last executing test programs:

40.381979012s ago: executing program 0 (id=54):
r0 = inotify_init1(0x0)
r1 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000240), 0x88002, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000000040)=0x13)
close_range(r0, 0xffffffffffffffff, 0x0)

40.301898344s ago: executing program 0 (id=55):
r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000000), 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f0000000040)={0x0})

40.219850388s ago: executing program 0 (id=56):
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x76, 0x109301)
ioctl$USBDEVFS_DROP_PRIVILEGES(r0, 0x4004551e, &(0x7f0000000440)=0x2ee)
ioctl$USBDEVFS_BULK(r0, 0xc0185502, &(0x7f0000000680)={{{0x1, 0x1}}, 0x0, 0x7, 0x0})

40.162581433s ago: executing program 0 (id=58):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0)
umount2(&(0x7f0000000100)='./file0\x00', 0x8)

40.099891528s ago: executing program 0 (id=60):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='i2c_write\x00', r0}, 0x10)
r1 = syz_usb_connect(0x0, 0x24, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0xcf, 0x8b, 0xed, 0x20, 0xfd9, 0x25, 0x2940, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xca, 0xfb, 0x1a}}]}}]}}, 0x0)
syz_usb_control_io$uac1(r1, 0x0, &(0x7f0000000580)={0x44, &(0x7f0000000700)={0x20, 0x11, 0x1, "ce"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402)
ioctl$I2C_SMBUS(r2, 0x720, &(0x7f0000000180)={0x1, 0x9, 0x7, &(0x7f0000000100)={0x8, "c6c1f7b51030c4b7c54bf28facb1ed3ee2dfe17a04bc517b5452b3b94bce47509d"}})

39.83250543s ago: executing program 0 (id=62):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000840)=ANY=[@ANYBLOB="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"], 0x2dc}}, 0x0)

39.687281783s ago: executing program 32 (id=62):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000840)=ANY=[@ANYBLOB="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"], 0x2dc}}, 0x0)

997.745042ms ago: executing program 1 (id=410):
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r0, &(0x7f0000000180)=[{&(0x7f00000001c0)="580000001500add427323b472545b4560a117fffffff81000e220e227f000008925aa80013007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee000000deff0000000200000000", 0x58}], 0x1)

886.187542ms ago: executing program 1 (id=413):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x3, 0x6, &(0x7f0000006680))
set_tid_address(0x0)

876.110531ms ago: executing program 1 (id=414):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x1, 0x5, &(0x7f0000000500)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002e000000850000002a00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000080)=r1, 0x4)
sendmsg$NFT_MSG_GETGEN(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x14, 0x10, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x6}}, 0x14}, 0x1, 0x0, 0x0, 0x400889c}, 0x10)

765.583829ms ago: executing program 1 (id=418):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000140)=0x7)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000340)=0xfc)

697.128608ms ago: executing program 3 (id=421):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r0 = socket$qrtr(0x2a, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'wlan1\x00'})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x7}]}, 0x24}}, 0x10)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000600)={0x0, 0xc, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r7=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0xf0, &(0x7f0000000100)={&(0x7f0000000280)=@newlink={0x20, 0x10, 0x401, 0x0, 0x0, {0x0, 0x48, 0x0, r7, 0x21eae}}, 0x20}}, 0x0)

575.772485ms ago: executing program 1 (id=422):
r0 = socket(0x840000000002, 0x3, 0xfa)
connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005240), 0x4000095, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000001c0)='macvtap0\x00', 0x10)

549.357381ms ago: executing program 3 (id=423):
r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000500), 0x20000, 0x0)
ioctl$sock_inet_udp_SIOCINQ(r0, 0x541b, 0x0)

468.333101ms ago: executing program 3 (id=424):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r0, 0x29, 0x19, &(0x7f00000000c0)=0x94a, 0x4)
syz_emit_ethernet(0x76, &(0x7f0000000100)={@local, @empty, @void, {@ipv6={0x86dd, @icmpv6={0x1, 0x6, '\x00\'$', 0x40, 0x3a, 0xff, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, @mcast2, {[], @dest_unreach={0x1, 0x4, 0x0, 0x0, '\x00', {0xd, 0x6, "2318d3", 0x0, 0x0, 0x1, @local, @mcast1, [@fragment={0x3a, 0x0, 0xc, 0x0, 0x0, 0x1, 0x65}], "d2588e45cd1357bc"}}}}}}}, 0x0)

407.986574ms ago: executing program 3 (id=425):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f0000000100)='./file1\x00', 0x13b)
mkdir(&(0x7f0000000040)='./bus\x00', 0x34)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
io_setup(0x1, &(0x7f00000004c0)=<r0=>0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x1214c2, 0x10)
io_submit(r0, 0x1, &(0x7f00000002c0)=[&(0x7f0000000280)={0xffffff7f00000000, 0x0, 0x0, 0x1, 0x2, r1, 0x0, 0x0, 0xfffffffc}])

355.946708ms ago: executing program 2 (id=426):
openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/bus/input/handlers\x00', 0x0, 0x0)

355.263442ms ago: executing program 1 (id=427):
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, 0x0)
ioctl$SW_SYNC_IOC_INC(0xffffffffffffffff, 0x40045701, 0x0)
ioctl$SW_SYNC_IOC_INC(r0, 0x40045701, &(0x7f00000002c0)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0xffffc000)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/59, 0x232000, 0x1000}, 0x20)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0xa, 0x2)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x81, 0x0, 0xb}]})
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(0xffffffffffffffff, 0x54a2)
close_range(r2, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_IOC_SETTIMEOUT(r1, 0x80049367, &(0x7f0000000100)=0x8000821)

353.970028ms ago: executing program 2 (id=428):
r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000b80), 0x80000, 0x0)
readv(r0, &(0x7f0000003f80)=[{&(0x7f0000000bc0)=""/25, 0x19}, {0x0}], 0x2)

280.102085ms ago: executing program 2 (id=429):
r0 = syz_open_dev$swradio(&(0x7f0000000080), 0x0, 0x2)
ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f00000000c0)={0xb, @vbi={0x38305543}})

277.980939ms ago: executing program 3 (id=430):
madvise(&(0x7f0000130000/0xd000)=nil, 0xd000, 0x66)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpu.stat\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)

208.901165ms ago: executing program 2 (id=431):
r0 = syz_socket_connect_nvme_tcp()
close(r0)

208.504392ms ago: executing program 3 (id=432):
r0 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
listen(r0, 0x7)
mknodat$null(0xffffffffffffff9c, 0x0, 0xb0a54e68b1cd2fdb, 0x103)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="200000001000010700000000e9ffffff0a0000000c0002006e6c3830323131"], 0x20}}, 0x400c0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xc, &(0x7f00000002c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), r1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000001c00010428bd700000dcdf", @ANYRES32, @ANYBLOB="3e00e4090a000200bf"], 0x28}, 0x1, 0x0, 0x0, 0x40001}, 0x24040040)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@updpolicy={0xb8, 0x15, 0x1, 0x0, 0x0, {{@in=@multicast1=0xe0000002, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x10}, {0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {0x1, 0x0, 0x0, 0xfffffffffffffffb}, 0x0, 0x6e6bb5}}, 0xb8}}, 0x0)

129.121624ms ago: executing program 2 (id=433):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="600000000206010200000000000000000000000014000780050014000700000008001240000500000900020073797a3200000000050001000700000011000300686173683a6e65742c6e657400000000050005000a000000050004"], 0x60}}, 0x0)

