x85\x1b\x8b\xe5\x97j`c\xe0\x88?\xda\x8a#t>r\xae\xe8\xc9)', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(camellia)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r5 = accept4(r4, 0x0, 0x0, 0x800)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d", 0x2a}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f", 0x78}], 0x2}], 0x1, 0x40800)
recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}], 0x1}, 0x0)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
r6 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f00000000c0)={&(0x7f0000000a00)=@generic={0xa, "8ab77fa26849ff26650042e2dacd300000000000000162e2adacd2737d00ad6f9fa9f3d7145e15dd9d6d2e19c211220940ad5def53b911ba5b9da13641f9826d7012a749f54b901ee80ea6132ca6e88c776553e1833052ca376304313c4b37780136a4b838570400"}, 0x80, 0x0}, 0x0)

186.791µs ago: executing program 0 (id=212):
r0 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x0)
ioctl$CEC_S_MODE(r0, 0x40046109, &(0x7f0000000340)=0x9)

0s ago: executing program 0 (id=213):
connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e21, 0xff, @remote, 0x6}, 0x1c)
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
syz_usb_disconnect(r0)
syz_usb_connect(0x6, 0x24, &(0x7f00000003c0)=ANY=[], 0x0)
ioctl$EVIOCRMFF(r0, 0xc0085508, &(0x7f00000000c0)=0x18)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:28074' (ED25519) to the list of known hosts.
syzkaller login: [   42.292552][ T5795] cgroup: Unknown subsys name 'net'
[   42.419348][ T5795] cgroup: Unknown subsys name 'cpuset'
[   42.423178][ T5795] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   43.851955][ T5795] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   47.229387][ T5852] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   47.234326][ T5859] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   47.238053][ T5859] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   47.240873][ T5859] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   47.243434][ T5859] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   47.244799][ T5855] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   47.250825][   T54] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   47.255729][ T5859] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   47.258544][   T54] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   47.262640][ T5859] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   47.265281][   T54] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   47.269267][   T54] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   47.272794][ T5859] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   47.275123][   T54] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   47.278570][   T54] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   47.422571][ T5849] chnl_net:caif_netlink_parms(): no params data found
[   47.556468][ T5849] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.559554][ T5849] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.562086][ T5849] bridge_slave_0: entered allmulticast mode
[   47.566227][ T5849] bridge_slave_0: entered promiscuous mode
[   47.573556][ T5849] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.576230][ T5849] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.579112][ T5849] bridge_slave_1: entered allmulticast mode
[   47.581911][ T5849] bridge_slave_1: entered promiscuous mode
[   47.588984][ T5858] chnl_net:caif_netlink_parms(): no params data found
[   47.615840][ T5853] chnl_net:caif_netlink_parms(): no params data found
[   47.622839][ T5849] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   47.631897][ T5849] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   47.705847][ T5849] team0: Port device team_slave_0 added
[   47.720538][ T5849] team0: Port device team_slave_1 added
[   47.742430][ T5858] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.744928][ T5858] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.747948][ T5858] bridge_slave_0: entered allmulticast mode
[   47.750800][ T5858] bridge_slave_0: entered promiscuous mode
[   47.780470][ T5849] batman_adv: batadv0: Adding interface: batadv_slave_0
[   47.782814][ T5849] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.791693][ T5849] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   47.796243][ T5858] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.799826][ T5858] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.802317][ T5858] bridge_slave_1: entered allmulticast mode
[   47.805113][ T5858] bridge_slave_1: entered promiscuous mode
[   47.808048][ T5853] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.810464][ T5853] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.812967][ T5853] bridge_slave_0: entered allmulticast mode
[   47.815808][ T5853] bridge_slave_0: entered promiscuous mode
[   47.819547][ T5849] batman_adv: batadv0: Adding interface: batadv_slave_1
[   47.821869][ T5849] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.830971][ T5849] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   47.842563][ T5853] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.844988][ T5853] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.847671][ T5853] bridge_slave_1: entered allmulticast mode
[   47.850634][ T5853] bridge_slave_1: entered promiscuous mode
[   47.882254][ T5853] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   47.894748][ T5858] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   47.899959][ T5858] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   47.911555][ T5853] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   47.946833][ T5849] hsr_slave_0: entered promiscuous mode
[   47.949283][ T5849] hsr_slave_1: entered promiscuous mode
[   47.953371][ T5853] team0: Port device team_slave_0 added
[   47.956930][ T5858] team0: Port device team_slave_0 added
[   47.967069][ T5853] team0: Port device team_slave_1 added
[   47.970613][ T5858] team0: Port device team_slave_1 added
[   48.019985][ T5853] batman_adv: batadv0: Adding interface: batadv_slave_0
[   48.022245][ T5853] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   48.030977][ T5853] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   48.035000][ T5858] batman_adv: batadv0: Adding interface: batadv_slave_0
[   48.038148][ T5858] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   48.047049][ T5858] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   48.054658][ T5853] batman_adv: batadv0: Adding interface: batadv_slave_1
[   48.058129][ T5853] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   48.067829][ T5853] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   48.072569][ T5858] batman_adv: batadv0: Adding interface: batadv_slave_1
[   48.074919][ T5858] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   48.083762][ T5858] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   48.139885][ T5858] hsr_slave_0: entered promiscuous mode
[   48.142618][ T5858] hsr_slave_1: entered promiscuous mode
[   48.145051][ T5858] debugfs: 'hsr0' already exists in 'hsr'
[   48.147890][ T5858] Cannot create hsr debugfs directory
[   48.172490][ T5853] hsr_slave_0: entered promiscuous mode
[   48.174801][ T5853] hsr_slave_1: entered promiscuous mode
[   48.177660][ T5853] debugfs: 'hsr0' already exists in 'hsr'
[   48.179524][ T5853] Cannot create hsr debugfs directory
[   48.294526][ T5849] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   48.318282][ T5849] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   48.325274][ T5849] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   48.330662][ T5849] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   48.386085][ T5849] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.388717][ T5849] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.392172][ T5849] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.394620][ T5849] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.409336][ T1089] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.413269][ T1089] bridge0: port 2(bridge_slave_1) entered disabled state
