last executing test programs:

2.139963563s ago: executing program 2 (id=361):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
unshare(0x26020480)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000080)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@my=0x0})
select(0x40, &(0x7f0000000200)={0x9, 0x384d, 0xfff, 0x1ff, 0x5, 0x8, 0x4, 0x5}, 0x0, 0x0, 0x0)
ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r0, 0x7a5, &(0x7f0000000180)={{@my=0x0}, 0x0, 0x1})
ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r0, 0x7a5, &(0x7f00000000c0)={{@my=0x0}, 0x1})

1.978722877s ago: executing program 2 (id=362):
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000005600)='./file0\x00', 0x0, &(0x7f0000000040)={[{@compress_algo={'compress', 0x3d, 'zstd'}}]}, 0x1, 0x559a, &(0x7f0000005680)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000)=0x4)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='cpuset.effective_cpus\x00', 0x275a, 0x0)

1.104860974s ago: executing program 2 (id=369):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
getsockopt$bt_BT_RCVMTU(r0, 0x112, 0xd, &(0x7f0000001000)=0xff81, 0x0)

779.876012ms ago: executing program 2 (id=373):
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
read(r0, 0x0, 0x0)

679.848012ms ago: executing program 2 (id=375):
r0 = socket(0x10, 0x803, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@newqdisc={0x5c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x16, 0x1, 0x5, 0xc, 0x0, 0x40, 0x5}}, {0x4}}]}]}, 0x5c}}, 0x0)

600.394933ms ago: executing program 2 (id=376):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000000100)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$FS_IOC_GETVERSION(r1, 0x40015b0b, 0x0)

600.004471ms ago: executing program 0 (id=377):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r0, &(0x7f0000000000)={0x1a, 0x200, 0xf9, 0x8, 0x0, 0x0, @remote}, 0x10)

539.079405ms ago: executing program 0 (id=378):
r0 = syz_io_uring_setup(0xbc3, &(0x7f0000000180)={0x0, 0x1064, 0x0, 0x0, 0x271}, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000300)=@IORING_OP_OPENAT2={0x1c, 0x4, 0x0, 0xffffffffffffff9c, &(0x7f0000000040)={0x141000, 0x6a, 0x48}, &(0x7f0000000140)='./file0\x00', 0x18, 0x0, 0x12345})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r0, 0x47f8, 0x0, 0x0, 0x0, 0x0)

388.874402ms ago: executing program 1 (id=379):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000240)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000100000004000480080002000100000008000100000000000400088028000c800c000b8008000a00000000000c000b80080009004d"], 0x54}}, 0x0)

388.564953ms ago: executing program 0 (id=380):
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, 0x0, 0x0, 0x1}, 0x94)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x7c8})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000200)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
madvise(&(0x7f00003cd000/0x1000)=nil, 0x1000, 0x8)
readv(r0, &(0x7f00000000c0), 0x9)

339.871953ms ago: executing program 1 (id=381):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="70000000020605a3cfc8647108024e0000000007120003006269746d61703a69702c6d616300000005000400010000000900020073797a3000000000240007800c00028008000140000000020c0001800800014000000004080008400000005c05000500020000000500010006"], 0x70}}, 0x8000)

339.481198ms ago: executing program 1 (id=382):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000001c0))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
dup(0xffffffffffffffff)

250.363756ms ago: executing program 0 (id=383):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x74, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
recvmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000004140)=[{&(0x7f0000000240)=""/212, 0xd4}], 0x1}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4c0300001a"], 0x34c}}, 0x0)

190.090353ms ago: executing program 0 (id=384):
syz_mount_image$jfs(&(0x7f0000000100), &(0x7f00000000c0)='./file1\x00', 0x1010006, &(0x7f00000002c0)={[{@quota}, {@noquota}, {@nointegrity}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'cp863'}}, {@noquota}, {@gid}, {@iocharset={'iocharset', 0x3d, 'koi8-u'}}, {@uid={'uid', 0x3d, 0xee01}}]}, 0x24, 0x61b6, &(0x7f00000075c0)="$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")
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000280)='./bus\x00', 0x810408, 0x0, 0xff, 0x0, &(0x7f00000007c0))
rename(&(0x7f0000000180)='./file0\x00', &(0x7f0000000a00)='./bus/file0\x00')

98.413107ms ago: executing program 1 (id=385):
r0 = syz_open_dev$sndctrl(&(0x7f0000005a80), 0xce5, 0x2400)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r0, 0x80045530, &(0x7f0000005ac0)=""/114)

92.705566ms ago: executing program 1 (id=386):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
r0 = open$dir(&(0x7f0000000040)='.\x00', 0x0, 0x0)
execveat(r0, &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0)

319.187µs ago: executing program 1 (id=387):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x40, 0x4, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_TYPE={0x5, 0x2, 0x17}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x1}, @NFTA_EXTHDR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x2}, @NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0x13}, @NFTA_EXTHDR_OFFSET={0x8, 0x3, 0x1, 0x0, 0x18}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x94}}, 0x0)