0s ago: executing program 2 (id=434):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000140)='./file1\x00', 0x8c0, &(0x7f00000001c0)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6572726f72733d72656d6f756e742d726f2c636f686572656e63793d66756c6c2c636f686572656e63793d66756c6c2c6c6f63616c666c6f636b732c6572726f72733d72656d6f756e742d726f2c61636c2c00a9b504852143b698d2e379891a0dde7f9adfca8cbec85bf8e749e04e"], 0x11, 0x4444, &(0x7f000000cd00)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
fchownat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0xffffffffffffffff, 0x100)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:3314' (ED25519) to the list of known hosts.
syzkaller login: [   63.800582][ T5843] cgroup: Unknown subsys name 'net'
[   63.944998][ T5843] cgroup: Unknown subsys name 'cpuset'
[   63.949871][ T5843] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   65.780349][ T5843] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   71.155635][ T1363] ieee802154 phy0 wpan0: encryption failed: -22
[   71.157851][ T1363] ieee802154 phy1 wpan1: encryption failed: -22
[   73.765509][ T5867] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   73.769900][ T5867] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   73.774195][ T5867] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   73.778530][ T5867] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   73.781990][ T5867] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   73.919777][ T5867] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   73.925073][ T5867] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   73.930599][ T5873] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   73.934797][ T5873] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   73.951174][ T5873] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   73.963614][ T5234] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   73.967662][ T5234] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   73.971049][ T5234] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   73.984242][ T5875] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   73.987842][ T5875] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   74.133974][ T5866] chnl_net:caif_netlink_parms(): no params data found
[   74.260308][ T5866] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.263856][ T5866] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.266329][ T5866] bridge_slave_0: entered allmulticast mode
[   74.269928][ T5866] bridge_slave_0: entered promiscuous mode
[   74.280507][ T5866] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.284167][ T5866] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.287122][ T5866] bridge_slave_1: entered allmulticast mode
[   74.290976][ T5866] bridge_slave_1: entered promiscuous mode
[   74.352795][ T5866] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   74.380914][ T5866] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   74.457488][ T5866] team0: Port device team_slave_0 added
[   74.460467][ T5871] chnl_net:caif_netlink_parms(): no params data found
[   74.474486][ T5866] team0: Port device team_slave_1 added
[   74.540529][ T5866] batman_adv: batadv0: Adding interface: batadv_slave_0
[   74.544551][ T5866] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   74.557314][ T5866] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   74.580073][ T5869] chnl_net:caif_netlink_parms(): no params data found
[   74.589328][ T5866] batman_adv: batadv0: Adding interface: batadv_slave_1
[   74.591924][ T5866] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   74.600270][ T5866] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   74.680106][ T5871] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.683396][ T5871] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.686176][ T5871] bridge_slave_0: entered allmulticast mode
[   74.689232][ T5871] bridge_slave_0: entered promiscuous mode
[   74.693570][ T5871] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.696118][ T5871] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.698607][ T5871] bridge_slave_1: entered allmulticast mode
[   74.701328][ T5871] bridge_slave_1: entered promiscuous mode
[   74.760445][ T5866] hsr_slave_0: entered promiscuous mode
[   74.764039][ T5866] hsr_slave_1: entered promiscuous mode
[   74.796250][ T5871] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   74.816762][ T5871] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   74.865810][ T5869] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.868591][ T5869] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.873300][ T5869] bridge_slave_0: entered allmulticast mode
[   74.876452][ T5869] bridge_slave_0: entered promiscuous mode
[   74.880651][ T5869] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.883953][ T5869] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.886507][ T5869] bridge_slave_1: entered allmulticast mode
[   74.890220][ T5869] bridge_slave_1: entered promiscuous mode
[   74.905287][ T5871] team0: Port device team_slave_0 added
[   74.925536][ T5871] team0: Port device team_slave_1 added
[   74.964656][ T5869] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   74.992414][ T5869] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   74.995746][ T5871] batman_adv: batadv0: Adding interface: batadv_slave_0
[   74.998434][ T5871] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   75.008576][ T5871] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   75.035156][ T5871] batman_adv: batadv0: Adding interface: batadv_slave_1
[   75.037811][ T5871] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   75.047881][ T5871] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   75.100871][ T5869] team0: Port device team_slave_0 added
[   75.112997][ T5869] team0: Port device team_slave_1 added
[   75.174271][ T5869] batman_adv: batadv0: Adding interface: batadv_slave_0
[   75.176951][ T5869] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   75.195522][ T5869] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   75.204822][ T5871] hsr_slave_0: entered promiscuous mode
[   75.207151][ T5871] hsr_slave_1: entered promiscuous mode
[   75.209412][ T5871] debugfs: 'hsr0' already exists in 'hsr'
[   75.211723][ T5871] Cannot create hsr debugfs directory
[   75.216377][ T5869] batman_adv: batadv0: Adding interface: batadv_slave_1
[   75.218939][ T5869] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   75.228894][ T5869] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   75.312405][ T5869] hsr_slave_0: entered promiscuous mode
[   75.314757][ T5869] hsr_slave_1: entered promiscuous mode
[   75.316909][ T5869] debugfs: 'hsr0' already exists in 'hsr'
[   75.318662][ T5869] Cannot create hsr debugfs directory
[   75.366943][ T5866] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   75.374788][ T5866] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   75.394342][ T5866] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   75.409936][ T5866] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   75.563505][ T5871] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   75.569527][ T5871] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   75.582742][ T5871] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   75.588357][ T5871] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   75.694921][ T5869] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   75.713506][ T5866] 8021q: adding VLAN 0 to HW filter on device bond0
[   75.717008][ T5869] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   75.723928][ T5869] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   75.734895][ T5869] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   75.765777][ T5866] 8021q: adding VLAN 0 to HW filter on device team0
[   75.789977][   T28] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.792927][   T28] bridge0: port 1(bridge_slave_0) entered forwarding state
[   75.801087][   T28] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.803958][   T28] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.839154][ T5871] 8021q: adding VLAN 0 to HW filter on device bond0
[   75.874701][ T5875] Bluetooth: hci0: command tx timeout
[   75.881057][ T5871] 8021q: adding VLAN 0 to HW filter on device team0
[   75.912567][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.915116][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[   75.935219][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.937998][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.969584][ T5871] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   75.974775][ T5871] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   76.015002][ T5869] 8021q: adding VLAN 0 to HW filter on device bond0
[   76.034513][ T5875] Bluetooth: hci2: command tx timeout
[   76.034564][   T55] Bluetooth: hci1: command tx timeout
[   76.038520][ T5869] 8021q: adding VLAN 0 to HW filter on device team0
[   76.054715][   T28] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.057534][   T28] bridge0: port 1(bridge_slave_0) entered forwarding state
[   76.064394][   T28] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.067311][   T28] bridge0: port 2(bridge_slave_1) entered forwarding state
[   76.137643][ T5866] 8021q: adding VLAN 0 to HW filter on device batadv0
[   76.190014][ T5871] 8021q: adding VLAN 0 to HW filter on device batadv0
[   76.234264][ T5866] veth0_vlan: entered promiscuous mode
[   76.255435][ T5866] veth1_vlan: entered promiscuous mode
[   76.291181][ T5871] veth0_vlan: entered promiscuous mode
[   76.315692][ T5871] veth1_vlan: entered promiscuous mode
[   76.319819][ T5866] veth0_macvtap: entered promiscuous mode
[   76.329441][ T5866] veth1_macvtap: entered promiscuous mode
[   76.334546][ T5869] 8021q: adding VLAN 0 to HW filter on device batadv0
[   76.369601][ T5871] veth0_macvtap: entered promiscuous mode
[   76.376861][ T5871] veth1_macvtap: entered promiscuous mode
[   76.393300][ T5866] batman_adv: batadv0: Interface activated: batadv_slave_0
[   76.412566][ T5866] batman_adv: batadv0: Interface activated: batadv_slave_1
[   76.425333][ T5869] veth0_vlan: entered promiscuous mode
[   76.440069][ T5871] batman_adv: batadv0: Interface activated: batadv_slave_0
[   76.445790][ T5718] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   76.457610][ T5718] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   76.464416][ T5718] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   76.467849][ T5718] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   76.472807][ T5871] batman_adv: batadv0: Interface activated: batadv_slave_1
[   76.477371][ T5869] veth1_vlan: entered promiscuous mode
[   76.487798][ T5895] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   76.491073][ T5895] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   76.495575][ T5895] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   76.513644][ T5895] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   76.595904][ T5869] veth0_macvtap: entered promiscuous mode
[   76.615286][ T5869] veth1_macvtap: entered promiscuous mode
[   76.640381][ T5869] batman_adv: batadv0: Interface activated: batadv_slave_0
[   76.644302][   T28] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.647192][   T28] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.669583][ T5869] batman_adv: batadv0: Interface activated: batadv_slave_1