[   48.427119][ T5853] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   48.433025][ T5853] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   48.453063][ T5853] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   48.470286][ T5853] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   48.498905][ T5858] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   48.504024][ T5858] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   48.522582][ T5849] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.529362][ T5858] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   48.542254][ T5858] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   48.550376][ T5849] 8021q: adding VLAN 0 to HW filter on device team0
[   48.565916][ T1089] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.568718][ T1089] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.586092][ T1089] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.588728][ T1089] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.669618][ T5853] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.691764][ T5858] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.708476][ T5853] 8021q: adding VLAN 0 to HW filter on device team0
[   48.716059][ T1089] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.719164][ T1089] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.728600][ T1089] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.730947][ T1089] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.759904][ T5858] 8021q: adding VLAN 0 to HW filter on device team0
[   48.771782][ T1392] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.774387][ T1392] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.788672][ T1089] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.791116][ T1089] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.813769][ T5849] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.883352][ T5849] veth0_vlan: entered promiscuous mode
[   48.909632][ T5849] veth1_vlan: entered promiscuous mode
[   48.935522][ T5849] veth0_macvtap: entered promiscuous mode
[   48.942572][ T5849] veth1_macvtap: entered promiscuous mode
[   48.960124][ T5849] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.969262][ T5849] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.979620][ T5858] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.985451][   T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.990544][   T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.995622][ T5853] 8021q: adding VLAN 0 to HW filter on device batadv0
[   49.001037][   T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   49.005831][   T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   49.065404][ T1089] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.071749][ T1089] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.103073][ T5858] veth0_vlan: entered promiscuous mode
[   49.106314][ T5853] veth0_vlan: entered promiscuous mode
[   49.109284][ T1088] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.111935][ T1088] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.114844][ T5858] veth1_vlan: entered promiscuous mode
[   49.120236][ T5853] veth1_vlan: entered promiscuous mode
[   49.154611][ T5858] veth0_macvtap: entered promiscuous mode
[   49.160577][ T5853] veth0_macvtap: entered promiscuous mode
[   49.164078][ T5858] veth1_macvtap: entered promiscuous mode
[   49.166413][ T5849] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   49.173591][ T5853] veth1_macvtap: entered promiscuous mode
[   49.182133][ T5858] batman_adv: batadv0: Interface activated: batadv_slave_0
[   49.199452][ T5858] batman_adv: batadv0: Interface activated: batadv_slave_1
[   49.212439][ T5853] batman_adv: batadv0: Interface activated: batadv_slave_0
[   49.238917][ T5881] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   49.256038][ T5853] batman_adv: batadv0: Interface activated: batadv_slave_1
[   49.259768][ T5881] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   49.271156][ T5881] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   49.276360][ T5881] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   49.283854][ T5881] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   49.287547][ T5235] Bluetooth: hci1: command tx timeout
[   49.287681][ T5857] Bluetooth: hci0: command tx timeout
[   49.300407][ T5881] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   49.305389][ T5881] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   49.332051][ T5881] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   49.358221][   T40] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.359513][ T5923] loop0: detected capacity change from 0 to 1024
[   49.360802][   T40] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.364221][ T5923] =======================================================
[   49.364221][ T5923] WARNING: The mand mount option has been deprecated and
[   49.364221][ T5923]          and is ignored by this kernel. Remove the mand
[   49.364221][ T5923]          option from the mount to silence this warning.
[   49.364221][ T5923] =======================================================
[   49.388106][ T5857] Bluetooth: hci2: command tx timeout
[   49.408333][ T3621] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.411073][ T3621] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.412878][ T5923] EXT4-fs: inline encryption not supported
[   49.416453][ T5923] EXT4-fs: Ignoring removed i_version option
[   49.437703][ T5923] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.445381][ T1089] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.445739][ T3621] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.451155][ T3621] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.451746][ T1089] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.483037][ T5923] EXT4-fs error (device loop0): mb_free_blocks:2017: group 0, inode 15: block 225:freeing already freed block (bit 14); block bitmap corrupt.
[   49.508750][ T5930] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2'.
[   49.551484][ T5849] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.594375][ T5934] loop2: detected capacity change from 0 to 2048
[   49.638355][ T5934] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.680297][   T34] audit: type=1800 audit(1755040632.385:2): pid=5934 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.8" name="file1" dev="loop2" ino=15 res=0 errno=0
[   49.695053][ T5941] loop1: detected capacity change from 0 to 256
[   49.701668][ T5934] EXT4-fs (loop2): Online defrag not supported with bigalloc
[   49.702266][   T34] audit: type=1800 audit(1755040632.405:3): pid=5934 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.8" name="file2" dev="loop2" ino=16 res=0 errno=0
[   49.730769][ T5941] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   49.737146][ T5941] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[   49.739640][ T5858] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.744093][ T5941] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[   50.035278][ T5948] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10'.
[   50.561315][ T5952] loop1: detected capacity change from 0 to 32768
[   50.597802][ T5964] netlink: 4 bytes leftover after parsing attributes in process `syz.0.17'.
[   50.602368][ T5952] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   50.621719][ T5952] XFS (loop1): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[   50.630424][ T5952] XFS (loop1): Starting recovery (logdev: internal)
[   50.641396][ T5952] XFS (loop1): Ending recovery (logdev: internal)
[   50.670939][ T5972] netlink: 4 bytes leftover after parsing attributes in process `syz.0.17'.
[   50.675917][ T5853] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   50.867979][ T5977] loop1: detected capacity change from 0 to 16
[   50.911529][ T5977] erofs (device loop1): mounted with root inode @ nid 36.