0s ago: executing program 0 (id=388):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x10, 0xe, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000040), 0x2a, 0x0, 0xffffffffffffffff, 0x37}, 0x24)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:21225' (ED25519) to the list of known hosts.
syzkaller login: [   49.681314][ T5774] cgroup: Unknown subsys name 'net'
[   49.800974][ T5774] cgroup: Unknown subsys name 'cpuset'
[   49.808125][ T5774] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   51.236053][ T5774] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   55.327871][   T55] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   55.333365][   T55] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   55.337634][   T55] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   55.342934][   T55] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   55.347696][ T5849] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   55.351051][ T5849] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   55.366689][ T5848] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   55.370357][ T5848] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   55.373024][ T5848] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   55.375646][ T5848] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   55.438991][ T5844] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   55.442157][ T5844] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   55.444819][ T5844] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   55.447747][ T5844] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   55.450328][ T5844] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   55.688079][ T5842] chnl_net:caif_netlink_parms(): no params data found
[   55.722992][ T5846] chnl_net:caif_netlink_parms(): no params data found
[   55.798035][ T5851] chnl_net:caif_netlink_parms(): no params data found
[   55.822900][ T5842] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.826777][ T5842] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.830041][ T5842] bridge_slave_0: entered allmulticast mode
[   55.833907][ T5842] bridge_slave_0: entered promiscuous mode
[   55.856471][ T5842] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.859434][ T5842] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.862481][ T5842] bridge_slave_1: entered allmulticast mode
[   55.866368][ T5842] bridge_slave_1: entered promiscuous mode
[   55.919831][ T5846] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.922342][ T5846] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.924813][ T5846] bridge_slave_0: entered allmulticast mode
[   55.928715][ T5846] bridge_slave_0: entered promiscuous mode
[   55.932359][ T5846] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.934967][ T5846] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.938149][ T5846] bridge_slave_1: entered allmulticast mode
[   55.941129][ T5846] bridge_slave_1: entered promiscuous mode
[   55.950019][ T5842] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   55.973932][ T5842] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   55.994410][ T5851] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.997365][ T5851] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.000108][ T5851] bridge_slave_0: entered allmulticast mode
[   56.003235][ T5851] bridge_slave_0: entered promiscuous mode
[   56.023271][ T5851] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.026996][ T5851] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.029869][ T5851] bridge_slave_1: entered allmulticast mode
[   56.033600][ T5851] bridge_slave_1: entered promiscuous mode
[   56.038333][ T5846] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.043246][ T5842] team0: Port device team_slave_0 added
[   56.047797][ T5846] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.077708][ T5842] team0: Port device team_slave_1 added
[   56.115494][ T5851] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.122059][ T5851] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.138726][ T5846] team0: Port device team_slave_0 added
[   56.151939][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.154677][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.165062][ T5842] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.184970][ T5851] team0: Port device team_slave_0 added
[   56.189023][ T5846] team0: Port device team_slave_1 added
[   56.191823][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.194146][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.203394][ T5842] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.209296][ T5851] team0: Port device team_slave_1 added
[   56.262918][ T5846] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.265857][ T5846] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.278260][ T5846] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.295818][ T5851] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.298692][ T5851] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.307523][ T5851] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.312665][ T5846] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.315529][ T5846] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.326703][ T5846] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.336345][ T5842] hsr_slave_0: entered promiscuous mode
[   56.339474][ T5842] hsr_slave_1: entered promiscuous mode
[   56.343097][ T5851] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.345794][ T5851] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.355107][ T5851] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.421324][ T5851] hsr_slave_0: entered promiscuous mode
[   56.423738][ T5851] hsr_slave_1: entered promiscuous mode
[   56.426345][ T5851] debugfs: 'hsr0' already exists in 'hsr'
[   56.428412][ T5851] Cannot create hsr debugfs directory
[   56.459223][ T5846] hsr_slave_0: entered promiscuous mode
[   56.462165][ T5846] hsr_slave_1: entered promiscuous mode
[   56.465051][ T5846] debugfs: 'hsr0' already exists in 'hsr'
[   56.467231][ T5846] Cannot create hsr debugfs directory
[   56.699498][ T5842] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   56.707422][ T5842] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   56.714118][ T5842] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   56.722225][ T5842] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   56.773591][ T5846] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   56.778749][ T5846] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   56.797911][ T5846] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   56.809363][ T5846] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   56.831691][ T5851] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   56.838024][ T5851] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   56.844655][ T5851] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   56.849558][ T5851] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   56.943476][ T5842] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.964382][ T5842] 8021q: adding VLAN 0 to HW filter on device team0
[   56.969614][ T5851] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.982185][ T1089] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.984632][ T1089] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.995511][ T5851] 8021q: adding VLAN 0 to HW filter on device team0
[   57.002702][ T1089] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.005470][ T1089] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.011656][ T5846] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.019870][ T1089] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.022199][ T1089] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.034658][ T1089] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.037059][ T1089] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.041993][ T5846] 8021q: adding VLAN 0 to HW filter on device team0