[   76.675044][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.677667][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.696527][ T5895] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   76.707895][   T13] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   76.720511][   T13] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   76.732140][   T13] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   76.750768][  T368] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.754088][  T368] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.779034][   T27] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.785986][   T27] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.832581][ T5866] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   76.881607][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.889519][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.932387][   T27] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.935385][   T27] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.113948][ T5942] vxcan1: entered allmulticast mode
[   77.344524][ T5944] atomic_op ffff88812485b198 conn xmit_atomic 0000000000000000
[   77.542185][ T5930] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   77.695107][ T5930] usb 1-1: config 0 has an invalid interface number: 57 but max is 0
[   77.697845][ T5930] usb 1-1: config 0 has no interface number 0
[   77.700302][ T5930] usb 1-1: New USB device found, idVendor=093a, idProduct=010f, bcdDevice=c6.63
[   77.703995][ T5930] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   77.714498][ T5930] usb 1-1: config 0 descriptor??
[   77.730171][ T5930] gspca_main: mr97310a-2.14.0 probing 093a:010f
[   77.734167][ T5930] gspca_mr97310a: reg write [21] error -22
[   77.736659][ T5930] mr97310a 1-1:0.57: probe with driver mr97310a failed with error -22
[   77.933002][ T5902] usb 1-1: USB disconnect, device number 2
[   77.951712][   T55] Bluetooth: hci0: command tx timeout
[   78.059597][ T5948] loop1: detected capacity change from 0 to 1024
[   78.067861][ T5948] =======================================================
[   78.067861][ T5948] WARNING: The mand mount option has been deprecated and
[   78.067861][ T5948]          and is ignored by this kernel. Remove the mand
[   78.067861][ T5948]          option from the mount to silence this warning.
[   78.067861][ T5948] =======================================================
[   78.098894][ T5948] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   78.104089][ T5948] ext4 filesystem being mounted at /2/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.112021][   T55] Bluetooth: hci2: command tx timeout
[   78.115600][ T5948] EXT4-fs warning (device loop1): ext4_empty_dir:3103: inode #12: comm syz.1.11: directory missing '..'
[   78.121812][   T55] Bluetooth: hci1: command tx timeout
[   78.146418][ T5869] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   78.546481][ T5968] loop1: detected capacity change from 0 to 512
[   78.562530][ T5968] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 1, start 0f000002)
[   78.599736][ T5971] capability: warning: `syz.1.20' uses deprecated v2 capabilities in a way that may be insecure
[   78.696659][ T5976] syz.1.22 uses obsolete (PF_INET,SOCK_PACKET)
[   78.731299][ T5978] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   78.837589][ T5984] loop1: detected capacity change from 0 to 128
[   79.429676][ T5990] warning: `syz.1.28' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   80.041721][   T55] Bluetooth: hci0: command tx timeout
[   80.193520][ T5875] Bluetooth: hci2: command tx timeout
[   80.195861][   T55] Bluetooth: hci1: command tx timeout
[   80.456213][ T6007] loop2: detected capacity change from 0 to 512
[   80.495622][ T6007] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   80.541229][ T6007] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   80.552563][ T6007] EXT4-fs (loop2): orphan cleanup on readonly fs
[   80.685552][ T6007] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.33: corrupted inode contents
[   80.714883][ T6007] EXT4-fs (loop2): Remounting filesystem read-only
[   80.726496][ T6007] EXT4-fs (loop2): 1 truncate cleaned up
[   80.734313][ T1961] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   80.753726][ T1961] Quota error (device loop2): write_blk: dquota write failed
[   80.756587][ T1961] Quota error (device loop2): remove_free_dqentry: Can't write block (5) with free entries
[   80.760545][ T1961] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   80.768929][ T1961] Quota error (device loop2): write_blk: dquota write failed
[   80.773856][ T1961] Quota error (device loop2): free_dqentry: Can't move quota data block (5) to free list
[   80.779127][ T1961] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[   80.783594][ T1961] Quota error (device loop2): v2_write_file_info: Can't write info structure
[   80.788614][ T1961] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   80.803008][ T6007] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   80.922945][ T5871] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.178175][ T6024] loop2: detected capacity change from 0 to 256
[   81.200639][ T6024] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[   81.220297][ T6024] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=512, location=512
[   81.229903][ T6024] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found
[   81.237005][ T6024] UDF-fs: Scanning with blocksize 512 failed
[   81.251770][ T6024] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[   81.257020][ T6024] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   82.359809][ T5234] Bluetooth: hci2: command tx timeout
[   82.362453][ T5875] Bluetooth: hci1: command tx timeout
[   82.365205][   T55] Bluetooth: hci0: command tx timeout
[   82.705226][ T6045] Driver unsupported XDP return value 0 on prog  (id 5) dev N/A, expect packet loss!
[   83.092704][   T24] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   83.117050][ T6059] usb usb8: usbfs: process 6059 (syz.0.56) did not claim interface 0 before use
[   83.146051][ T6061] loop2: detected capacity change from 0 to 128
[   83.262086][   T24] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   83.270553][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   83.287085][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   83.290941][   T24] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   83.298579][   T24] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   83.303656][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   83.322176][   T24] usb 2-1: config 0 descriptor??
[   83.449008][ T6070] netlink: 20 bytes leftover after parsing attributes in process `syz.2.61'.
[   83.455366][ T6070] bridge0: port 2(bridge_slave_1) entered disabled state
[   83.459592][ T6070] bridge0: port 1(bridge_slave_0) entered disabled state
[   83.576888][   T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.659550][   T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.775204][   T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.802477][   T24] plantronics 0003:047F:FFFF.0001: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[   83.890417][   T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.012884][ T5930] usb 2-1: USB disconnect, device number 2
[   84.125809][ T5875] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   84.131105][ T5875] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   84.143700][ T5875] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   84.154943][ T5875] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   84.160082][ T5875] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   84.160144][   T12] bridge_slave_1: left allmulticast mode
[   84.172286][   T12] bridge_slave_1: left promiscuous mode
[   84.183653][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.231133][   T12] bridge_slave_0: left allmulticast mode
[   84.236918][   T12] bridge_slave_0: left promiscuous mode
[   84.237032][ T6081] netlink: 4 bytes leftover after parsing attributes in process `syz.2.67'.
[   84.239347][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   85.599780][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   85.616228][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   85.625318][   T12] bond0 (unregistering): Released all slaves
[   86.191539][   T55] Bluetooth: hci0: command tx timeout
[   86.414880][   T12] hsr_slave_0: left promiscuous mode
[   86.419377][   T12] hsr_slave_1: left promiscuous mode
[   86.434027][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   86.437039][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[   86.437266][ T6105] netlink: 4 bytes leftover after parsing attributes in process `syz.2.71'.
[   86.447047][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   86.450642][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[   86.478244][   T12] veth1_macvtap: left promiscuous mode
[   86.480892][   T12] veth0_macvtap: left promiscuous mode
[   86.485059][   T12] veth1_vlan: left promiscuous mode
[   86.487783][   T12] veth0_vlan: left promiscuous mode
[   86.528488][  T794] cfg80211: failed to load regulatory.db
[   86.763863][ T6109] loop1: detected capacity change from 0 to 2048
[   86.767671][ T6109] EXT4-fs: Ignoring removed mblk_io_submit option
[   86.814061][ T6109] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.050236][   T27] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm kworker/u10:0: bg 0: block 234: padding at end of block bitmap is not set
[   87.050912][   T12] team0 (unregistering): Port device team_slave_1 removed
[   87.057799][   T27] EXT4-fs (loop1): Remounting filesystem read-only
[   87.072881][ T5869] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.097119][   T12] team0 (unregistering): Port device team_slave_0 removed
[   87.155415][ T6114] netlink: 'syz.1.74': attribute type 11 has an invalid length.
[   87.158449][ T6114] netlink: 244 bytes leftover after parsing attributes in process `syz.1.74'.
[   87.414524][ T6105] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   87.435257][ T6105] batman_adv: batadv0: Removing interface: batadv_slave_1
[   87.471684][ T5902] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   87.652599][ T5902] usb 2-1: Using ep0 maxpacket: 8
[   87.667275][ T6083] chnl_net:caif_netlink_parms(): no params data found
[   87.672233][ T5902] usb 2-1: unable to get BOS descriptor or descriptor too short
[   87.676364][ T5902] usb 2-1: config 4 has an invalid interface number: 147 but max is 0
[   87.683026][ T5902] usb 2-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[   87.686954][ T5902] usb 2-1: config 4 has no interface number 0
[   87.708643][ T5902] usb 2-1: string descriptor 0 read error: -22
[   87.714087][ T6128] loop2: detected capacity change from 0 to 2048
[   87.725398][ T5902] usb 2-1: New USB device found, idVendor=04f2, idProduct=b746, bcdDevice=8e.6e
[   87.727382][ T6128] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[   87.739680][ T5856] udevd[5856]: incorrect nilfs2 checksum on /dev/loop2
[   87.746944][ T5902] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   87.754054][ T6129] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   87.794769][ T5902] usb 2-1: Found UVC 0.02 device <unnamed> (04f2:b746)
[   87.795830][ T6128] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=15)
[   87.797475][ T5902] usb 2-1: No streaming interface found for terminal 6.