[   51.368613][ T5857] Bluetooth: hci1: command tx timeout
[   51.377414][ T5857] Bluetooth: hci0: command tx timeout
[   51.446832][ T5857] Bluetooth: hci2: command tx timeout
[   51.532604][ T5980] process 'syz.2.21' launched './file0' with NULL argv: empty string added
[   51.644535][ T5985] loop0: detected capacity change from 0 to 136
[   52.167567][ T5993] loop0: detected capacity change from 0 to 32768
[   52.205058][ T5993] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   52.231250][ T5993] XFS (loop0): Ending clean mount
[   52.277502][ T5849] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   52.322261][ T6003] loop2: detected capacity change from 0 to 32768
[   52.333047][ T5996] loop1: detected capacity change from 0 to 32768
[   52.340033][ T6003] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.30 (6003)
[   52.364625][ T5996] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[   52.377212][ T5996] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   52.408332][ T6003] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[   52.411912][ T6003] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm
[   52.419041][ T5996] XFS (loop1): Ending clean mount
[   52.464677][ T5853] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   52.545656][ T6003] BTRFS info (device loop2): rebuilding free space tree
[   52.585857][ T6038] openvswitch: netlink: VXLAN extension message has 4 unknown bytes.
[   52.595485][ T6003] BTRFS info (device loop2): disabling free space tree
[   52.611552][ T6003] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[   52.614864][ T6003] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[   52.645105][ T6042] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[   52.708549][ T5858] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[   52.751768][ T6034] loop0: detected capacity change from 0 to 32768
[   52.763246][ T6034] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.33 (6034)
[   52.779121][ T6034] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   52.788125][ T6034] BTRFS info (device loop0): using crc32c (crc32c-lib) checksum algorithm
[   52.793318][ T6034] BTRFS info (device loop0): using free-space-tree
[   52.930473][ T6068] iommufd_mock iommufd_mock0: Adding to iommu group 0
[   53.013846][ T5849] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   53.447167][ T5857] Bluetooth: hci0: command tx timeout
[   53.449404][ T5857] Bluetooth: hci1: command tx timeout
[   53.527155][ T5235] Bluetooth: hci2: command tx timeout
[   54.137719][ T6113] loop1: detected capacity change from 0 to 32768
[   54.157813][ T6113] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[   54.170208][ T6113] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[   54.194739][   T34] audit: type=1800 audit(1755040636.895:4): pid=6113 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.54" name="file1" dev="loop1" ino=17058 res=0 errno=0
[   54.209019][   T34] audit: type=1804 audit(1755040636.915:5): pid=6113 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.54" name="/newroot/15/bus/file1" dev="loop1" ino=17058 res=1 errno=0
[   54.927434][ T5575] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   55.098764][ T5575] usb 3-1: Using ep0 maxpacket: 16
[   55.107247][ T5575] usb 3-1: config 0 has an invalid interface number: 34 but max is 0
[   55.114661][ T5575] usb 3-1: config 0 has no interface number 0
[   55.119700][ T5575] usb 3-1: config 0 interface 34 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   55.123838][ T5575] usb 3-1: config 0 interface 34 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   55.139652][ T5575] usb 3-1: New USB device found, idVendor=046d, idProduct=c24f, bcdDevice= 0.00
[   55.142729][ T5575] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   55.165685][ T5575] usb 3-1: config 0 descriptor??
[   55.526728][ T5235] Bluetooth: hci1: command tx timeout
[   55.529063][ T5857] Bluetooth: hci0: command tx timeout
[   55.606790][ T5235] Bluetooth: hci2: command tx timeout
[   55.610469][ T5853] ocfs2: Unmounting device (7,1) on (node local)
[   55.785117][ T6185] loop1: detected capacity change from 0 to 256
[   55.875527][ T1271] usb 3-1: USB disconnect, device number 2
[   56.973542][ T6197] loop2: detected capacity change from 0 to 40427
[   57.007675][ T6197] F2FS-fs (loop2): Wrong NAT boundary, start(2560) end(3584) blocks(512)
[   57.013556][ T6197] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[   57.020712][ T6197] F2FS-fs (loop2): invalid crc value
[   57.071206][ T6197] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   57.078217][ T6197] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[   57.080817][ T6197] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   57.096682][   T34] audit: type=1800 audit(1755040639.795:6): pid=6197 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.68" name="file1" dev="loop2" ino=10 res=0 errno=0
[   57.124976][ T5858] syz-executor: attempt to access beyond end of device
[   57.124976][ T5858] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   57.131533][ T5858] CPU: 1 UID: 0 PID: 5858 Comm: syz-executor Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895-dirty #0 PREEMPT(full) 
[   57.131549][ T5858] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   57.131555][ T5858] Call Trace:
[   57.131558][ T5858]  <TASK>
[   57.131563][ T5858]  dump_stack_lvl+0x189/0x250
[   57.131579][ T5858]  ? __pfx_dump_stack_lvl+0x10/0x10
[   57.131589][ T5858]  ? __pfx_queue_work_on+0x10/0x10
[   57.131597][ T5858]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   57.131607][ T5858]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   57.131621][ T5858]  f2fs_handle_critical_error+0x37c/0x540
[   57.131635][ T5858]  f2fs_write_end_io+0x886/0xb60
[   57.131676][ T5858]  __submit_merged_bio+0x27a/0x6a0
[   57.131690][ T5858]  __submit_merged_write_cond+0x255/0x530
[   57.131702][ T5858]  f2fs_write_data_pages+0x261d/0x3000
[   57.131728][ T5858]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   57.131770][ T5858]  ? __lock_acquire+0xab9/0xd20
[   57.131785][ T5858]  ? do_raw_spin_lock+0x121/0x290
[   57.131799][ T5858]  ? do_raw_spin_unlock+0x4d/0x240
[   57.131808][ T5858]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   57.131818][ T5858]  do_writepages+0x32e/0x550