[   57.058006][ T1089] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.060352][ T1089] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.096842][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.099213][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.122272][ T5842] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   57.143840][ T5846] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   57.151646][ T5846] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   57.254286][ T5851] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.288324][ T5842] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.314809][ T5851] veth0_vlan: entered promiscuous mode
[   57.320914][ T5846] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.346888][ T5851] veth1_vlan: entered promiscuous mode
[   57.364892][ T5842] veth0_vlan: entered promiscuous mode
[   57.373148][ T5846] veth0_vlan: entered promiscuous mode
[   57.382329][ T5846] veth1_vlan: entered promiscuous mode
[   57.394062][ T5851] veth0_macvtap: entered promiscuous mode
[   57.398057][ T5842] veth1_vlan: entered promiscuous mode
[   57.402637][ T5851] veth1_macvtap: entered promiscuous mode
[   57.428278][ T5851] batman_adv: batadv0: Interface activated: batadv_slave_0
[   57.433275][ T5846] veth0_macvtap: entered promiscuous mode
[   57.437804][ T5848] Bluetooth: hci0: command tx timeout
[   57.439840][ T5848] Bluetooth: hci1: command tx timeout
[   57.440681][ T5842] veth0_macvtap: entered promiscuous mode
[   57.446975][ T5851] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.452256][ T5846] veth1_macvtap: entered promiscuous mode
[   57.464899][ T5842] veth1_macvtap: entered promiscuous mode
[   57.469586][   T13] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.473536][   T13] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.484662][   T13] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.488202][   T13] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.492607][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_0
[   57.497072][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_0
[   57.509203][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.514358][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.516562][ T5844] Bluetooth: hci2: command tx timeout
[   57.531319][   T13] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.534325][   T13] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.541213][   T13] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.551961][   T13] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.560393][   T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.565393][   T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.569979][   T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.584648][   T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.639217][   T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.647403][   T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.662840][ T1089] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.665449][ T1089] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.693051][   T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.697230][   T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.712301][ T1830] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.714923][ T1830] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.733540][ T1089] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.736799][ T1089] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.740555][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.744061][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.760019][ T5851] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   58.138195][ T5938] loop3: detected capacity change from 0 to 1
[   58.145626][ T5938] Dev loop3: unable to read RDB block 1
[   58.162506][ T5938]  loop3: unable to read partition table
[   58.164983][ T5938] loop3: partition table beyond EOD, truncated
[   58.178090][ T5938] loop_reread_partitions: partition scan of loop3 (被x ) failed (rc=-5)
[   58.227068][ T5942] overlayfs: empty lowerdir
[   58.358679][ T5950] ALSA: mixer_oss: invalid OSS volume 'T'
[   58.403515][ T5844] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201'
[   58.408991][ T5844] CPU: 1 UID: 0 PID: 5844 Comm: kworker/u11:2 Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[   58.409011][ T5844] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   58.409019][ T5844] Workqueue: hci1 hci_rx_work
[   58.409042][ T5844] Call Trace:
[   58.409048][ T5844]  <TASK>
[   58.409055][ T5844]  dump_stack_lvl+0x189/0x250
[   58.409077][ T5844]  ? __pfx_dump_stack_lvl+0x10/0x10
[   58.409094][ T5844]  ? __pfx__printk+0x10/0x10
[   58.409116][ T5844]  ? kernfs_path_from_node+0x250/0x290
[   58.409130][ T5844]  ? kernfs_path_from_node+0x2f/0x290
[   58.409145][ T5844]  sysfs_create_dir_ns+0x259/0x280
[   58.409160][ T5844]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[   58.409174][ T5844]  ? do_raw_spin_unlock+0x4d/0x240
[   58.409192][ T5844]  kobject_add_internal+0x59f/0xb40
[   58.409214][ T5844]  kobject_add+0x155/0x220
[   58.409235][ T5844]  ? __pfx_kobject_add+0x10/0x10
[   58.409253][ T5844]  ? _raw_spin_unlock+0x28/0x50
[   58.409270][ T5844]  ? get_device_parent+0x366/0x3a0
[   58.409285][ T5844]  device_add+0x408/0xb50
[   58.409300][ T5844]  hci_conn_add_sysfs+0xd5/0x1e0
[   58.409315][ T5844]  le_conn_complete_evt+0xc3a/0x1220
[   58.409341][ T5844]  ? __pfx_le_conn_complete_evt+0x10/0x10
[   58.409359][ T5844]  ? __mutex_unlock_slowpath+0x1a1/0x760
[   58.409381][ T5844]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   58.409395][ T5844]  ? skb_pull_data+0xfb/0x200
[   58.409413][ T5844]  hci_le_enh_conn_complete_evt+0x189/0x470
[   58.409453][ T5844]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[   58.409478][ T5844]  hci_event_packet+0x78f/0x1200
[   58.409499][ T5844]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   58.409517][ T5844]  ? __pfx_hci_event_packet+0x10/0x10
[   58.409532][ T5844]  ? kcov_remote_start+0x4d3/0x7f0
[   58.409549][ T5844]  ? lockdep_hardirqs_on+0x90/0x150
[   58.409566][ T5844]  ? hci_send_to_monitor+0xe2/0x570
[   58.409595][ T5844]  hci_rx_work+0x46a/0xe80
[   58.409618][ T5844]  ? process_scheduled_works+0x9ef/0x17b0
[   58.409634][ T5844]  process_scheduled_works+0xae1/0x17b0
[   58.409666][ T5844]  ? __pfx_process_scheduled_works+0x10/0x10
[   58.409691][ T5844]  worker_thread+0x8a0/0xda0
[   58.409724][ T5844]  kthread+0x711/0x8a0
[   58.409742][ T5844]  ? __pfx_worker_thread+0x10/0x10
[   58.409753][ T5844]  ? __pfx_kthread+0x10/0x10
[   58.409767][ T5844]  ? _raw_spin_unlock_irq+0x23/0x50
[   58.409778][ T5844]  ? lockdep_hardirqs_on+0x9c/0x150
[   58.409791][ T5844]  ? __pfx_kthread+0x10/0x10
[   58.409803][ T5844]  ret_from_fork+0x3fc/0x770
[   58.409818][ T5844]  ? __pfx_ret_from_fork+0x10/0x10
[   58.409832][ T5844]  ? __switch_to_asm+0x39/0x70
[   58.409848][ T5844]  ? __switch_to_asm+0x33/0x70
[   58.409865][ T5844]  ? __pfx_kthread+0x10/0x10
[   58.409882][ T5844]  ret_from_fork_asm+0x1a/0x30
[   58.409909][ T5844]  </TASK>
[   58.409932][ T5844] kobject: kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory.
[   58.534911][ T5844] Bluetooth: hci1: failed to register connection device
[   58.937938][ T5892] usb 3-1: new full-speed USB device number 2 using dummy_hcd
[   59.100997][ T5892] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   59.105502][ T5892] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[   59.110384][ T5892] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[   59.117727][ T5892] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64
[   59.124630][ T5892] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   59.128840][ T5892] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   59.132081][ T5892] usb 3-1: Product: syz
[   59.133864][ T5892] usb 3-1: Manufacturer: syz
[   59.135826][ T5892] usb 3-1: SerialNumber: syz
[   59.143303][ T5958] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   59.150368][ T5892] cdc_mbim 3-1:1.0: skipping garbage
[   59.226571][ T5878] usb 1-1: new full-speed USB device number 2 using dummy_hcd
[   59.353936][ T5958] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   59.357890][ T5958] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   59.382333][ T5878] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 15
[   59.386663][ T5878] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   59.391448][ T5878] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   59.398207][ T5878] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[   59.406101][ T5878] usb 1-1: New USB device found, idVendor=077d, idProduct=04aa, bcdDevice=5b.d8