[   87.806522][ T6128] Remounting filesystem read-only
[   87.808998][ T6128] NILFS (loop2): DAT doesn't have a block to manage vblocknr = 3044605952
[   87.814710][ T6128] NILFS error (device loop2): nilfs_bmap_truncate: broken bmap (inode number=15)
[   87.819426][ T6128] NILFS (loop2): error -5 truncating bmap (ino=15)
[   87.827317][ T6128] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=15)
[   87.862097][ T6128] syz.2.77 (6128) used greatest stack depth: 18488 bytes left
[   87.883538][ T5871] NILFS (loop2): disposed unprocessed dirty file(s) when detaching log writer
[   88.002858][ T6083] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.008952][ T5930] usb 2-1: USB disconnect, device number 3
[   88.016839][ T6083] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.020292][ T6083] bridge_slave_0: entered allmulticast mode
[   88.029120][ T6083] bridge_slave_0: entered promiscuous mode
[   88.036084][ T6083] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.039527][ T6083] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.042248][ T6083] bridge_slave_1: entered allmulticast mode
[   88.045698][ T6083] bridge_slave_1: entered promiscuous mode
[   88.099759][ T6083] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   88.109190][ T6083] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   88.208555][ T6083] team0: Port device team_slave_0 added
[   88.216108][ T6083] team0: Port device team_slave_1 added
[   88.264333][ T6083] batman_adv: batadv0: Adding interface: batadv_slave_0
[   88.267113][ T6083] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   88.278618][   T55] Bluetooth: hci0: command tx timeout
[   88.282710][ T6083] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   88.289599][ T6083] batman_adv: batadv0: Adding interface: batadv_slave_1
[   88.292532][ T6083] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   88.304437][ T6083] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   88.396990][ T6083] hsr_slave_0: entered promiscuous mode
[   88.400315][ T6083] hsr_slave_1: entered promiscuous mode
[   89.146506][ T6083] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   89.172699][ T6083] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   89.182779][ T6083] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   89.190386][ T6083] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   89.299813][ T6083] 8021q: adding VLAN 0 to HW filter on device bond0
[   89.315870][ T6083] 8021q: adding VLAN 0 to HW filter on device team0
[   89.324644][ T1090] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.327419][ T1090] bridge0: port 1(bridge_slave_0) entered forwarding state
[   89.338613][ T1090] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.341515][ T1090] bridge0: port 2(bridge_slave_1) entered forwarding state
[   89.355113][   T10] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[   89.492482][ T5902] usb 3-1: new low-speed USB device number 2 using dummy_hcd
[   89.502025][   T10] usb 2-1: Using ep0 maxpacket: 32
[   89.510428][   T10] usb 2-1: config 4 has an invalid interface number: 128 but max is 0
[   89.517777][   T10] usb 2-1: config 4 has no interface number 0
[   89.521114][   T10] usb 2-1: config 4 interface 128 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   89.527492][   T10] usb 2-1: config 4 interface 128 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   89.536509][   T10] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[   89.540165][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   89.568256][   T10] hub 2-1:4.128: USB hub found
[   89.577036][ T6083] 8021q: adding VLAN 0 to HW filter on device batadv0
[   89.637127][ T6083] veth0_vlan: entered promiscuous mode
[   89.645420][ T5902] usb 3-1: config 64 has an invalid descriptor of length 0, skipping remainder of the config
[   89.649538][ T5902] usb 3-1: New USB device found, idVendor=2201, idProduct=012c, bcdDevice=3f.e0
[   89.658523][ T6083] veth1_vlan: entered promiscuous mode
[   89.664371][ T5902] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   89.707995][ T5902] usb 3-1: probing VID:PID(2201:012C)   
[   89.728733][ T5902] usb 3-1: Could not find two sets of bulk-in/out endpoint pairs
[   89.736322][ T5902] vub300 3-1:64.0: probe with driver vub300 failed with error -22
[   89.740476][ T6083] veth0_macvtap: entered promiscuous mode
[   89.749132][ T6083] veth1_macvtap: entered promiscuous mode
[   89.766366][   T10] hub 2-1:4.128: 2 ports detected
[   89.770162][ T6083] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.772235][   T10] hub 2-1:4.128: Using single TT (err -22)
[   89.779352][ T6083] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.790596][ T5895] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.800475][ T5895] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.809430][ T5895] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.814574][ T5895] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.892543][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.895223][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.904036][ T5902] usb 3-1: USB disconnect, device number 2
[   89.947858][   T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.950273][   T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.967354][   T10] hub 2-1:4.128: hub_hub_status failed (err = -71)
[   89.974610][   T10] hub 2-1:4.128: config failed, can't get hub status (err -71)
[   90.003968][   T10] usb 2-1: USB disconnect, device number 4
[   90.355270][   T55] Bluetooth: hci0: command tx timeout
[   90.689096][ T6224] loop2: detected capacity change from 0 to 512
[   90.692534][ T6224] EXT4-fs: Ignoring removed oldalloc option
[   90.698484][ T6224] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   90.710860][ T6224] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2848: Unable to expand inode 11. Delete some EAs or run e2fsck.
[   90.718679][ T6224] EXT4-fs (loop2): 1 truncate cleaned up
[   90.723599][ T6224] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   90.749162][   T33] audit: type=1800 audit(1755689136.338:2): pid=6224 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.97" name="bus" dev="loop2" ino=18 res=0 errno=0
[   92.257918][ T5871] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.364056][ T6266] loop2: detected capacity change from 0 to 256
[   92.432400][   T55] Bluetooth: hci0: command tx timeout
[   92.557475][ T6279] loop3: detected capacity change from 0 to 256
[   92.569130][ T6279] exfat: Deprecated parameter 'utf8'
[   92.571062][ T6279] exfat: Deprecated parameter 'utf8'
[   92.587242][ T6279] exfat: Deprecated parameter 'utf8'
[   92.607959][ T6279] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d)
[   93.559101][ T6304] netlink: 12 bytes leftover after parsing attributes in process `syz.1.124'.
[   93.568242][ T6304] netlink: 'syz.1.124': attribute type 18 has an invalid length.
[   93.626584][ T6304] vxlan0: entered promiscuous mode
[   93.637817][ T5895] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   93.644434][ T5895] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   93.649510][ T5895] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   93.658984][ T5895] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   94.358161][ T6319] loop3: detected capacity change from 0 to 4096
[   94.417394][ T6323] batadv0: entered promiscuous mode
[   94.419894][ T6323] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[   94.426234][ T6324] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   94.450449][   T33] audit: type=1800 audit(1755689140.028:3): pid=6319 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.132" name="file1" dev="loop3" ino=15 res=0 errno=0
[   94.470163][   T33] audit: type=1800 audit(1755689140.038:4): pid=6319 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.132" name="file1" dev="loop3" ino=15 res=0 errno=0
[   95.021490][ T5902] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   95.174705][ T5902] usb 3-1: unable to get BOS descriptor or descriptor too short
[   95.179021][ T5902] usb 3-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[   95.183995][ T5902] usb 3-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[   95.188115][ T5902] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[   95.194229][ T5902] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   95.197649][ T5902] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   95.200808][ T5902] usb 3-1: Product: syz
[   95.203007][ T5902] usb 3-1: Manufacturer: syz
[   95.204803][ T5902] usb 3-1: SerialNumber: syz
[   95.426858][ T5902] usb 3-1: 0:2 : does not exist
[   95.446097][ T5902] usb 3-1: USB disconnect, device number 3
[   95.480995][ T5861] udevd[5861]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   95.837898][ T6366] ieee802154 phy0 wpan0: encryption failed: -22
[   95.874279][ T6368] netlink: 8 bytes leftover after parsing attributes in process `syz.3.152'.
[   95.877753][ T6368] netlink: 4 bytes leftover after parsing attributes in process `syz.3.152'.
[   95.881070][ T6368] netlink: 'syz.3.152': attribute type 18 has an invalid length.
[   95.884319][ T6368] netlink: 8 bytes leftover after parsing attributes in process `syz.3.152'.
[   95.954778][ T5902] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[   96.026758][ T6374] comedi comedi0: aio_iiro_16: I/O port conflict (0x5,8)
[   96.112084][ T5902] usb 2-1: Using ep0 maxpacket: 16
[   96.117225][ T5902] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   96.122180][ T5902] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   96.126080][ T5902] usb 2-1: New USB device found, idVendor=05ac, idProduct=8241, bcdDevice= 0.00
[   96.140097][ T5902] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   96.149029][ T5902] usb 2-1: config 0 descriptor??
[   96.151550][ T5916] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   96.306145][ T5916] usb 4-1: Using ep0 maxpacket: 16
[   96.311891][ T5916] usb 4-1: config 0 has an invalid interface number: 64 but max is 0
[   96.315007][ T5916] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   96.318742][ T5916] usb 4-1: config 0 has no interface number 0
[   96.328108][ T5916] usb 4-1: New USB device found, idVendor=0bd3, idProduct=0555, bcdDevice= 0.1e
[   96.331740][ T5916] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   96.337983][ T5916] usb 4-1: config 0 descriptor??
[   96.346553][ T5916] uvcvideo 4-1:0.64: probe with driver uvcvideo failed with error -22
[   96.573473][ T5902] appleir 0003:05AC:8241.0002: unknown main item tag 0x0
[   96.576409][ T5902] appleir 0003:05AC:8241.0002: unknown main item tag 0x0
[   96.578934][ T5902] appleir 0003:05AC:8241.0002: unknown main item tag 0x0
[   96.581066][ T5902] appleir 0003:05AC:8241.0002: unknown main item tag 0x0
[   96.584197][ T5902] appleir 0003:05AC:8241.0002: unknown main item tag 0x0
[   96.596043][ T5902] appleir 0003:05AC:8241.0002: hiddev0,hidraw0: USB HID v0.00 Device [HID 05ac:8241] on usb-dummy_hcd.1-1/input0
[   96.596963][ T5916] usb 4-1: USB disconnect, device number 2
[   96.681531][ T5872] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[   96.832369][ T5872] usb 3-1: Using ep0 maxpacket: 8
[   96.835831][ T5916] usb 2-1: USB disconnect, device number 5
[   96.839712][ T5872] usb 3-1: New USB device found, idVendor=2833, idProduct=0201, bcdDevice=2a.d5
[   96.847194][ T5872] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   96.867882][ T5872] usb 3-1: config 0 descriptor??