[   57.131834][ T5858]  ? do_raw_spin_unlock+0x4d/0x240
[   57.131845][ T5858]  filemap_fdatawrite+0x199/0x240
[   57.131855][ T5858]  ? __pfx_filemap_fdatawrite+0x10/0x10
[   57.131886][ T5858]  ? do_raw_spin_unlock+0x4d/0x240
[   57.131897][ T5858]  f2fs_sync_dirty_inodes+0x31f/0x830
[   57.131915][ T5858]  f2fs_write_checkpoint+0x95a/0x1df0
[   57.131936][ T5858]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[   57.131967][ T5858]  ? kill_f2fs_super+0x298/0x6c0
[   57.131980][ T5858]  kill_f2fs_super+0x2c3/0x6c0
[   57.131993][ T5858]  ? __pfx_kill_f2fs_super+0x10/0x10
[   57.132001][ T5858]  ? radix_tree_delete_item+0x2b6/0x400
[   57.132014][ T5858]  ? shrinker_free+0x2ce/0x3e0
[   57.132024][ T5858]  deactivate_locked_super+0xbc/0x130
[   57.132034][ T5858]  cleanup_mnt+0x425/0x4c0
[   57.132043][ T5858]  ? lockdep_hardirqs_on+0x9c/0x150
[   57.132053][ T5858]  task_work_run+0x1d4/0x260
[   57.132065][ T5858]  ? __pfx_task_work_run+0x10/0x10
[   57.132077][ T5858]  ? __x64_sys_umount+0x122/0x160
[   57.132097][ T5858]  ? exit_to_user_mode_loop+0x40/0x110
[   57.132110][ T5858]  exit_to_user_mode_loop+0xec/0x110
[   57.132119][ T5858]  do_syscall_64+0x2bd/0x3b0
[   57.132128][ T5858]  ? lockdep_hardirqs_on+0x9c/0x150
[   57.132135][ T5858]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.132142][ T5858]  ? exc_page_fault+0x9f/0xf0
[   57.132151][ T5858]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.132183][ T5858] RIP: 0033:0x7f873718ff17
[   57.132192][ T5858] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   57.132198][ T5858] RSP: 002b:00007ffdfb1a5fa8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   57.132206][ T5858] RAX: 0000000000000000 RBX: 00007f8737211c05 RCX: 00007f873718ff17
[   57.132211][ T5858] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdfb1a6060
[   57.132215][ T5858] RBP: 00007ffdfb1a6060 R08: 0000000000000000 R09: 0000000000000000
[   57.132219][ T5858] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffdfb1a70f0
[   57.132224][ T5858] R13: 00007f8737211c05 R14: 000000000000dea4 R15: 00007ffdfb1a7130
[   57.132236][ T5858]  </TASK>
[   57.136720][ T5858] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[   57.200038][ T6217] netlink: 28 bytes leftover after parsing attributes in process `syz.0.77'.
[   57.326722][ T5575] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   57.393956][ T6223] loop0: detected capacity change from 0 to 4096
[   57.408253][ T6223] ntfs3(loop0): Failed to initialize $Extend/$ObjId.
[   57.451321][ T6225] netlink: 24 bytes leftover after parsing attributes in process `syz.0.80'.
[   57.474497][ T6227] loop0: detected capacity change from 0 to 128
[   57.476896][ T5575] usb 2-1: Using ep0 maxpacket: 16
[   57.481987][ T5575] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   57.485605][ T5575] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[   57.489184][ T5575] usb 2-1: config 0 interface 0 has no altsetting 0
[   57.491561][ T5575] usb 2-1: New USB device found, idVendor=0458, idProduct=0138, bcdDevice= 0.00
[   57.495256][ T5575] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   57.497117][ T6227] syz.0.81: attempt to access beyond end of device
[   57.497117][ T6227] loop0: rw=2049, sector=138, nr_sectors = 2 limit=128
[   57.500718][ T5575] usb 2-1: config 0 descriptor??
[   57.503195][ T6227] syz.0.81: attempt to access beyond end of device
[   57.503195][ T6227] loop0: rw=2049, sector=138, nr_sectors = 2 limit=128
[   57.596625][ T1271] usb 3-1: new full-speed USB device number 3 using dummy_hcd
[   57.758378][ T1271] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   57.762180][ T1271] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[   57.765458][ T1271] usb 3-1: config 0 interface 0 has no altsetting 0
[   57.770265][ T1271] usb 3-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[   57.773348][ T1271] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   57.782790][ T1271] usb 3-1: config 0 descriptor??
[   57.912900][ T5575] kye 0003:0458:0138.0002: unknown main item tag 0x0
[   57.915520][ T5575] kye 0003:0458:0138.0002: unknown main item tag 0x0
[   57.919510][ T5575] kye 0003:0458:0138.0002: unknown main item tag 0x0
[   57.926634][ T5575] kye 0003:0458:0138.0002: unknown main item tag 0x0
[   57.928919][ T5575] kye 0003:0458:0138.0002: unknown main item tag 0x0
[   57.931243][ T5575] kye 0003:0458:0138.0002: unknown main item tag 0x0
[   57.933547][ T5575] kye 0003:0458:0138.0002: unknown main item tag 0x0
[   57.948636][ T5575] kye 0003:0458:0138.0002: unknown main item tag 0x0
[   57.950899][ T5575] kye 0003:0458:0138.0002: unknown main item tag 0x0
[   57.953096][ T5575] kye 0003:0458:0138.0002: unknown main item tag 0x0
[   57.955488][ T5575] kye 0003:0458:0138.0002: unexpected long global item
[   57.965247][ T5575] kye 0003:0458:0138.0002: parse failed
[   57.967322][ T5575] kye 0003:0458:0138.0002: probe with driver kye failed with error -22
[   58.098704][ T5888] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   58.122022][ T5575] usb 2-1: USB disconnect, device number 2
[   58.196021][ T1271] hid-steam 0003:28DE:1102.0003: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.2-1/input0
[   58.247860][ T5888] usb 1-1: Using ep0 maxpacket: 16
[   58.258060][ T5888] usb 1-1: config 0 has an invalid interface number: 49 but max is 0
[   58.261340][ T5888] usb 1-1: config 0 has no interface number 0
[   58.263382][ T5888] usb 1-1: config 0 interface 49 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 16
[   58.267566][ T5888] usb 1-1: config 0 interface 49 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   58.271523][ T5888] usb 1-1: config 0 interface 49 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   58.274720][ T5888] usb 1-1: config 0 interface 49 altsetting 0 bulk endpoint 0x8F has invalid maxpacket 0
[   58.280216][ T5888] usb 1-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=76.b7
[   58.283258][ T5888] usb 1-1: New USB device strings: Mfr=5, Product=2, SerialNumber=3
[   58.285934][ T5888] usb 1-1: Product: syz
[   58.288055][ T5888] usb 1-1: Manufacturer: syz
[   58.290066][ T5888] usb 1-1: SerialNumber: syz
[   58.293726][ T5888] usb 1-1: config 0 descriptor??