[   59.410065][ T5878] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   59.413355][ T5878] usb 1-1: Product: syz
[   59.415166][ T5878] usb 1-1: Manufacturer: syz
[   59.419967][ T5878] usb 1-1: SerialNumber: syz
[   59.425240][ T5878] usb 1-1: config 0 descriptor??
[   59.432882][ T5964] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[   59.516137][ T5844] Bluetooth: hci0: command tx timeout
[   59.518534][ T5848] Bluetooth: hci1: command tx timeout
[   59.540799][ T5967] sd 0:0:0:0: PR command failed: 1026
[   59.543217][ T5967] sd 0:0:0:0: Sense Key : Illegal Request [current] 
[   59.546152][ T5967] sd 0:0:0:0: Add. Sense: Invalid command operation code
[   59.596595][ T5848] Bluetooth: hci2: command tx timeout
[   59.661619][ T5878] powermate: Expected payload of 3--6 bytes, found 64 bytes!
[   59.671791][ T5878] input: Griffin SoundKnob as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input4
[   59.704211][    C1] powermate: config urb returned -71
[   59.706905][    C1] powermate: config urb returned -71
[   59.709685][    C1] powermate: config urb returned -71
[   59.712567][    C1] powermate: config urb returned -71
[   59.732744][    C1] powermate 1-1:0.0: powermate_irq - usb_submit_urb failed with result: -19
[   59.736403][ T5878] usb 1-1: USB disconnect, device number 2
[   59.760481][ T5977] loop1: detected capacity change from 0 to 1024
[   59.851870][   T33] audit: type=1800 audit(1755554637.729:2): pid=5977 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.30" name="file1" dev="loop1" ino=20 res=0 errno=0
[   59.860885][   T33] audit: type=1800 audit(1755554637.749:3): pid=5977 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.30" name="file1" dev="loop1" ino=20 res=0 errno=0
[   59.976078][ T5958] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   59.978568][ T5958] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   59.983576][ T5892] cdc_mbim 3-1:1.0: setting tx_max = 184
[   59.991956][ T5892] cdc_mbim 3-1:1.0: cdc-wdm0: USB WDM device
[   60.010694][ T5892] wwan wwan0: port wwan0mbim0 attached
[   60.022473][ T5892] cdc_mbim 3-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.2-1, CDC MBIM, ca:aa:86:5a:dc:47
[   60.041598][ T5981] loop1: detected capacity change from 0 to 1024
[   60.044945][ T5981] EXT4-fs: Ignoring removed bh option
[   60.067931][ T5981] EXT4-fs: inline encryption not supported
[   60.086491][ T5981] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   60.103216][ T5981] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[   60.115101][ T5981] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 2: comm syz.1.32: lblock 2 mapped to illegal pblock 2 (length 1)
[   60.123242][ T5981] Quota error (device loop1): qtree_write_dquot: dquota write failed
[   60.126914][ T5981] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 48: comm syz.1.32: lblock 0 mapped to illegal pblock 48 (length 1)
[   60.132715][ T5981] Quota error (device loop1): v2_write_file_info: Can't write info structure
[   60.138449][ T5981] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.32: Failed to acquire dquot type 0
[   60.143278][ T5981] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem
[   60.148191][ T5981] EXT4-fs error (device loop1): ext4_evict_inode:254: inode #11: comm syz.1.32: mark_inode_dirty error
[   60.152774][ T5981] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   60.160311][ T5981] EXT4-fs (loop1): 1 orphan inode deleted
[   60.163897][ T5981] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   60.196498][ T5892] usb 3-1: USB disconnect, device number 2
[   60.200613][ T5892] cdc_mbim 3-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.2-1, CDC MBIM
[   60.207684][ T4565] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u10:5: lblock 1 mapped to illegal pblock 1 (length 1)
[   60.235092][ T4565] Quota error (device loop1): remove_tree: Can't read quota data block 1
[   60.241028][ T4565] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u10:5: Failed to release dquot type 0
[   60.259322][ T5851] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.270227][ T5851] EXT4-fs error (device loop1): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0
[   60.276226][ T5892] wwan wwan0: port wwan0mbim0 disconnected
[   60.280782][ T5851] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem
[   60.284355][ T5851] EXT4-fs error (device loop1): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error
[   60.334878][ T5997] loop1: detected capacity change from 0 to 128
[   60.541399][ T5994] loop0: detected capacity change from 0 to 32768
[   60.553816][ T5994] ERROR: (device loop0): dbAlloc: the hint is outside the map
[   60.553816][ T5994] 
[   60.571618][   T40] read_mapping_page failed!
[   60.573756][   T40] ERROR: (device loop0): txCommit: 
[   60.573756][   T40] 
[   60.585546][   T40] jfs_write_inode: jfs_commit_inode failed!
[   60.612180][ T6009] loop0: detected capacity change from 0 to 256
[   60.614645][ T6009] exfat: Deprecated parameter 'namecase'
[   60.622213][ T6009] exFAT-fs (loop0): failed to load upcase table (idx : 0x0001047b, chksum : 0x3ced02ab, utbl_chksum : 0xe619d30d)
[   60.661527][ T6011] netlink: 'syz.0.40': attribute type 10 has an invalid length.
[   60.686487][ T5973] IPVS: starting estimator thread 0...
[   60.774055][ T6021] vivid-000: disconnect
[   60.776009][ T6015] IPVS: using max 80 ests per chain, 192000 per kthread
[   60.787377][ T6020] vivid-000: reconnect
[   60.888826][ T6029] loop0: detected capacity change from 0 to 1024
[   60.894195][ T6029] =======================================================
[   60.894195][ T6029] WARNING: The mand mount option has been deprecated and
[   60.894195][ T6029]          and is ignored by this kernel. Remove the mand
[   60.894195][ T6029]          option from the mount to silence this warning.
[   60.894195][ T6029] =======================================================
[   60.940032][ T6029] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   60.946198][ T6029] ext4 filesystem being mounted at /19/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.953705][   T33] audit: type=1800 audit(1755554638.829:4): pid=6029 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.48" name="file1" dev="loop0" ino=15 res=0 errno=0
[   60.957789][ T6029] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 1: comm syz.0.48: lblock 1 mapped to illegal pblock 1 (length 3)
[   60.969360][ T6029] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 3: comm syz.0.48: lblock 3 mapped to illegal pblock 3 (length 1)
[   60.974300][ T6029] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117
[   60.978535][ T6029] EXT4-fs (loop0): This should not happen!! Data will be lost
[   60.978535][ T6029] 
[   61.056232][ T6031] loop2: detected capacity change from 0 to 32768
[   61.108860][ T6031] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,str_hash=crc32c,noacl,usrquota,grpquota,nojournal_transaction_names,allocator_stuck_timeout=256
[   61.108874][ T6031]   allowing incompatible features above 0.0: (unknown version)
[   61.108879][ T6031]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   61.124278][ T6031] bcachefs (loop2): Using encoding defined by superblock: utf8-12.1.0
[   61.127876][ T6031] bcachefs (loop2): initializing new filesystem
[   61.135848][ T6031] bcachefs (loop2): going read-write
[   61.142296][ T6031] bcachefs (loop2): marking superblocks
[   61.154193][ T6031] bcachefs (loop2): initializing freespace
[   61.159292][ T6031] bcachefs (loop2): done initializing freespace
[   61.165126][ T6031] bcachefs (loop2): reading snapshots table
[   61.167559][ T6031] bcachefs (loop2): reading snapshots done
[   61.191188][ T6031] bcachefs (loop2): done starting filesystem
[   61.240006][   T33] audit: type=1800 audit(1755554639.119:5): pid=6031 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.49" name="file1" dev="loop2" ino=4098 res=0 errno=0
[   61.258845][ T1088] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   61.268065][ T1088] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 36 with error 28