[   97.082826][ T5872] usb 3-1: string descriptor 0 read error: -71
[   97.102214][ T5872] usb 3-1: Found UVC 0.00 device <unnamed> (2833:0201)
[   97.104399][ T5872] usb 3-1: No valid video chain found.
[   97.109985][ T5872] usb 3-1: USB disconnect, device number 4
[   97.803972][ T6401] loop2: detected capacity change from 0 to 256
[   97.822008][ T6401] FAT-fs (loop2): Directory bread(block 64) failed
[   97.827253][ T6401] FAT-fs (loop2): Directory bread(block 65) failed
[   97.829878][ T6401] FAT-fs (loop2): Directory bread(block 66) failed
[   97.832984][ T6401] FAT-fs (loop2): Directory bread(block 67) failed
[   97.836827][ T6401] FAT-fs (loop2): Directory bread(block 68) failed
[   97.839485][ T6401] FAT-fs (loop2): Directory bread(block 69) failed
[   97.843057][ T6401] FAT-fs (loop2): Directory bread(block 70) failed
[   97.845667][ T6401] FAT-fs (loop2): Directory bread(block 71) failed
[   97.848288][ T6401] FAT-fs (loop2): Directory bread(block 72) failed
[   97.854429][ T6401] FAT-fs (loop2): Directory bread(block 73) failed
[   98.098320][ T6411] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   98.105932][ T6411] netlink: 4 bytes leftover after parsing attributes in process `syz.3.168'.
[   98.301953][ T5902] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[   98.464520][ T5902] usb 2-1: config 0 has an invalid interface number: 255 but max is 0
[   98.467833][ T5902] usb 2-1: config 0 has no interface number 0
[   98.470268][ T5902] usb 2-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[   98.485135][ T5902] usb 2-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[   98.506252][ T5902] usb 2-1: config 0 interface 255 has no altsetting 0
[   98.509004][ T5902] usb 2-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[   98.524916][ T5902] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   98.537006][ T5902] usb 2-1: config 0 descriptor??
[   98.549271][ T5902] ums-realtek 2-1:0.255: USB Mass Storage device detected
[   98.825063][  T793] usb 2-1: USB disconnect, device number 6
[   99.083458][   T55] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[   99.086929][   T55] Bluetooth: hci0: Injecting HCI hardware error event
[   99.090391][   T55] Bluetooth: hci0: hardware error 0x00
[   99.529207][ T6444] TCP: tcp_parse_options: Illegal window scaling value 150 > 14 received
[  100.275307][ T6456] loop3: detected capacity change from 0 to 4096
[  100.664753][ T6479] loop2: detected capacity change from 0 to 22
[  100.667490][ T6479] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  100.675591][ T6479] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  100.814939][ T6486] futex_wake_op: syz.3.198 tries to shift op by 36; fix this program
[  101.161481][   T55] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  101.645471][ T6497] cgroup: Invalid name
[  102.821544][ T6190] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  102.993376][ T6190] usb 4-1: Using ep0 maxpacket: 32
[  102.999316][ T6190] usb 4-1: unable to get BOS descriptor or descriptor too short
[  103.006134][ T6190] usb 4-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  103.020710][ T6190] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  103.043854][ T6190] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  103.100094][ T6190] usb 4-1: New USB device found, idVendor=286b, idProduct=0101, bcdDevice= 0.40
[  103.111923][ T6190] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  103.126706][ T6190] usb 4-1: Product: syz
[  103.128190][ T6190] usb 4-1: Manufacturer: syz
[  103.130034][ T6190] usb 4-1: SerialNumber: syz
[  103.404597][ T6190] usb 4-1: 0:2 : does not exist
[  103.453743][ T6190] usb 4-1: USB disconnect, device number 3
[  103.498178][ T5861] udevd[5861]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  103.599243][ T6573] loop1: detected capacity change from 0 to 1024
[  103.671240][ T6573] hfsplus: failed to load root directory
[  103.939505][ T6580] netlink: 'syz.1.226': attribute type 2 has an invalid length.
[  103.945023][ T6580] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.226'.
[  103.950228][ T6580] nbd: must specify at least one socket
[  105.080342][ T6605] loop3: detected capacity change from 0 to 512
[  105.138538][ T6605] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.146617][ T6612] netlink: 4 bytes leftover after parsing attributes in process `syz.2.235'.
[  105.163835][ T6605] ext4 filesystem being mounted at /56/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.190632][ T6612] team1: entered promiscuous mode
[  105.199877][ T6612] team1: entered allmulticast mode
[  105.209751][ T6612] Zero length message leads to an empty skb
[  105.250123][ T6083] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.375559][ T6590] loop1: detected capacity change from 0 to 32768
[  106.100977][ T5929] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  106.260727][ T5929] usb 4-1: Using ep0 maxpacket: 32
[  106.264537][ T5929] usb 4-1: config 0 has an invalid interface number: 35 but max is 0
[  106.267711][ T5929] usb 4-1: config 0 has no interface number 0
[  106.272320][ T5929] usb 4-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f
[  106.275772][ T5929] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  106.279032][ T5929] usb 4-1: Product: syz
[  106.280924][ T5929] usb 4-1: Manufacturer: syz
[  106.282978][ T5929] usb 4-1: SerialNumber: syz
[  106.287112][ T5929] usb 4-1: config 0 descriptor??
[  106.296107][ T5929] radio-si470x 4-1:0.35: could not find interrupt in endpoint
[  106.299038][ T5929] radio-si470x 4-1:0.35: probe with driver radio-si470x failed with error -5
[  106.477676][ T5872] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  106.500134][ T5929] radio-raremono 4-1:0.35: this is not Thanko's Raremono.
[  106.503830][ T5929] usbhid 4-1:0.35: couldn't find an input interrupt endpoint
[  106.630521][ T5872] usb 2-1: Using ep0 maxpacket: 16
[  106.634597][ T5872] usb 2-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  106.638035][ T5872] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  106.645503][ T5872] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  106.660618][ T5872] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  106.664095][ T5872] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  106.667157][ T5872] usb 2-1: Product: syz
[  106.668778][ T5872] usb 2-1: Manufacturer: syz
[  106.670794][ T5872] usb 2-1: SerialNumber: syz
[  106.713975][ T5929] usb 4-1: USB disconnect, device number 4
[  107.089220][ T5872] usb 2-1: 0:2 : does not exist
[  108.111943][ T5872] usb 2-1: 1:0: failed to get current value for ch 0 (-22)
[  108.145400][ T5872] usb 2-1: USB disconnect, device number 7
[  108.175681][ T5861] udevd[5861]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  108.578736][ T6712] netlink: 8 bytes leftover after parsing attributes in process `syz.3.272'.
[  108.582102][ T6712] netlink: 'syz.3.272': attribute type 30 has an invalid length.
[  108.585278][ T6712] netlink: 4 bytes leftover after parsing attributes in process `syz.3.272'.
[  108.635921][ T6714] loop3: detected capacity change from 0 to 512
[  108.669163][ T6714] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  108.689658][ T6714] EXT4-fs (loop3): orphan cleanup on readonly fs
[  108.692886][ T6714] Quota error (device loop3): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  108.697234][ T6714] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  108.705401][ T6714] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  108.708363][ T6714] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #16: comm syz.3.273: casefold flag without casefold feature
[  108.715931][ T6714] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.273: couldn't read orphan inode 16 (err -117)
[  108.722487][ T6714] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  108.761890][ T6083] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.903112][ T6723] netlink: 28 bytes leftover after parsing attributes in process `syz.3.277'.
[  108.929316][ T6723] netlink: 'syz.3.277': attribute type 7 has an invalid length.
[  108.937505][ T6725] loop2: detected capacity change from 0 to 1024
[  108.941189][ T6723] netlink: 'syz.3.277': attribute type 8 has an invalid length.
[  108.944111][ T6723] netlink: 4 bytes leftover after parsing attributes in process `syz.3.277'.
[  109.057152][ T6730] ipvlan2: entered promiscuous mode
[  109.067574][ T6730] ipvlan2: entered allmulticast mode
[  109.079353][ T6730] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[  109.106248][   T27] hfsplus: b-tree write err: -5, ino 4
[  109.244270][ T6717] loop1: detected capacity change from 0 to 40427
[  109.251511][ T6717] F2FS-fs (loop1): Invalid Fs Meta Ino: node(1) meta(2) root(0)
[  109.254825][ T6717] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  109.258915][ T6717] F2FS-fs (loop1): build fault injection rate: 18446
[  109.267754][ T6717] F2FS-fs (loop1): invalid crc value
[  109.334039][ T6717] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  109.338155][ T6744] loop3: detected capacity change from 0 to 256
[  109.344249][ T6744] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  109.348836][ T6744] exFAT-fs (loop3): Medium has reported failures. Some data may be lost.
[  109.349188][ T6717] F2FS-fs (loop1): Start checkpoint disabled!
[  109.359787][ T6744] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  109.364471][ T6717] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  109.364614][ T6717] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  109.414431][ T6744] exFAT-fs (loop3): error, invalid access to FAT (entry 0xffffffff)
[  109.418006][ T6744] exFAT-fs (loop3): Filesystem has been set read-only
[  109.422751][ T6744] exFAT-fs (loop3): error, invalid access to FAT (entry 0xffffffff)
[  109.426088][ T6744] exFAT-fs (loop3): error, invalid access to FAT (entry 0xffffffff)
[  109.448246][   T26] kworker/u9:0: attempt to access beyond end of device
[  109.448246][   T26] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  109.455071][   T26] CPU: 0 UID: 0 PID: 26 Comm: kworker/u9:0 Not tainted syzkaller #0 PREEMPT(full) 
[  109.455086][   T26] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  109.455093][   T26] Workqueue: writeback wb_workfn (flush-7:1)
[  109.455120][   T26] Call Trace:
[  109.455146][   T26]  <TASK>
[  109.455164][   T26]  dump_stack_lvl+0x189/0x250
[  109.455180][   T26]  ? __pfx_dump_stack_lvl+0x10/0x10
[  109.455190][   T26]  ? __pfx_queue_work_on+0x10/0x10
[  109.455200][   T26]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  109.455212][   T26]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  109.455228][   T26]  f2fs_handle_critical_error+0x37c/0x540
[  109.455247][   T26]  f2fs_write_end_io+0x886/0xb60
[  109.455265][   T26]  __submit_merged_bio+0x27a/0x6a0
[  109.455281][   T26]  __submit_merged_write_cond+0x255/0x530
[  109.455296][   T26]  f2fs_write_data_pages+0x261d/0x3000
[  109.455326][   T26]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  109.455345][   T26]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  109.455368][   T26]  ? stack_trace_save+0x9c/0xe0
[  109.455396][   T26]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  109.455414][   T26]  ? trace_f2fs_writepages+0x7f/0x200
[  109.455425][   T26]  ? f2fs_write_node_pages+0x478/0x6e0