[   58.296888][ T6241] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22
[   58.401511][ T1271] usb 3-1: USB disconnect, device number 3
[   58.504467][ T5888] usb 1-1: USB disconnect, device number 2
[   58.693003][ T6245] loop1: detected capacity change from 0 to 4096
[   59.067359][ T5888] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   59.085305][ T6265] loop0: detected capacity change from 0 to 65
[   59.091516][ T6265] BFS-fs: bfs_fill_super(): NOTE: filesystem loop0 was created with 512 inodes, the real maximum is 511, mounting anyway
[   59.214273][ T6261] loop2: detected capacity change from 0 to 40427
[   59.217513][ T6261] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504)
[   59.219693][ T5888] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.9e
[   59.219822][ T6261] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[   59.223056][ T5888] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   59.225321][ T5888] usb 2-1: config 0 descriptor??
[   59.227032][ T6261] F2FS-fs (loop2): build fault injection rate: 17008
[   59.232760][ T6261] F2FS-fs (loop2): build fault injection type: 0x1f8
[   59.237253][ T6261] F2FS-fs (loop2): invalid crc value
[   59.266238][ T6261] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   59.271542][ T6261] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[   59.273898][ T6261] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   59.281307][   T34] audit: type=1800 audit(1755040641.985:7): pid=6261 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.97" name="bus" dev="loop2" ino=10 res=0 errno=0
[   59.292067][ T5858] syz-executor: attempt to access beyond end of device
[   59.292067][ T5858] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   59.296885][ T5858] CPU: 0 UID: 0 PID: 5858 Comm: syz-executor Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895-dirty #0 PREEMPT(full) 
[   59.296898][ T5858] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   59.296903][ T5858] Call Trace:
[   59.296906][ T5858]  <TASK>
[   59.296910][ T5858]  dump_stack_lvl+0x189/0x250
[   59.296927][ T5858]  ? __pfx_dump_stack_lvl+0x10/0x10
[   59.296935][ T5858]  ? __pfx_queue_work_on+0x10/0x10
[   59.296961][ T5858]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   59.296971][ T5858]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   59.296984][ T5858]  f2fs_handle_critical_error+0x37c/0x540
[   59.296998][ T5858]  f2fs_write_end_io+0x886/0xb60
[   59.297017][ T5858]  __submit_merged_bio+0x27a/0x6a0
[   59.297029][ T5858]  __submit_merged_write_cond+0x255/0x530
[   59.297040][ T5858]  f2fs_write_data_pages+0x261d/0x3000
[   59.297065][ T5858]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   59.297095][ T5858]  ? __mod_zone_page_state+0xd7/0x140
[   59.297110][ T5858]  ? folios_put_refs+0x560/0x640
[   59.297124][ T5858]  ? __lock_acquire+0xab9/0xd20
[   59.297139][ T5858]  ? do_raw_spin_lock+0x121/0x290
[   59.297173][ T5858]  ? do_raw_spin_unlock+0x4d/0x240
[   59.297183][ T5858]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   59.297192][ T5858]  do_writepages+0x32e/0x550
[   59.297207][ T5858]  ? do_raw_spin_unlock+0x4d/0x240
[   59.297217][ T5858]  filemap_fdatawrite+0x199/0x240
[   59.297227][ T5858]  ? __pfx_filemap_fdatawrite+0x10/0x10
[   59.297258][ T5858]  ? do_raw_spin_unlock+0x4d/0x240
[   59.297268][ T5858]  f2fs_sync_dirty_inodes+0x31f/0x830
[   59.297286][ T5858]  f2fs_write_checkpoint+0x95a/0x1df0
[   59.297306][ T5858]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[   59.297338][ T5858]  ? kill_f2fs_super+0x298/0x6c0
[   59.297349][ T5858]  kill_f2fs_super+0x2c3/0x6c0
[   59.297361][ T5858]  ? __pfx_kill_f2fs_super+0x10/0x10
[   59.297369][ T5858]  ? radix_tree_delete_item+0x2b6/0x400
[   59.297381][ T5858]  ? shrinker_free+0x2ce/0x3e0
[   59.297391][ T5858]  deactivate_locked_super+0xbc/0x130
[   59.297402][ T5858]  cleanup_mnt+0x425/0x4c0
[   59.297411][ T5858]  ? lockdep_hardirqs_on+0x9c/0x150
[   59.297422][ T5858]  task_work_run+0x1d4/0x260
[   59.297433][ T5858]  ? __pfx_task_work_run+0x10/0x10
[   59.297440][ T5858]  ? __x64_sys_umount+0x122/0x160
[   59.297452][ T5858]  ? exit_to_user_mode_loop+0x40/0x110
[   59.297470][ T5858]  exit_to_user_mode_loop+0xec/0x110
[   59.297479][ T5858]  do_syscall_64+0x2bd/0x3b0
[   59.297488][ T5858]  ? lockdep_hardirqs_on+0x9c/0x150
[   59.297495][ T5858]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.297502][ T5858]  ? exc_page_fault+0x9f/0xf0
[   59.297510][ T5858]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.297517][ T5858] RIP: 0033:0x7f873718ff17
[   59.297525][ T5858] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   59.297531][ T5858] RSP: 002b:00007ffdfb1a5fa8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   59.297540][ T5858] RAX: 0000000000000000 RBX: 00007f8737211c05 RCX: 00007f873718ff17
[   59.297544][ T5858] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdfb1a6060
[   59.297549][ T5858] RBP: 00007ffdfb1a6060 R08: 0000000000000000 R09: 0000000000000000
[   59.297553][ T5858] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffdfb1a70f0
[   59.297557][ T5858] R13: 00007f8737211c05 R14: 000000000000e724 R15: 00007ffdfb1a7130
[   59.297570][ T5858]  </TASK>
[   59.298497][ T5858] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[   59.434943][ T5888] ath6kl: Failed to submit usb control message: -71
[   59.437620][ T5888] ath6kl: unable to send the bmi data to the device: -71
[   59.440833][ T5888] ath6kl: Unable to send get target info: -71
[   59.443933][ T5888] ath6kl: Failed to init ath6kl core: -71
[   59.448514][ T5888] ath6kl_usb 2-1:0.0: probe with driver ath6kl_usb failed with error -71
[   59.457537][ T5888] usb 2-1: USB disconnect, device number 3
[   59.735864][ T6284] loop2: detected capacity change from 0 to 32768
[   59.755102][ T6284] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   59.773965][ T6284] XFS (loop2): Ending clean mount
[   59.779679][ T6296] loop0: detected capacity change from 0 to 512
[   59.779891][ T6284] XFS (loop2): Quotacheck needed: Please wait.