[   61.273384][ T1088] EXT4-fs (loop0): This should not happen!! Data will be lost
[   61.273384][ T1088] 
[   61.277037][ T1088] EXT4-fs (loop0): Total free blocks count 0
[   61.279063][ T1088] EXT4-fs (loop0): Free/Dirty block details
[   61.280980][ T1088] EXT4-fs (loop0): free_blocks=4293918720
[   61.282639][ T6031] bcachefs (loop2): requested incompat feature 1.16: reflink_p_may_update_opts currently not enabled, allowed up to 1.16: reflink_p_may_update_opts
[   61.282639][ T6031]   set version_upgrade=incompat to enable
[   61.282821][ T1088] EXT4-fs (loop0): dirty_blocks=48
[   61.292279][ T1088] EXT4-fs (loop0): Block reservation details
[   61.596068][ T5844] Bluetooth: hci0: command tx timeout
[   61.598010][ T5848] Bluetooth: hci1: command tx timeout
[   61.605985][    T9] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   61.676289][ T5848] Bluetooth: hci2: command tx timeout
[   61.767574][    T9] usb 1-1: config index 0 descriptor too short (expected 23569, got 27)
[   61.770357][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   61.776457][    T9] usb 1-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[   61.779362][    T9] usb 1-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[   61.782537][    T9] usb 1-1: Manufacturer: syz
[   61.786966][    T9] usb 1-1: config 0 descriptor??
[   61.826003][    T9] rc_core: IR keymap rc-hauppauge not found
[   61.828213][    T9] Registered IR keymap rc-empty
[   61.831132][    T9] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0
[   61.835838][    T9] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0/input5
[   62.000691][    C0] igorplugusb 1-1:0.0: Error: urb status = -32
[   62.003583][ T5313] usb 1-1: USB disconnect, device number 3
[   62.850484][ T6031] syz.2.49 (6031) used greatest stack depth: 15928 bytes left
[   62.916435][ T5842] bcachefs (loop2): shutting down
[   62.925807][ T5842] bcachefs (loop2): going read-only
[   62.933857][ T5842] bcachefs (loop2): finished waiting for writes to stop
[   62.945017][ T5842] bcachefs (loop2): flushing journal and stopping allocators, journal seq 147
[   63.034771][ T5842] bcachefs (loop2): flushing journal and stopping allocators complete, journal seq 148
[   63.048352][ T5842] bcachefs (loop2): clean shutdown complete, journal seq 149
[   63.053264][ T5842] bcachefs (loop2): marking filesystem clean
[   63.115326][ T5842] bcachefs (loop2): shutdown complete
[   63.686305][ T5848] Bluetooth: hci1: command tx timeout
[   63.688288][ T5844] Bluetooth: hci0: command tx timeout
[   63.766213][ T5844] Bluetooth: hci2: command tx timeout
[   64.093583][ T6104] loop0: detected capacity change from 0 to 256
[   64.109019][ T6104] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011a39, chksum : 0xd54015fb, utbl_chksum : 0xe619d30d)
[   64.119488][   T33] audit: type=1326 audit(1755554642.009:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6107 comm="syz.1.75" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7d18ebe9 code=0x7ffc0000
[   64.140936][   T33] audit: type=1326 audit(1755554642.009:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6107 comm="syz.1.75" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7d18ebe9 code=0x7ffc0000
[   64.176007][   T33] audit: type=1326 audit(1755554642.009:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6107 comm="syz.1.75" exe="/syz-executor" sig=0 arch=c000003e syscall=66 compat=0 ip=0x7fef7d18ebe9 code=0x7ffc0000
[   64.273542][ T6117] capability: warning: `syz.1.79' uses deprecated v2 capabilities in a way that may be insecure
[   64.329017][    T9] kernel write not supported for file /register (pid: 9 comm: kworker/0:0)
[   64.363172][ T6124] random: crng reseeded on system resumption
[   64.480260][ T6131] netlink: 'syz.1.84': attribute type 1 has an invalid length.
[   64.489224][ T6131] netlink: 'syz.1.84': attribute type 2 has an invalid length.
[   64.571115][ T6131] netlink: 4 bytes leftover after parsing attributes in process `syz.1.84'.
[   65.053561][ T6146] loop0: detected capacity change from 0 to 512
[   65.071760][ T6146] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   65.090309][ T6146] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   65.135480][ T6146] EXT4-fs (loop0): 1 truncate cleaned up
[   65.151021][ T6146] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   65.185703][ T6146] EXT4-fs error (device loop0): ext4_generic_delete_entry:2668: inode #2: block 13: comm syz.0.88: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[   65.199439][ T6146] EXT4-fs (loop0): Remounting filesystem read-only
[   65.201629][ T6146] EXT4-fs warning (device loop0): ext4_rename_delete:3735: inode #2: comm syz.0.88: Deleting old file: nlink 5, error=-117
[   65.220968][ T5846] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.240770][   T33] kauditd_printk_skb: 9 callbacks suppressed
[   65.240783][   T33] audit: type=1326 audit(1755554643.119:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6152 comm="syz.1.93" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7d18ebe9 code=0x7ffc0000
[   65.271595][   T33] audit: type=1326 audit(1755554643.119:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6152 comm="syz.1.93" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7d18ebe9 code=0x7ffc0000
[   65.281009][   T33] audit: type=1326 audit(1755554643.129:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6152 comm="syz.1.93" exe="/syz-executor" sig=0 arch=c000003e syscall=131 compat=0 ip=0x7fef7d18ebe9 code=0x7ffc0000
[   65.293874][   T33] audit: type=1326 audit(1755554643.129:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6152 comm="syz.1.93" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7d18ebe9 code=0x7ffc0000
[   65.301053][   T33] audit: type=1326 audit(1755554643.129:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6152 comm="syz.1.93" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7d18ebe9 code=0x7ffc0000
[   65.630937][ T6177] loop0: detected capacity change from 0 to 1024
[   65.799149][   T53] hfsplus: b-tree write err: -5, ino 4
[   65.982421][ T6180] loop2: detected capacity change from 0 to 32768
[   66.004315][ T6180] o2cb: This node has not been configured.
[   66.007049][ T6180] o2cb: Cluster check failed. Fix errors before retrying.
[   66.009937][ T6180] (syz.2.106,6180,1):ocfs2_dlm_init:3354 ERROR: status = -22
[   66.013108][ T6180] (syz.2.106,6180,1):ocfs2_mount_volume:1735 ERROR: status = -22
[   66.017894][ T6180] (syz.2.106,6180,1):ocfs2_fill_super:1177 ERROR: status = -22
[   66.515995][ T5313] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   66.611506][ T6201] loop2: detected capacity change from 0 to 128
[   66.620122][ T6201] FAT-fs (loop2): Directory bread(block 32) failed
[   66.622852][ T6201] FAT-fs (loop2): Directory bread(block 33) failed
[   66.625974][ T6201] FAT-fs (loop2): Directory bread(block 34) failed
[   66.628778][ T6201] FAT-fs (loop2): Directory bread(block 35) failed
[   66.631160][ T6201] FAT-fs (loop2): Directory bread(block 36) failed
[   66.633692][ T6201] FAT-fs (loop2): Directory bread(block 37) failed
[   66.638719][ T6201] FAT-fs (loop2): Directory bread(block 38) failed
[   66.641284][ T6201] FAT-fs (loop2): Directory bread(block 39) failed
[   66.643946][ T6201] FAT-fs (loop2): Directory bread(block 40) failed
[   66.646659][ T6201] FAT-fs (loop2): Directory bread(block 41) failed
[   66.667320][ T5313] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   66.673082][ T5313] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   66.681591][ T5313] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   66.687753][ T5313] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   66.691466][ T5313] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   66.698587][ T5313] usb 2-1: config 0 descriptor??
[   67.190199][ T6213] syz_tun: entered allmulticast mode
[   67.215153][ T6215] bridge1: entered promiscuous mode
[   67.270672][ T5313] plantronics 0003:047F:FFFF.0001: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[   67.389616][ T5313] usb 2-1: USB disconnect, device number 2
[   67.499839][ T6223] netlink: 8 bytes leftover after parsing attributes in process `syz.0.123'.
[   67.503269][ T6223] netlink: 16 bytes leftover after parsing attributes in process `syz.0.123'.