[  109.455438][   T26]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  109.455457][   T26]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  109.455469][   T26]  do_writepages+0x32e/0x550
[  109.455490][   T26]  ? reacquire_held_locks+0x127/0x1d0
[  109.455527][   T26]  ? writeback_sb_inodes+0x384/0x1010
[  109.455553][   T26]  __writeback_single_inode+0x145/0xff0
[  109.455564][   T26]  ? do_raw_spin_unlock+0x4d/0x240
[  109.455577][   T26]  writeback_sb_inodes+0x6c7/0x1010
[  109.455601][   T26]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  109.455633][   T26]  ? rcu_is_watching+0x15/0xb0
[  109.455648][   T26]  wb_writeback+0x43b/0xaf0
[  109.455662][   T26]  ? queue_io+0x321/0x590
[  109.455674][   T26]  ? __pfx_wb_writeback+0x10/0x10
[  109.455688][   T26]  ? _raw_spin_unlock_irq+0x23/0x50
[  109.455701][   T26]  wb_workfn+0x409/0xef0
[  109.455718][   T26]  ? __pfx_wb_workfn+0x10/0x10
[  109.455729][   T26]  ? __lock_acquire+0xab9/0xd20
[  109.455746][   T26]  ? process_scheduled_works+0x9ef/0x17b0
[  109.455759][   T26]  ? _raw_spin_unlock_irq+0x23/0x50
[  109.455768][   T26]  ? process_scheduled_works+0x9ef/0x17b0
[  109.455775][   T26]  ? process_scheduled_works+0x9ef/0x17b0
[  109.455784][   T26]  process_scheduled_works+0xae1/0x17b0
[  109.455808][   T26]  ? __pfx_process_scheduled_works+0x10/0x10
[  109.455825][   T26]  worker_thread+0x8a0/0xda0
[  109.455848][   T26]  kthread+0x711/0x8a0
[  109.455863][   T26]  ? __pfx_worker_thread+0x10/0x10
[  109.455871][   T26]  ? __pfx_kthread+0x10/0x10
[  109.455882][   T26]  ? _raw_spin_unlock_irq+0x23/0x50
[  109.455892][   T26]  ? lockdep_hardirqs_on+0x9c/0x150
[  109.455902][   T26]  ? __pfx_kthread+0x10/0x10
[  109.455913][   T26]  ret_from_fork+0x3fc/0x770
[  109.455924][   T26]  ? __pfx_ret_from_fork+0x10/0x10
[  109.455936][   T26]  ? __switch_to_asm+0x39/0x70
[  109.455945][   T26]  ? __switch_to_asm+0x33/0x70
[  109.455954][   T26]  ? __pfx_kthread+0x10/0x10
[  109.455965][   T26]  ret_from_fork_asm+0x1a/0x30
[  109.455984][   T26]  </TASK>
[  109.458551][   T26] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  110.000338][ T6758] loop3: detected capacity change from 0 to 4096
[  110.241264][ T6771] process 'syz.3.295' launched '/dev/fd/3' with NULL argv: empty string added
[  110.778704][ T6803] sctp: [Deprecated]: syz.3.311 (pid 6803) Use of int in max_burst socket option deprecated.
[  110.778704][ T6803] Use struct sctp_assoc_value instead
[  110.840511][ T6801] loop1: detected capacity change from 0 to 32768
[  110.947676][ T6801] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,metadata_target=invalid label 246,noinodes_use_key_cache,journal_flush_delay=3,journal_reclaim_delay=1000,nocow
[  110.947695][ T6801]   allowing incompatible features above 0.0: (unknown version)
[  110.947700][ T6801]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  110.966672][ T6801] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0
[  110.970115][ T6801] bcachefs (loop1): initializing new filesystem
[  110.979294][ T6801] bcachefs (loop1): going read-write
[  111.004353][ T6801] bcachefs (loop1): marking superblocks
[  111.020081][ T6801] bcachefs (loop1): initializing freespace
[  111.026806][ T6801] bcachefs (loop1): done initializing freespace
[  111.031976][ T6801] bcachefs (loop1): reading snapshots table
[  111.034395][ T6801] bcachefs (loop1): reading snapshots done
[  111.077953][ T6801] bcachefs (loop1): done starting filesystem
[  111.139194][ T6801] syz.1.309 (6801) used greatest stack depth: 17448 bytes left
[  111.157558][ T5869] bcachefs (loop1): shutting down
[  111.165437][ T5869] bcachefs (loop1): going read-only
[  111.171646][ T5869] bcachefs (loop1): finished waiting for writes to stop
[  111.180601][ T5869] bcachefs (loop1): flushing journal and stopping allocators, journal seq 4
[  111.196192][ T6810] loop3: detected capacity change from 0 to 32768
[  111.206827][ T6810] bcachefs (/dev/loop3): error validating superblock: Invalid superblock section ext: field too small (64 < 88)
[  111.206827][ T6810] ext (size 64):
[  111.206827][ T6810] Recovery passes required:      recovery_pass_empty,scan_for_btree_nodes,accounting_read,stripes_read,set_may_go_rw,journal_replay,check_btree_backpointers,check_backpointers_to_extents,bucket_gens_init,reconstruct_snapshots,check_snapshot_trees,check_snapshots,check_subvols,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_unreachable_inodes,check_nlinks,resume_logged_ops,fix_reflink_p
[  111.206827][ T6810] Errors to silently fix:        jset_unknown_csum,bkey_at_pos_max,alloc_key_empty_but_have_data,lru_entry_bad,btree_ptr_val_too_big,btree_ptr_v2_val_too_big,extent_ptrs_invalid_entry,extent_ptrs_no_ptrs,extent_ptrs_redundant_crc,extent_ptrs_unwritten,extent_ptrs_written_and_unwritten,ptr_to_invalid_device,ptr_to_duplicate_device,ptr_after_last_bucket,ptr_before_first_bucket,ptr_to_missing_alloc_key,ptr_to_missing_replicas_entry,ptr_too_stale,stale_dirty_ptr,ptr_crc_uncompress
[  111.206995][ T6810] bcachefs: bch2_fs_get_tree() error: invalid_sb_ext
[  111.284432][ T5869] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 7
[  111.296296][ T5869] bcachefs (loop1): clean shutdown complete, journal seq 8
[  111.303423][ T5869] bcachefs (loop1): marking filesystem clean
[  111.356248][ T5869] bcachefs (loop1): shutdown complete
[  112.160602][ T6840] loop2: detected capacity change from 0 to 256
[  112.201677][ T6840] exFAT-fs (loop2): failed to load upcase table (idx : 0x000106cd, chksum : 0x3aeaf2c0, utbl_chksum : 0xe619d30d)
[  112.256223][ T6840] exFAT-fs (loop2): error, in sector 160, dentry 11 should be unused, but 0xc1
[  112.263194][ T6840] exFAT-fs (loop2): Filesystem has been set read-only
[  113.163477][ T6849] openvswitch: netlink: Unexpected mask (mask=200040, allowed=10048)
[  113.452828][ T6865] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[  113.575622][ T6871] loop2: detected capacity change from 0 to 64
[  113.807515][   T24] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  113.965959][ T6880] sp0: Synchronizing with TNC
[  113.974644][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  113.990629][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  114.007704][   T24] usb 4-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00
[  114.018582][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  114.057127][   T24] usb 4-1: config 0 descriptor??
[  114.547319][   T24] hid-led 0003:0FC5:B080.0003: unknown main item tag 0x0
[  115.026741][ T5916] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  115.111503][  T793] usb 4-1: USB disconnect, device number 5
[  115.181561][ T5916] usb 2-1: Using ep0 maxpacket: 16
[  115.199665][ T5916] usb 2-1: config 0 has an invalid interface number: 49 but max is 0
[  115.204241][ T5916] usb 2-1: config 0 has no interface number 0
[  115.207973][ T5916] usb 2-1: config 0 interface 49 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 16
[  115.211516][ T5916] usb 2-1: config 0 interface 49 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  115.215773][ T5916] usb 2-1: config 0 interface 49 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  115.220582][ T5916] usb 2-1: config 0 interface 49 altsetting 0 bulk endpoint 0x8F has invalid maxpacket 0
[  115.237858][ T5916] usb 2-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=76.b7
[  115.241226][ T5916] usb 2-1: New USB device strings: Mfr=5, Product=2, SerialNumber=3
[  115.244154][ T5916] usb 2-1: Product: syz
[  115.245712][ T5916] usb 2-1: Manufacturer: syz
[  115.248010][ T5916] usb 2-1: SerialNumber: syz
[  115.255757][ T6897] loop2: detected capacity change from 0 to 4096
[  115.260489][ T5916] usb 2-1: config 0 descriptor??
[  115.263156][ T6895] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  115.329962][ T6897] ntfs3(loop2): ino=5, "/" mi_enum_attr
[  115.490857][ T5916] usb 2-1: USB disconnect, device number 8
[  116.611608][ T6938] loop3: detected capacity change from 0 to 512
[  116.616252][ T6938] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  116.623709][ T6938] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[  116.640092][ T6938] EXT4-fs (loop3): orphan cleanup on readonly fs
[  116.650234][ T6938] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.363: bad orphan inode 267
[  116.663717][ T6938] EXT4-fs (loop3): Remounting filesystem read-only
[  116.687218][ T6938] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  116.703042][ T6938] EXT4-fs warning (device loop3): dx_probe:861: inode #2: comm syz.3.363: dx entry: limit 0 != root limit 125
[  116.710114][ T6938] EXT4-fs warning (device loop3): dx_probe:934: inode #2: comm syz.3.363: Corrupt directory, running e2fsck is recommended
[  116.788949][ T6941] loop2: detected capacity change from 0 to 1024
[  116.792953][ T6941] EXT4-fs: Ignoring removed nomblk_io_submit option
[  116.796610][ T6941] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  116.805106][ T5872] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  116.826257][ T6083] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  116.829340][ T5872] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  116.849150][ T6941] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.937430][ T5871] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.093679][ T6949] Bluetooth: MGMT ver 1.23
[  117.098387][ T6949] Bluetooth: hci0: invalid length 0, exp 2 for type 13
[  117.161218][ T6951] loop3: detected capacity change from 0 to 512
[  117.169492][ T6951] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  117.204878][ T6951] EXT4-fs error (device loop3): xattr_find_entry:333: inode #15: comm syz.3.369: corrupted xattr entries
[  117.224340][ T6951] EXT4-fs (loop3): 1 truncate cleaned up
[  117.229569][ T6951] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.241826][ T6951] EXT4-fs error (device loop3): ext4_iget_extra_inode:5104: inode #15: comm syz.3.369: corrupted in-inode xattr: e_name out of bounds
[  117.335400][ T6083] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.377892][ T6956] loop2: detected capacity change from 0 to 1024
[  117.410853][ T6956] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  117.432105][ T6956] ext4 filesystem being mounted at /121/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  117.479689][ T6956] EXT4-fs (loop2): Online resizing not supported with bigalloc
[  117.583739][ T5871] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  117.822654][ T6962] loop3: detected capacity change from 0 to 16
[  117.848532][ T6962] erofs (device loop3): mounted with root inode @ nid 36.
[  117.946256][ T6965] binder: 6964:6965 ioctl c0306201 200000000680 returned -14
[  119.391728][ T6998] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  119.697731][ T7009] loop1: detected capacity change from 0 to 1024
[  119.701111][ T7009] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  119.722063][ T7009] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  120.013404][ T5869] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.158668][ T7022] loop1: detected capacity change from 0 to 1024
[  120.280978][ T7018] loop3: detected capacity change from 0 to 32768
[  120.373223][ T7018] JBD2: Ignoring recovery information on journal
[  120.782881][ T7018] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  121.010375][ T7035] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  121.013285][ T7035] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  121.019881][ T7035] vhci_hcd vhci_hcd.0: Device attached