[   59.783412][ T6296] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   59.790608][ T6296] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   59.797996][ T6284] XFS (loop2): Quotacheck: Done.
[   59.807313][ T6296] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.108: bg 0: block 4: invalid block bitmap
[   59.812762][ T6296] EXT4-fs (loop0): Remounting filesystem read-only
[   59.815090][ T6296] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   59.821357][ T6296] EXT4-fs (loop0): 1 truncate cleaned up
[   59.824300][ T6296] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   59.824792][ T5858] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   59.850617][ T5849] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.068948][ T6316] loop1: detected capacity change from 0 to 128
[   60.078349][ T6316] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   60.082689][ T6316] ext4 filesystem being mounted at /31/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   60.107604][ T5853] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   60.234529][ T6324] trusted_key: encrypted_key: master key parameter is missing
[   60.307917][ T5888] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   60.466630][ T5888] usb 1-1: Using ep0 maxpacket: 8
[   60.477309][ T5888] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[   60.479953][ T5888] usb 1-1: config 179 has no interface number 0
[   60.482194][ T5888] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[   60.497466][ T5888] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[   60.508858][ T5888] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[   60.520331][ T5888] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[   60.562658][ T5888] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[   60.572711][ T5888] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   60.607700][ T6300] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   61.138569][ T5888] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input4
[   61.298121][ T5888] usb 1-1: USB disconnect, device number 3
[   61.298252][    C0] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[   61.298288][    C0] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[   61.717459][ T6354] netdevsim netdevsim1: Direct firmware load for .. failed with error -2
[   61.720503][ T6354] netdevsim netdevsim1: Falling back to sysfs fallback for: ..
[   62.037501][   T47] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[   62.188489][   T47] usb 3-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[   62.191805][   T47] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   62.196013][   T47] usb 3-1: config 0 descriptor??
[   62.196785][   T10] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   62.346601][   T10] usb 1-1: Using ep0 maxpacket: 16
[   62.350285][   T10] usb 1-1: config 0 has an invalid interface number: 251 but max is 0
[   62.353156][   T10] usb 1-1: config 0 has no interface number 0
[   62.355341][   T10] usb 1-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[   62.359471][   T10] usb 1-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[   62.365085][   T10] usb 1-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[   62.368332][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   62.370956][   T10] usb 1-1: Product: syz
[   62.372356][   T10] usb 1-1: Manufacturer: syz
[   62.374001][   T10] usb 1-1: SerialNumber: syz
[   62.377809][   T10] usb 1-1: config 0 descriptor??
[   62.380121][ T6368] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[   62.382507][ T6368] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[   62.591579][   T10] asix 1-1:0.251: probe with driver asix failed with error -71
[   62.598318][   T10] usb 1-1: USB disconnect, device number 4
[   62.610234][ T6372] loop1: detected capacity change from 0 to 512
[   62.621960][ T6372] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   62.626343][ T6372] ext4 filesystem being mounted at /42/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.641883][ T6372] Quota error (device loop1): write_blk: dquota write failed
[   62.644575][ T6372] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota
[   62.648954][ T6372] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.139: Failed to acquire dquot type 1
[   62.668432][ T5853] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   62.714482][ T6378] loop1: detected capacity change from 0 to 16
[   62.719195][ T6378] erofs (device loop1): mounted with root inode @ nid 36.
[   62.725618][ T6378] erofs (device loop1): readahead error at folio 2 @ nid 89
[   62.729277][ T6378] erofs (device loop1): readahead error at folio 1 @ nid 89
[   62.735100][ T6378] erofs (device loop1): read error -117 @ 1 of nid 89
[   62.738295][   T34] audit: type=1800 audit(1755040645.445:8): pid=6378 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.141" name="file3" dev="loop1" ino=89 res=0 errno=0
[   62.744705][ T6378] erofs (device loop1): read error -117 @ 1 of nid 89
[   62.748494][ T6378] erofs (device loop1): read error -117 @ 1 of nid 89
[   62.759980][ T6378] syz.1.141 (6378) used greatest stack depth: 19016 bytes left
[   63.016289][ T6385] loop1: detected capacity change from 0 to 32768
[   63.024778][ T6385] XFS (loop1): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[   63.045975][ T6385] XFS (loop1): Ending clean mount
[   63.064115][ T5853] XFS (loop1): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[   63.228808][ T6405] pim6reg1: entered promiscuous mode
[   63.230699][ T6405] pim6reg1: entered allmulticast mode
[   63.411026][   T47] usb 3-1: Cannot set autoneg
[   63.412719][   T47] MOSCHIP usb-ethernet driver 3-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -71
[   63.420386][   T47] usb 3-1: USB disconnect, device number 4