[   68.216047][ T5313] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   68.521126][ T5313] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   68.530778][ T5313] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[   68.542118][ T5313] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[   68.550463][ T5313] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=67
[   68.558425][ T5313] usb 2-1: SerialNumber: syz
[   68.792686][ T5313] usb 2-1: 0:2 : does not exist
[   68.829600][ T5313] usb 2-1: USB disconnect, device number 3
[   68.898515][ T5974] udevd[5974]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   68.965015][ T6247] tipc: Started in network mode
[   68.984525][ T6247] tipc: Node identity 76f8772f68ec, cluster identity 4711
[   68.987597][ T6247] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   68.999503][ T6245] tipc: Resetting bearer <eth:syzkaller0>
[   69.282842][ T6251] loop2: detected capacity change from 0 to 256
[   69.314654][ T6251] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   69.738850][ T6259] netlink: 16 bytes leftover after parsing attributes in process `syz.1.138'.
[   70.117521][   T10] tipc: Node number set to 504657711
[   70.317335][ T6264] loop2: detected capacity change from 0 to 512
[   70.369648][ T6264] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   70.389695][ T6245] tipc: Disabling bearer <eth:syzkaller0>
[   70.400668][ T6259] netlink: 16 bytes leftover after parsing attributes in process `syz.1.138'.
[   70.499586][ T6268] warning: `syz.2.142' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   70.808594][   T10] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[   70.843427][ T5313] usb 3-1: new full-speed USB device number 3 using dummy_hcd
[   70.966008][   T10] usb 2-1: Using ep0 maxpacket: 16
[   70.970999][   T10] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[   70.975652][   T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[   70.988567][   T10] usb 2-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[   70.993822][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   70.997484][   T10] usb 2-1: Product: syz
[   70.999208][   T10] usb 2-1: Manufacturer: syz
[   71.001128][   T10] usb 2-1: SerialNumber: syz
[   71.008107][   T10] usb 2-1: config 0 descriptor??
[   71.010057][ T5313] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   71.014798][   T10] em28xx 2-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[   71.014817][ T5313] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 512, setting to 64
[   71.019003][   T10] em28xx 2-1:0.0: Audio interface 0 found (Vendor Class)
[   71.026113][ T5313] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 1280, setting to 64
[   71.030649][ T5313] usb 3-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[   71.049537][ T5313] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 1.40
[   71.053369][ T5313] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[   71.059027][ T5313] usb 3-1: SerialNumber: syz
[   71.065789][ T6274] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[   71.070643][ T6274] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[   71.075090][ T5313] cdc_acm 3-1:1.0: Control and data interfaces are not separated!
[   71.082094][ T6281] loop0: detected capacity change from 0 to 32768
[   71.281490][ T1362] ieee802154 phy0 wpan0: encryption failed: -22
[   71.285361][ T1362] ieee802154 phy1 wpan1: encryption failed: -22
[   71.298092][ T5313] cdc_acm 3-1:1.0: ttyACM0: USB ACM device
[   71.305156][ T5313] usb 3-1: USB disconnect, device number 3
[   71.505753][ T6283] loop0: detected capacity change from 0 to 512
[   71.534083][ T6283] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.540002][ T6283] ext4 filesystem being mounted at /59/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.583775][ T5846] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.617066][   T10] em28xx 2-1:0.0: unknown em28xx chip ID (0)
[   71.621563][   T10] em28xx 2-1:0.0: Config register raw data: 0xfffffffb
[   71.647611][ T6288] netlink: 56 bytes leftover after parsing attributes in process `syz.0.150'.
[   71.651539][ T6288] netlink: 12 bytes leftover after parsing attributes in process `syz.0.150'.
[   71.655427][ T6288] netlink: 31 bytes leftover after parsing attributes in process `syz.0.150'.
[   71.660797][ T6288] netlink: 'syz.0.150': attribute type 3 has an invalid length.
[   71.663622][ T6288] netlink: 'syz.0.150': attribute type 2 has an invalid length.
[   71.667839][ T6288] netlink: 31 bytes leftover after parsing attributes in process `syz.0.150'.
[   72.075831][ T6302] loop0: detected capacity change from 0 to 4096
[   72.082997][ T6302] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[   72.108803][ T6302] ntfs3(loop0): ino=19, mi_enum_attr
[   72.111190][ T6302] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[   72.128051][ T6302] ntfs3(loop0): failed to convert "c46c" to iso8859-9
[   72.132658][ T6302] ntfs3(loop0): ino=20, mi_enum_attr
[   72.230321][   T10] em28xx 2-1:0.0: Unknown AC97 audio processor detected!
[   72.728649][ T6322] loop0: detected capacity change from 0 to 40427
[   72.747545][ T6322] F2FS-fs (loop0): invalid crc value
[   72.809019][ T6322] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[   72.816519][ T6322] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   72.846145][   T10] em28xx 2-1:0.0: couldn't setup AC97 register 4
[   72.849282][   T10] em28xx 2-1:0.0: couldn't setup AC97 register 6
[   72.855183][   T10] em28xx 2-1:0.0: couldn't setup AC97 register 54
[   72.857968][   T10] em28xx 2-1:0.0: couldn't setup AC97 register 56
[   72.864911][   T10] usb 2-1: USB disconnect, device number 4
[   73.160731][ T6330] loop0: detected capacity change from 0 to 32768
[   73.165492][ T6330] XFS: noikeep mount option is deprecated.
[   73.184143][ T6330] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   73.196188][ T6330] XFS (loop0): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[   73.202982][ T6330] XFS (loop0): Starting recovery (logdev: internal)
[   73.220565][ T6330] XFS (loop0): Ending recovery (logdev: internal)
[   73.240649][ T6330] XFS (loop0): Metadata corruption detected at xfs_inobt_verify+0x9e/0x1f0, xfs_finobt block 0x8 
[   73.244914][ T6330] XFS (loop0): Unmount and run xfs_repair
[   73.246831][ T6330] XFS (loop0): First 128 bytes of corrupted metadata buffer:
[   73.249111][ T6330] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[   73.251835][ T6330] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[   73.257587][ T6330] 00000020: c4 96 e0 5e 54 0d 4c 72 b5 91 04 d7 9d 8b 4e eb  ...^T.Lr......N.
[   73.265105][ T6330] 00000030: 00 00 00 00 c8 fc 31 e4 00 00 04 4e 00 00 00 02  ......1....N....
[   73.271684][ T6330] 00000040: 00 00 04 60 00 00 0b a0 00 00 00 00 00 00 00 00  ...`............
[   73.274567][ T6330] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   73.277922][ T6330] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   73.280987][ T6330] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   73.283922][ T6330] XFS (loop0): metadata I/O error in "xfs_btree_read_buf_block+0x290/0x470" at daddr 0x8 len 8 error 117
[   73.299677][ T6342] loop2: detected capacity change from 0 to 2048
[   73.311121][ T5846] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   73.319724][ T5846] XFS (loop0): Uncorrected metadata errors detected; please run xfs_repair.
[   73.320370][ T6342] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[   73.507218][ T6346] Illegal XDP return value 4294967262 on prog  (id 18) dev N/A, expect packet loss!
[   73.680815][ T6362] netlink: 4 bytes leftover after parsing attributes in process `syz.2.178'.
[   73.684184][ T6362] netlink: 6 bytes leftover after parsing attributes in process `syz.2.178'.
[   73.735033][ T6366] bond0: entered allmulticast mode
[   73.737417][ T6366] bond_slave_0: entered allmulticast mode
[   73.739985][ T6366] bond_slave_1: entered allmulticast mode
[   73.928294][ T6380] netlink: 4 bytes leftover after parsing attributes in process `syz.1.187'.
[   73.935490][ T6380] netlink: 4 bytes leftover after parsing attributes in process `syz.1.187'.
[   74.056194][ T5878] usb 1-1: new full-speed USB device number 4 using dummy_hcd