[  121.068453][ T6083] ocfs2: Unmounting device (7,3) on (node local)
[  121.264065][  T793] usb 37-1: new low-speed USB device number 2 using vhci_hcd
[  121.283186][ T5916] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  121.776824][ T7050] loop1: detected capacity change from 0 to 32768
[  121.786860][ T7050] XFS: ikeep mount option is deprecated.
[  121.789230][ T7050] XFS: ikeep mount option is deprecated.
[  121.834136][ T7050] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  121.839319][ T7050] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  121.879973][ T7050] XFS (loop1): Ending clean mount
[  121.891268][ T7050] XFS (loop1): Quotacheck needed: Please wait.
[  121.936191][ T7050] XFS (loop1): Quotacheck: Done.
[  121.993337][ T5869] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  122.124286][ T5916] usb 3-1: Using ep0 maxpacket: 16
[  122.202409][ T5916] usb 3-1: config 0 has no interfaces?
[  122.204902][ T5916] usb 3-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  122.208101][ T5916] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.212816][ T5916] usb 3-1: config 0 descriptor??
[  122.419744][ T5916] usb 3-1: USB disconnect, device number 5
[  122.423041][ T7036] usb 37-1: recv xbuf, 0
[  122.442805][ T5895] vhci_hcd: stop threads
[  122.445857][ T5895] vhci_hcd: release socket
[  122.450807][ T7072] IPVS: Error connecting to the multicast addr
[  122.454433][ T5895] vhci_hcd: disconnect device
[  122.493688][  T793] vhci_hcd: vhci_device speed not set
[  122.623610][ T7082] sp0: Synchronizing with TNC
[  122.634476][ T7086] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  122.708169][ T7088] netlink: 'syz.3.421': attribute type 10 has an invalid length.
[  122.716305][ T7088] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  122.732434][ T7088] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode
[  123.252145][   T33] audit: type=1326 audit(1755689424.828:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7102 comm="syz.1.427" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdec038ebe9 code=0x0
[  123.598410][ T7118] netlink: 104 bytes leftover after parsing attributes in process `syz.3.432'.
[  123.810307][ T7116] loop2: detected capacity change from 0 to 32768
[  123.822617][ T7116] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[  123.843544][ T7116] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  123.869984][ T7116] 
[  123.871014][ T7116] ======================================================
[  123.873772][ T7116] WARNING: possible circular locking dependency detected
[  123.876446][ T7116] syzkaller #0 Not tainted
[  123.878473][ T7116] ------------------------------------------------------
[  123.882003][ T7116] syz.2.434/7116 is trying to acquire lock:
[  123.884304][ T7116] ffff8881141b9578 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_init_acl+0x2f9/0x720
[  123.887874][ T7116] 
[  123.887874][ T7116] but task is already holding lock:
[  123.890718][ T7116] ffff888125a3a950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x1f87/0x21c0
[  123.894131][ T7116] 
[  123.894131][ T7116] which lock already depends on the new lock.
[  123.894131][ T7116] 
[  123.898120][ T7116] 
[  123.898120][ T7116] the existing dependency chain (in reverse order) is:
[  123.901546][ T7116] 
[  123.901546][ T7116] -> #2 (jbd2_handle){++++}-{0:0}:
[  123.904318][ T7116]        lock_acquire+0x120/0x360
[  123.906316][ T7116]        jbd2_journal_lock_updates+0xaa/0x360
[  123.908646][ T7116]        __ocfs2_flush_truncate_log+0x2ba/0x10e0
[  123.911139][ T7116]        ocfs2_flush_truncate_log+0x4f/0x70
[  123.913442][ T7116]        ocfs2_sync_fs+0x116/0x310
[  123.915450][ T7116]        sync_filesystem+0x1cf/0x230
[  123.917525][ T7116]        generic_shutdown_super+0x6f/0x2c0
[  123.919797][ T7116]        kill_block_super+0x44/0x90
[  123.921860][ T7116]        deactivate_locked_super+0xbc/0x130
[  123.924166][ T7116]        cleanup_mnt+0x425/0x4c0
[  123.926063][ T7116]        task_work_run+0x1d4/0x260
[  123.928141][ T7116]        exit_to_user_mode_loop+0xec/0x110
[  123.930836][ T7116]        do_syscall_64+0x2bd/0x3b0
[  123.933375][ T7116]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.935865][ T7116] 
[  123.935865][ T7116] -> #1 (&ocfs2_sysfile_lock_key[TRUNCATE_LOG_SYSTEM_INODE]){+.+.}-{4:4}:
[  123.939880][ T7116]        lock_acquire+0x120/0x360
[  123.941896][ T7116]        down_write+0x96/0x1f0
[  123.943831][ T7116]        ocfs2_xattr_set+0xadd/0x11f0
[  123.945947][ T7116]        __vfs_setxattr+0x43c/0x480
[  123.948051][ T7116]        __vfs_setxattr_noperm+0x12d/0x660
[  123.950432][ T7116]        vfs_setxattr+0x16b/0x2f0
[  123.952492][ T7116]        filename_setxattr+0x274/0x600
[  123.954610][ T7116]        path_setxattrat+0x364/0x3a0
[  123.956711][ T7116]        __x64_sys_setxattr+0xbc/0xe0
[  123.958812][ T7116]        do_syscall_64+0xfa/0x3b0
[  123.960669][ T7116]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.962757][ T7116] 
[  123.962757][ T7116] -> #0 (&oi->ip_xattr_sem){++++}-{4:4}:
[  123.965308][ T7116]        validate_chain+0xb9b/0x2140
[  123.967335][ T7116]        __lock_acquire+0xab9/0xd20
[  123.969390][ T7116]        lock_acquire+0x120/0x360
[  123.971356][ T7116]        down_read+0x46/0x2e0
[  123.973228][ T7116]        ocfs2_init_acl+0x2f9/0x720
[  123.975250][ T7116]        ocfs2_mknod+0x1321/0x2050
[  123.977324][ T7116]        ocfs2_mkdir+0x191/0x440
[  123.979278][ T7116]        vfs_mkdir+0x306/0x510
[  123.981117][ T7116]        do_mkdirat+0x247/0x590
[  123.982986][ T7116]        __x64_sys_mkdirat+0x87/0xa0
[  123.984994][ T7116]        do_syscall_64+0xfa/0x3b0
[  123.986939][ T7116]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.989430][ T7116] 
[  123.989430][ T7116] other info that might help us debug this:
[  123.989430][ T7116] 
[  123.993330][ T7116] Chain exists of:
[  123.993330][ T7116]   &oi->ip_xattr_sem --> &ocfs2_sysfile_lock_key[TRUNCATE_LOG_SYSTEM_INODE] --> jbd2_handle
[  123.993330][ T7116] 
[  123.999260][ T7116]  Possible unsafe locking scenario:
[  123.999260][ T7116] 
[  124.002098][ T7116]        CPU0                    CPU1
[  124.004110][ T7116]        ----                    ----
[  124.005853][ T7116]   rlock(jbd2_handle);
[  124.007164][ T7116]                                lock(&ocfs2_sysfile_lock_key[TRUNCATE_LOG_SYSTEM_INODE]);
[  124.010617][ T7116]                                lock(jbd2_handle);
[  124.012882][ T7116]   rlock(&oi->ip_xattr_sem);
[  124.014738][ T7116] 
[  124.014738][ T7116]  *** DEADLOCK ***
[  124.014738][ T7116] 
[  124.017369][ T7116] 8 locks held by syz.2.434/7116:
[  124.018885][ T7116]  #0: ffff888125a38428 (sb_writers#24){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[  124.021922][ T7116]  #1: ffff8881141b9840 (&type->i_mutex_dir_key#16/1){+.+.}-{4:4}, at: filename_create+0x1f8/0x3c0
[  124.025803][ T7116]  #2: ffff88812a0709c0 (&ocfs2_sysfile_lock_key[INODE_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  124.030499][ T7116]  #3: ffff8881141b89c0 (&ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  124.035076][ T7116]  #4: ffff88812a0726c0 (&ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_local_alloc_bits+0x125/0x24e0
[  124.039942][ T7116]  #5: ffff888125a38618 (sb_internal#3){.+.+}-{0:0}, at: ocfs2_mknod+0xe93/0x2050
[  124.043168][ T7116]  #6: ffff8881205b98e8 (&journal->j_trans_barrier){.+.+}-{4:4}, at: ocfs2_start_trans+0x36a/0x6d0
[  124.046655][ T7116]  #7: ffff888125a3a950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x1f87/0x21c0
[  124.049966][ T7116] 
[  124.049966][ T7116] stack backtrace:
[  124.051997][ T7116] CPU: 1 UID: 0 PID: 7116 Comm: syz.2.434 Not tainted syzkaller #0 PREEMPT(full) 
[  124.052009][ T7116] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  124.052015][ T7116] Call Trace:
[  124.052021][ T7116]  <TASK>
[  124.052026][ T7116]  dump_stack_lvl+0x189/0x250
[  124.052042][ T7116]  ? __pfx_dump_stack_lvl+0x10/0x10
[  124.052053][ T7116]  ? __pfx__printk+0x10/0x10
[  124.052065][ T7116]  ? stack_trace_save+0x9c/0xe0
[  124.052079][ T7116]  print_circular_bug+0x2ee/0x310
[  124.052090][ T7116]  check_noncircular+0x134/0x160
[  124.052100][ T7116]  validate_chain+0xb9b/0x2140
[  124.052108][ T7116]  ? __pfx_find_get_block_common+0x10/0x10
[  124.052121][ T7116]  __lock_acquire+0xab9/0xd20
[  124.052133][ T7116]  ? ocfs2_init_acl+0x2f9/0x720
[  124.052141][ T7116]  lock_acquire+0x120/0x360
[  124.052152][ T7116]  ? ocfs2_init_acl+0x2f9/0x720
[  124.052162][ T7116]  ? do_raw_spin_unlock+0x4d/0x240
[  124.052172][ T7116]  down_read+0x46/0x2e0
[  124.052184][ T7116]  ? ocfs2_init_acl+0x2f9/0x720
[  124.052217][ T7116]  ocfs2_init_acl+0x2f9/0x720
[  124.052228][ T7116]  ? __pfx_ocfs2_init_acl+0x10/0x10
[  124.052237][ T7116]  ? dquot_alloc_inode+0x216/0xa50
[  124.052248][ T7116]  ? __pfx_ocfs2_journal_dirty+0x10/0x10
[  124.052259][ T7116]  ? ocfs2_block_signals+0x94/0xe0
[  124.052270][ T7116]  ? __pfx_ocfs2_block_signals+0x10/0x10
[  124.052282][ T7116]  ? ocfs2_metadata_cache_get_super+0x43/0x80
[  124.052290][ T7116]  ? ocfs2_inode_cache_get_super+0xd/0x40
[  124.052299][ T7116]  ocfs2_mknod+0x1321/0x2050
[  124.052310][ T7116]  ? __pfx_ocfs2_mknod+0x10/0x10
[  124.052317][ T7116]  ? do_raw_spin_unlock+0x4d/0x240
[  124.052327][ T7116]  ? ocfs2_inode_lock_full_nested+0xabe/0x1b40
[  124.052340][ T7116]  ? __lock_acquire+0xab9/0xd20
[  124.052355][ T7116]  ? __lock_acquire+0xab9/0xd20
[  124.052367][ T7116]  ? do_raw_spin_lock+0x121/0x290
[  124.052378][ T7116]  ? do_raw_spin_unlock+0x4d/0x240
[  124.052388][ T7116]  ? put_pid+0xe9/0x130
[  124.052398][ T7116]  ocfs2_mkdir+0x191/0x440
[  124.052405][ T7116]  ? __pfx_from_kgid+0x10/0x10
[  124.052416][ T7116]  ? apparmor_path_mkdir+0x1a7/0x220
[  124.052444][ T7116]  ? __pfx_ocfs2_mkdir+0x10/0x10
[  124.052452][ T7116]  ? HAS_UNMAPPED_ID+0x11a/0x180
[  124.052462][ T7116]  ? inode_permission+0x149/0x470
[  124.052469][ T7116]  ? __pfx_ocfs2_permission+0x10/0x10
[  124.052482][ T7116]  ? bpf_lsm_inode_mkdir+0x9/0x20
[  124.052494][ T7116]  vfs_mkdir+0x306/0x510
[  124.052505][ T7116]  do_mkdirat+0x247/0x590
[  124.052517][ T7116]  ? __pfx_do_mkdirat+0x10/0x10
[  124.052527][ T7116]  ? getname_flags+0x1e5/0x540
[  124.052536][ T7116]  __x64_sys_mkdirat+0x87/0xa0
[  124.052546][ T7116]  do_syscall_64+0xfa/0x3b0
[  124.052557][ T7116]  ? lockdep_hardirqs_on+0x9c/0x150
[  124.052567][ T7116]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.052575][ T7116]  ? exc_page_fault+0x9f/0xf0
[  124.052585][ T7116]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.052593][ T7116] RIP: 0033:0x7f67c358ebe9
[  124.052603][ T7116] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  124.052610][ T7116] RSP: 002b:00007f67c4493038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  124.052620][ T7116] RAX: ffffffffffffffda RBX: 00007f67c37b5fa0 RCX: 00007f67c358ebe9
[  124.052627][ T7116] RDX: 0000000000000000 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  124.052633][ T7116] RBP: 00007f67c3611e19 R08: 0000000000000000 R09: 0000000000000000
[  124.052639][ T7116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  124.052644][ T7116] R13: 00007f67c37b6038 R14: 00007f67c37b5fa0 R15: 00007ffd4ec72b28
[  124.052654][ T7116]  </TASK>
[  124.266836][ T5871] ocfs2: Unmounting device (7,2) on (node local)
[  132.580577][ T1363] ieee802154 phy0 wpan0: encryption failed: -22
[  132.583312][ T1363] ieee802154 phy1 wpan1: encryption failed: -22