[   63.440247][ T6413] loop1: detected capacity change from 0 to 32768
[   63.457407][ T6413] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   63.471782][ T6413] XFS (loop1): Ending clean mount
[   63.473836][ T6431] loop0: detected capacity change from 0 to 512
[   63.477667][ T6431] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   63.483658][ T6431] EXT4-fs (loop0): 1 truncate cleaned up
[   63.486273][ T6431] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   63.491950][ T5853] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   63.515612][ T5849] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.577219][ T6437] syz.1.159 uses obsolete (PF_INET,SOCK_PACKET)
[   63.660049][ T6440] warning: `syz.1.161' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   63.741070][ T6444] loop1: detected capacity change from 0 to 512
[   63.745036][ T6444] EXT4-fs: Ignoring removed nobh option
[   63.751572][ T6444] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.163: iget: bad i_size value: 38620345925642
[   63.758728][ T6444] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.163: couldn't read orphan inode 15 (err -117)
[   63.763695][ T6444] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   63.777664][ T6444] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.163: bg 0: block 5: invalid block bitmap
[   63.784062][ T6444] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[   63.790053][ T6444] EXT4-fs (loop1): This should not happen!! Data will be lost
[   63.790053][ T6444] 
[   63.793390][ T6444] EXT4-fs (loop1): Total free blocks count 0
[   63.795447][ T6444] EXT4-fs (loop1): Free/Dirty block details
[   63.797644][ T6444] EXT4-fs (loop1): free_blocks=0
[   63.799421][ T6444] EXT4-fs (loop1): dirty_blocks=2
[   63.801098][ T6444] EXT4-fs (loop1): Block reservation details
[   63.803098][ T6444] EXT4-fs (loop1): i_reserved_data_blocks=2
[   63.894841][ T5853] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.143350][ T6453] Bluetooth: MGMT ver 1.23
[   64.265890][ T6459] program syz.1.169 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   64.342943][ T6463] loop1: detected capacity change from 0 to 4096
[   64.560863][ T6475] loop1: detected capacity change from 0 to 8
[   64.580226][ T6475] SQUASHFS error: Failed to read block 0x738: -5
[   64.582352][ T6475] SQUASHFS error: Unable to read metadata cache entry [736]
[   64.589170][ T6475] SQUASHFS error: Unable to read metadata cache entry [736]
[   64.631021][ T6479] loop0: detected capacity change from 0 to 2048
[   64.661554][ T6483] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   64.876816][ T6501] Zero length message leads to an empty skb
[   65.129915][ T6511] loop1: detected capacity change from 0 to 512
[   65.135066][ T6511] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   65.139628][ T6511] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[   65.151331][ T6511] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended
[   65.158191][ T6511] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[   65.160910][ T6511] System zones: 0-2, 18-18, 34-35
[   65.163818][ T6511] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   65.172697][ T6514] loop2: detected capacity change from 0 to 1024
[   65.175932][ T6514] hfsplus: Unknown parameter ''
[   65.229729][ T5853] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.312774][ T6526] loop1: detected capacity change from 0 to 8
[   65.319167][ T6526] squashfs image failed sanity check
[   65.410601][ T6534] loop1: detected capacity change from 0 to 256
[   65.413222][ T6534] exfat: Deprecated parameter 'utf8'
[   65.414994][ T6534] exfat: Deprecated parameter 'utf8'
[   65.418603][ T6534] exfat: Deprecated parameter 'utf8'
[   65.427300][ T6534] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d)
[   65.442635][   T34] audit: type=1800 audit(1755040648.145:9): pid=6534 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.198" name="file1" dev="loop1" ino=1048597 res=0 errno=0
[   65.481991][ T6539] loop1: detected capacity change from 0 to 2048
[   65.492070][ T6539] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 129: 0x32 != 0x7d
[   65.497397][ T6539] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[   65.540074][ T6547] loop2: detected capacity change from 0 to 256
[   65.570393][ T6550] loop2: detected capacity change from 0 to 764
[   65.580279][ T6550] rock: directory entry would overflow storage
[   65.583683][ T6550] rock: sig=0x4f50, size=4, remaining=3
[   65.585598][ T6550] iso9660: Corrupted directory entry in block 6 of inode 1792
[   65.638767][ T6556] loop0: detected capacity change from 0 to 256
[   65.641554][ T6556] vfat: Bad value for 'nonumtail'
[   65.777151][   T24] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[   65.917319][   T47] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[   65.936815][   T24] usb 2-1: Using ep0 maxpacket: 16
[   65.965464][   T24] usb 2-1: config 0 has an invalid interface number: 102 but max is 0
[   65.982690][   T24] usb 2-1: config 0 has no interface number 0
[   65.995440][   T24] usb 2-1: New USB device found, idVendor=17cc, idProduct=1010, bcdDevice=53.54
[   66.001820][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   66.007764][   T24] usb 2-1: Product: syz
[   66.010376][   T24] usb 2-1: Manufacturer: syz
[   66.012433][   T24] usb 2-1: SerialNumber: syz
[   66.015378][   T24] usb 2-1: config 0 descriptor??
[   66.118465][   T47] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   66.122630][   T47] usb 3-1: config 0 has no interfaces?
[   66.124682][   T47] usb 3-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[   66.127811][   T47] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   66.132374][   T47] usb 3-1: config 0 descriptor??