[   74.074204][ T6388] loop2: detected capacity change from 0 to 4096
[   74.083846][ T6388] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[   74.120082][ T6388] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[   74.123553][ T6388] ntfs3(loop2): mft corrupted
[   74.131508][ T6388] ntfs3(loop2): Failed to load $Extend (-22).
[   74.133928][ T6388] ntfs3(loop2): Failed to initialize $Extend.
[   74.143162][ T6388] ntfs3(loop2): ino=1e, mi_enum_attr
[   74.145476][ T6388] ntfs3(loop2): ino=1e, mi_enum_attr
[   74.150880][ T6388] ntfs3(loop2): ino=1e, "file1" mi_enum_attr
[   74.153555][ T6388] ntfs3(loop2): ino=1e, "file1" mi_enum_attr
[   74.158618][ T6388] ntfs3(loop2): ino=1e, "file1" mi_enum_attr
[   74.162811][ T6386] loop1: detected capacity change from 0 to 40427
[   74.173598][ T6386] F2FS-fs (loop1): invalid crc value
[   74.226995][ T5878] usb 1-1: config 0 has an invalid interface number: 133 but max is 0
[   74.230381][ T5878] usb 1-1: config 0 has no interface number 0
[   74.231939][ T6386] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[   74.234180][ T5878] usb 1-1: New USB device found, idVendor=06cd, idProduct=0121, bcdDevice=dd.3d
[   74.238728][ T6386] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   74.244607][ T5878] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   74.248801][ T5878] usb 1-1: Product: syz
[   74.250143][ T5878] usb 1-1: Manufacturer: syz
[   74.251863][ T5878] usb 1-1: SerialNumber: syz
[   74.256863][ T5878] usb 1-1: config 0 descriptor??
[   74.408184][ T6394] loop2: detected capacity change from 0 to 32768
[   74.429286][   T33] audit: type=1800 audit(1755554652.309:23): pid=6394 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.192" name="file1" dev="loop2" ino=7 res=0 errno=0
[   74.464773][ T5878] keyspan 1-1:0.133: Keyspan 1 port adapter converter detected
[   74.479169][ T5878] keyspan 1-1:0.133: found no endpoint descriptor for endpoint 81
[   74.482592][ T5878] keyspan 1-1:0.133: found no endpoint descriptor for endpoint 1
[   74.493351][ T5878] keyspan 1-1:0.133: found no endpoint descriptor for endpoint 2
[   74.499390][ T5878] usb 1-1: Keyspan 1 port adapter converter now attached to ttyUSB0
[   74.512505][ T5878] usb 1-1: USB disconnect, device number 4
[   74.525845][ T5878] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0
[   74.531861][ T5878] keyspan 1-1:0.133: device disconnected
[   74.617294][ T6397] loop1: detected capacity change from 0 to 1024
[   74.649237][ T6394] ERROR: (device loop2): dbAdjCtl: the maximum free buddy is not the old root
[   74.649237][ T6394] 
[   74.654426][ T6394] ERROR: (device loop2): remounting filesystem as read-only
[   74.687542][ T6399] loop1: detected capacity change from 0 to 22
[   74.689993][ T6399] MTD: Attempt to mount non-MTD device "/dev/loop1"
[   74.694255][ T6399] romfs: Mounting image 'rom 637cf1fa' through the block layer
[   74.945985][   T24] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[   75.096177][   T24] usb 2-1: Using ep0 maxpacket: 32
[   75.130141][   T24] usb 2-1: config 0 has an invalid interface number: 51 but max is 0
[   75.133181][   T24] usb 2-1: config 0 has no interface number 0
[   75.140078][   T24] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[   75.143434][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   75.161890][   T24] usb 2-1: Product: syz
[   75.163495][   T24] usb 2-1: Manufacturer: syz
[   75.165229][   T24] usb 2-1: SerialNumber: syz
[   75.182586][   T24] usb 2-1: config 0 descriptor??
[   75.190080][   T24] quatech2 2-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[   75.287950][ T6414] loop0: detected capacity change from 0 to 1024
[   75.304966][ T6414] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   75.315036][ T6414] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   75.321862][ T6414] EXT4-fs error (device loop0): ext4_get_journal_inode:5796: inode #5: comm syz.0.201: unexpected bad inode w/o EXT4_IGET_BAD
[   75.328429][ T6414] EXT4-fs (loop0): Remounting filesystem read-only
[   75.331121][ T6414] EXT4-fs (loop0): no journal found
[   75.333252][ T6414] EXT4-fs (loop0): can't get journal size
[   75.337270][ T6414] EXT4-fs (loop0): failed to initialize system zone (-117)
[   75.340165][ T6414] EXT4-fs (loop0): mount failed
[   75.414610][   T24] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[   75.433553][   T24] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[   75.489975][ T6410] loop2: detected capacity change from 0 to 32768
[   75.507390][ T6410] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[   75.540656][ T6410] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[   75.736676][ T5842] ocfs2: Unmounting device (7,2) on (node local)
[   75.798788][    C1] usb 2-1: qt2_read_bulk_callback - non-zero urb status: -71
[   75.802630][   T24] usb 2-1: USB disconnect, device number 5
[   75.817883][   T24] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[   75.836962][   T24] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[   75.849997][   T24] quatech2 2-1:0.51: device disconnected
[   76.451060][ T6430] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   76.631936][ T6440] loop2: detected capacity change from 0 to 256
[   76.640088][ T6440] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   76.644960][ T6440] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[   76.658632][ T6440] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[   76.806139][   T33] audit: type=1326 audit(1755554654.679:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6445 comm="syz.1.215" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7d18ebe9 code=0x7ffc0000
[   76.819492][   T33] audit: type=1326 audit(1755554654.679:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6445 comm="syz.1.215" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7d18ebe9 code=0x7ffc0000
[   76.846220][   T33] audit: type=1326 audit(1755554654.699:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6445 comm="syz.1.215" exe="/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fef7d18ebe9 code=0x7ffc0000
[   76.865538][   T33] audit: type=1326 audit(1755554654.699:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6445 comm="syz.1.215" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7d18ebe9 code=0x7ffc0000
[   76.886015][   T33] audit: type=1326 audit(1755554654.699:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6445 comm="syz.1.215" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7d18ebe9 code=0x7ffc0000
[   76.892984][   T33] audit: type=1326 audit(1755554654.699:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6445 comm="syz.1.215" exe="/syz-executor" sig=0 arch=c000003e syscall=129 compat=0 ip=0x7fef7d18ebe9 code=0x7ffc0000
[   76.910258][ T6451] Failed to get privilege flags for destination (handle=0x2:0x0)
[   76.913637][   T33] audit: type=1326 audit(1755554654.699:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6445 comm="syz.1.215" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fef7d185ba7 code=0x7ffc0000
[   76.931611][   T33] audit: type=1326 audit(1755554654.699:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6445 comm="syz.1.215" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fef7d12add9 code=0x7ffc0000
[   76.952674][   T33] audit: type=1326 audit(1755554654.699:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6445 comm="syz.1.215" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef7d18ebe9 code=0x7ffc0000
[   77.049311][ T6456] loop2: detected capacity change from 0 to 4096
[   77.059699][ T6456] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[   77.099864][ T6456] ntfs3(loop2): Failed to initialize $Extend/$Reparse.
[   77.647783][ T6460] loop1: detected capacity change from 0 to 32768
[   77.669592][ T6460] ocfs2: Mounting device (7,1) on (node local, slot 0) with writeback data mode.
[   77.692495][ T6466] syz.0.223 uses obsolete (PF_INET,SOCK_PACKET)
[   77.752996][ T5851] ocfs2: Unmounting device (7,1) on (node local)
[   77.838129][ T6468] loop1: detected capacity change from 0 to 512
[   77.847043][ T6468] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   77.865323][ T6468] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.224: bg 0: block 384: padding at end of block bitmap is not set