VM DIAGNOSIS:
11:26:09  Registers:
info registers vcpu 0

CPU#0
RAX=da8b852a60f3a100 RBX=ffffffff819683a8 RCX=da8b852a60f3a100 RDX=0000000000000001
RSI=ffffffff8be332e0 RDI=ffffffff819683a8 RBP=ffffffff8de07eb8 RSP=ffffffff8de07d80
R8 =ffff88804b032f9b R9 =1ffff110096065f3 R10=dffffc0000000000 R11=ffffed10096065f4
R12=ffffffff8fa37e30 R13=0000000000000000 R14=0000000000000000 R15=1ffffffff1bd2a20
RIP=ffffffff8b7943f3 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880b861c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00005555753875c8 CR3=000000010a88a000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=ffffffff8167991b ffffffff8167991b
XMM02=ffffffff8133c57e ffffffff8167991b XMM03=ffffffff8133c57e ffffffff8133c57e
XMM04=00007fca262ed100 00007fca25787460 XMM05=00007fca25787478 00007fca257874c0
XMM06=00007fca257874b8 00007fca257874b0 XMM07=00007fca257874a8 00007fca257874a0
XMM08=0000000000000000 00007fca25612ee7 XMM09=0000000000000000 00007fca25612fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000000002d RBX=000000000000002d RCX=0000000000000000 RDX=00000000000003f8
RSI=000000000000277a RDI=000000000000277b RBP=00000000000003f8 RSP=ffffc90002cbed10
R8 =ffff888020698237 R9 =1ffff110040d3046 R10=dffffc0000000000 R11=ffffffff854eff70
R12=dffffc0000000000 R13=ffffffff99af98dd R14=ffffffff99dee3a0 R15=0000000000000000
RIP=ffffffff854effec RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f67c44936c0 ffffffff 00c00000
GS =0000 ffff8881a3c1c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000110c2e1bb7 CR3=0000000109d28000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 00000000000000ff XMM01=2525252525252525 2525252525252525
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 00000000000000ff XMM05=000000000000001c 0000000000000032
XMM06=0000000000000000 0000000000000000 XMM07=0000000000000000 0000000000000000
XMM08=ffffffffffffff00 ffffffffffffff00 XMM09=0000000000000041 0000000000000032
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