[   66.226842][   T24] snd-usb-audio 2-1:0.102: probe with driver snd-usb-audio failed with error -71
[   66.231677][   T24] usb 2-1: USB disconnect, device number 4
[   66.345097][   T47] usb 3-1: USB disconnect, device number 5
[   66.648248][ T5235] Bluetooth: hci2: command tx timeout
[   66.765786][ T6575] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000005: 0000 [#1] SMP KASAN PTI
[   66.771083][ T6575] KASAN: null-ptr-deref in range [0x0000000000000028-0x000000000000002f]
[   66.775920][ T6575] CPU: 0 UID: 0 PID: 6575 Comm: syz.1.214 Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895-dirty #0 PREEMPT(full) 
[   66.781091][ T6575] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   66.785664][ T6575] RIP: 0010:pcl818_ai_cancel+0x69/0x3f0
[   66.788082][ T6575] Code: 8b 1b 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 f9 01 37 f9 48 8b 03 48 89 04 24 49 83 c4 28 4c 89 e0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 e7 e8 d8 01 37 f9 4d 8b 24 24 48 83 c3
[   66.796189][ T6575] RSP: 0018:ffffc9000372fa60 EFLAGS: 00010206
[   66.798759][ T6575] RAX: 0000000000000005 RBX: ffff888108a8a400 RCX: 0000000000080000
[   66.802176][ T6575] RDX: ffffc90009619000 RSI: 00000000000003b4 RDI: 00000000000003b5
[   66.805608][ T6575] RBP: 0000000000000001 R08: ffff8881066da92f R09: 1ffff11020cdb525
[   66.808846][ T6575] R10: dffffc0000000000 R11: ffffffff88ebf250 R12: 0000000000000028
[   66.811916][ T6575] R13: dffffc0000000000 R14: ffff8881066da800 R15: dffffc0000000000
[   66.815335][ T6575] FS:  00007f14682456c0(0000) GS:ffff8880b8623000(0000) knlGS:0000000000000000
[   66.819055][ T6575] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   66.821758][ T6575] CR2: 00007f1468244fc8 CR3: 000000001c298000 CR4: 00000000000006f0
[   66.825174][ T6575] Call Trace:
[   66.826683][ T6575]  <TASK>
[   66.827992][ T6575]  pcl818_detach+0x66/0xd0
[   66.829856][ T6575]  comedi_device_detach_locked+0x178/0x750
[   66.832268][ T6575]  comedi_unlocked_ioctl+0xcde/0x1020
[   66.834515][ T6575]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[   66.836993][ T6575]  ? __lock_acquire+0xab9/0xd20
[   66.839228][ T6575]  ? __fget_files+0x2a/0x420
[   66.841201][ T6575]  ? __fget_files+0x2a/0x420
[   66.843211][ T6575]  ? __fget_files+0x3a0/0x420
[   66.845356][ T6575]  ? __fget_files+0x2a/0x420
[   66.847328][ T6575]  ? bpf_lsm_file_ioctl+0x9/0x20
[   66.849396][ T6575]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[   66.851844][ T6575]  __se_sys_ioctl+0xfc/0x170
[   66.853823][ T6575]  do_syscall_64+0xfa/0x3b0
[   66.855718][ T6575]  ? lockdep_hardirqs_on+0x9c/0x150
[   66.857834][ T6575]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.860256][ T6575]  ? exc_page_fault+0x9f/0xf0
[   66.862140][ T6575]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.864038][ T6575] RIP: 0033:0x7f146738ebe9
[   66.865476][ T6575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.871438][ T6575] RSP: 002b:00007f1468245038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   66.874111][ T6575] RAX: ffffffffffffffda RBX: 00007f14675b5fa0 RCX: 00007f146738ebe9
[   66.876591][ T6575] RDX: 0000000000000000 RSI: 0000000040946400 RDI: 0000000000000003
[   66.879076][ T6575] RBP: 00007f1467411e19 R08: 0000000000000000 R09: 0000000000000000
[   66.881506][ T6575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   66.883946][ T6575] R13: 00007f14675b6038 R14: 00007f14675b5fa0 R15: 00007ffef8ef9398
[   66.886378][ T6575]  </TASK>
[   66.887367][ T6575] Modules linked in:
[   66.888823][    C0] vkms_vblank_simulate: vblank timer overrun
[   66.891081][ T6575] ---[ end trace 0000000000000000 ]---
[   66.894229][ T6575] RIP: 0010:pcl818_ai_cancel+0x69/0x3f0
[   66.896034][ T6575] Code: 8b 1b 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 f9 01 37 f9 48 8b 03 48 89 04 24 49 83 c4 28 4c 89 e0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 e7 e8 d8 01 37 f9 4d 8b 24 24 48 83 c3
[   66.902184][ T6575] RSP: 0018:ffffc9000372fa60 EFLAGS: 00010206
[   66.904178][ T6575] RAX: 0000000000000005 RBX: ffff888108a8a400 RCX: 0000000000080000
[   66.907610][ T6575] RDX: ffffc90009619000 RSI: 00000000000003b4 RDI: 00000000000003b5
[   66.910163][ T6575] RBP: 0000000000000001 R08: ffff8881066da92f R09: 1ffff11020cdb525
[   66.912653][ T6575] R10: dffffc0000000000 R11: ffffffff88ebf250 R12: 0000000000000028
[   66.915607][ T6575] R13: dffffc0000000000 R14: ffff8881066da800 R15: dffffc0000000000
[   66.918329][ T6575] FS:  00007f14682456c0(0000) GS:ffff8880b8623000(0000) knlGS:0000000000000000
[   66.921284][ T6575] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   66.923494][ T6575] CR2: 00007f1468244fc8 CR3: 000000001c298000 CR4: 00000000000006f0
[   66.926163][ T6575] Kernel panic - not syncing: Fatal exception
[   66.928987][ T6575] Kernel Offset: disabled
[   66.931039][ T6575] Rebooting in 86400 seconds..

VM DIAGNOSIS:
23:17:29  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000069 RBX=0000000000000069 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000f1f RDI=0000000000000f20 RBP=00000000000003f8 RSP=ffffc9000372f290
R8 =ffff888021000237 R9 =1ffff11004200046 R10=dffffc0000000000 R11=ffffffff854e7660
R12=dffffc0000000000 R13=ffffffff99af28ee R14=ffffffff99de7520 R15=0000000000000000
RIP=ffffffff854e76dc RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f14682456c0 ffffffff 00c00000
GS =0000 ffff8880b8623000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f1468244fc8 CR3=000000001c298000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007f1467587498 00007f1467587470 XMM03=00007f14675874a8 00007f14675874a0
XMM04=00007f14680ed100 00007f1467587460 XMM05=00007f1467587478 00007f14675874c0
XMM06=00007f14675874b8 00007f14675874b0 XMM07=00007f14675874a8 00007f14675874a0
XMM08=0000000000000000 00007f1467412ee7 XMM09=0000000000000000 00007f1467412fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=1ed30d919be6fa00 RBX=ffffffff81968328 RCX=1ed30d919be6fa00 RDX=0000000000000001
RSI=ffffffff8be325e0 RDI=ffffffff81968328 RBP=ffffc90000177f20 RSP=ffffc90000177de0
R8 =ffff888136632f9b R9 =1ffff11026cc65f3 R10=dffffc0000000000 R11=ffffed1026cc65f4
R12=ffffffff8fa34230 R13=0000000000000001 R14=0000000000000001 R15=1ffff110200d0000
RIP=ffffffff8b7893f3 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8881a3c23000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b32923ffc CR3=0000000029ac0000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 00000000000001a4 XMM01=0000000000000000 0000000000000000
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 0000000000000000 XMM05=0000000000000000 0000000000000000
XMM06=0000000000000000 0000000000000000 XMM07=0000000000000000 0000000000000000
XMM08=0000000000000000 0000000000000000 XMM09=0000000000000000 0000000000000000
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