[   77.885858][ T6468] EXT4-fs (loop1): Remounting filesystem read-only
[   77.897536][ T6468] EXT4-fs (loop1): 1 truncate cleaned up
[   77.900479][ T6468] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.929679][ T5851] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.019264][ T6478] loop2: detected capacity change from 0 to 4096
[   78.044568][ T6478] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512).
[   78.080542][ T6478] ntfs3(loop2): ino=0, attr_set_size
[   78.082415][ T6478] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[   78.086633][ T6478] ntfs3(loop2): ino=0, attr_set_size
[   78.088944][ T6478] ntfs3(loop2): ino=0, attr_set_size
[   78.094942][ T6478] ntfs3(loop2): ino=0, attr_set_size
[   78.270337][ T6494] netlink: 12 bytes leftover after parsing attributes in process `syz.0.234'.
[   78.325056][ T6498] loop0: detected capacity change from 0 to 1024
[   78.374782][ T6480] loop1: detected capacity change from 0 to 40427
[   78.427705][ T6498] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.482658][ T6498] EXT4-fs error (device loop0): ext4_find_dest_de:2052: inode #2: block 16: comm syz.0.237: bad entry in directory: inode out of bounds - offset=12, inode=1282, rec_len=12, size=1024 fake=1
[   78.504965][ T5846] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.509592][ T6480] F2FS-fs (loop1): invalid crc value
[   78.867126][ T6480] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[   78.875560][ T6480] F2FS-fs (loop1): Start checkpoint disabled!
[   78.881593][ T6513] netlink: 8 bytes leftover after parsing attributes in process `syz.0.242'.
[   78.899495][ T6480] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[   78.942262][ T1088] kworker/u9:4: attempt to access beyond end of device
[   78.942262][ T1088] loop1: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[   78.948815][ T1088] CPU: 0 UID: 0 PID: 1088 Comm: kworker/u9:4 Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[   78.948827][ T1088] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   78.948832][ T1088] Workqueue: writeback wb_workfn (flush-7:1)
[   78.948845][ T1088] Call Trace:
[   78.948849][ T1088]  <TASK>
[   78.948853][ T1088]  dump_stack_lvl+0x189/0x250
[   78.948862][ T1088]  ? preempt_schedule_thunk+0x16/0x30
[   78.948873][ T1088]  ? __pfx_dump_stack_lvl+0x10/0x10
[   78.948881][ T1088]  ? __pfx_queue_work_on+0x10/0x10
[   78.948888][ T1088]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[   78.948898][ T1088]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   78.948911][ T1088]  f2fs_handle_critical_error+0x37c/0x540
[   78.948924][ T1088]  f2fs_write_end_io+0x886/0xb60
[   78.948939][ T1088]  __submit_merged_bio+0x27a/0x6a0
[   78.948948][ T1088]  ? up_write+0x1c4/0x420
[   78.948959][ T1088]  __submit_merged_write_cond+0x44c/0x530
[   78.948971][ T1088]  f2fs_sync_node_pages+0x1479/0x15e0
[   78.948989][ T1088]  ? __pfx_f2fs_sync_node_pages+0x10/0x10
[   78.948997][ T1088]  ? __percpu_counter_sum+0x1c2/0x1e0
[   78.949021][ T1088]  ? rcu_is_watching+0x15/0xb0
[   78.949028][ T1088]  ? blk_start_plug+0x52/0x1b0
[   78.949039][ T1088]  f2fs_write_node_pages+0x303/0x6e0
[   78.949050][ T1088]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[   78.949063][ T1088]  ? check_noncircular+0xe0/0x160
[   78.949071][ T1088]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[   78.949079][ T1088]  do_writepages+0x32e/0x550
[   78.949092][ T1088]  ? reacquire_held_locks+0x127/0x1d0
[   78.949098][ T1088]  ? writeback_sb_inodes+0x384/0x1010
[   78.949110][ T1088]  __writeback_single_inode+0x145/0xff0
[   78.949119][ T1088]  ? do_raw_spin_unlock+0x4d/0x240
[   78.949128][ T1088]  writeback_sb_inodes+0x6c7/0x1010
[   78.949148][ T1088]  ? __pfx_writeback_sb_inodes+0x10/0x10
[   78.949175][ T1088]  ? rcu_is_watching+0x15/0xb0
[   78.949186][ T1088]  wb_writeback+0x43b/0xaf0
[   78.949219][ T1088]  ? queue_io+0x341/0x590
[   78.949231][ T1088]  ? __pfx_wb_writeback+0x10/0x10
[   78.949243][ T1088]  ? _raw_spin_unlock_irq+0x23/0x50
[   78.949254][ T1088]  wb_workfn+0x409/0xef0
[   78.949268][ T1088]  ? __pfx_wb_workfn+0x10/0x10
[   78.949299][ T1088]  ? __lock_acquire+0xab9/0xd20
[   78.949315][ T1088]  ? process_scheduled_works+0x9ef/0x17b0
[   78.949325][ T1088]  ? _raw_spin_unlock_irq+0x23/0x50
[   78.949332][ T1088]  ? process_scheduled_works+0x9ef/0x17b0
[   78.949338][ T1088]  ? process_scheduled_works+0x9ef/0x17b0
[   78.949345][ T1088]  process_scheduled_works+0xae1/0x17b0
[   78.949366][ T1088]  ? __pfx_process_scheduled_works+0x10/0x10
[   78.949381][ T1088]  worker_thread+0x8a0/0xda0
[   78.949415][ T1088]  kthread+0x711/0x8a0
[   78.949428][ T1088]  ? __pfx_worker_thread+0x10/0x10
[   78.949435][ T1088]  ? __pfx_kthread+0x10/0x10
[   78.949444][ T1088]  ? _raw_spin_unlock_irq+0x23/0x50
[   78.949451][ T1088]  ? lockdep_hardirqs_on+0x9c/0x150
[   78.949459][ T1088]  ? __pfx_kthread+0x10/0x10
[   78.949468][ T1088]  ret_from_fork+0x3fc/0x770
[   78.949477][ T1088]  ? __pfx_ret_from_fork+0x10/0x10
[   78.949487][ T1088]  ? __switch_to_asm+0x39/0x70
[   78.949494][ T1088]  ? __switch_to_asm+0x33/0x70
[   78.949501][ T1088]  ? __pfx_kthread+0x10/0x10
[   78.949509][ T1088]  ret_from_fork_asm+0x1a/0x30
[   78.949525][ T1088]  </TASK>
[   78.951119][ T1088] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[   78.952682][ T6518] loop0: detected capacity change from 0 to 64
[   78.960342][ T1088] CPU: 0 UID: 0 PID: 1088 Comm: kworker/u9:4 Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[   78.960354][ T1088] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   78.960359][ T1088] Workqueue: writeback wb_workfn (flush-7:1)
[   78.960372][ T1088] Call Trace:
[   78.960375][ T1088]  <TASK>
[   78.960378][ T1088]  dump_stack_lvl+0x189/0x250
[   78.960389][ T1088]  ? __pfx_dump_stack_lvl+0x10/0x10
[   78.960397][ T1088]  ? __pfx_queue_work_on+0x10/0x10
[   78.960404][ T1088]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   78.960413][ T1088]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   78.960426][ T1088]  f2fs_handle_critical_error+0x37c/0x540
[   78.960438][ T1088]  f2fs_write_end_io+0x886/0xb60
[   78.960451][ T1088]  __submit_merged_bio+0x27a/0x6a0
[   78.960459][ T1088]  ? up_write+0x1c4/0x420
[   78.960469][ T1088]  __submit_merged_write_cond+0x44c/0x530
[   78.960480][ T1088]  f2fs_sync_node_pages+0x1479/0x15e0
[   78.960496][ T1088]  ? __pfx_f2fs_sync_node_pages+0x10/0x10
[   78.960504][ T1088]  ? __percpu_counter_sum+0x1c2/0x1e0
[   78.960524][ T1088]  ? rcu_is_watching+0x15/0xb0
[   78.960531][ T1088]  ? blk_start_plug+0x52/0x1b0
[   78.960542][ T1088]  f2fs_write_node_pages+0x303/0x6e0
[   78.960552][ T1088]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[   78.960564][ T1088]  ? check_noncircular+0xe0/0x160
[   78.960577][ T1088]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[   78.960586][ T1088]  do_writepages+0x32e/0x550
[   78.960598][ T1088]  ? reacquire_held_locks+0x127/0x1d0
[   78.960605][ T1088]  ? writeback_sb_inodes+0x384/0x1010
[   78.960616][ T1088]  __writeback_single_inode+0x145/0xff0
[   78.960624][ T1088]  ? do_raw_spin_unlock+0x4d/0x240
[   78.960633][ T1088]  writeback_sb_inodes+0x6c7/0x1010
[   78.960651][ T1088]  ? __pfx_writeback_sb_inodes+0x10/0x10
[   78.960675][ T1088]  ? rcu_is_watching+0x15/0xb0
[   78.960685][ T1088]  wb_writeback+0x43b/0xaf0
[   78.960696][ T1088]  ? queue_io+0x341/0x590
[   78.960705][ T1088]  ? __pfx_wb_writeback+0x10/0x10
[   78.960716][ T1088]  ? _raw_spin_unlock_irq+0x23/0x50
[   78.960725][ T1088]  wb_workfn+0x409/0xef0
[   78.960738][ T1088]  ? __pfx_wb_workfn+0x10/0x10
[   78.960747][ T1088]  ? __lock_acquire+0xab9/0xd20
[   78.960760][ T1088]  ? process_scheduled_works+0x9ef/0x17b0
[   78.960769][ T1088]  ? _raw_spin_unlock_irq+0x23/0x50
[   78.960776][ T1088]  ? process_scheduled_works+0x9ef/0x17b0
[   78.960781][ T1088]  ? process_scheduled_works+0x9ef/0x17b0
[   78.960788][ T1088]  process_scheduled_works+0xae1/0x17b0
[   78.960806][ T1088]  ? __pfx_process_scheduled_works+0x10/0x10
[   78.960819][ T1088]  worker_thread+0x8a0/0xda0
[   78.960836][ T1088]  kthread+0x711/0x8a0
[   78.960845][ T1088]  ? __pfx_worker_thread+0x10/0x10
[   78.960851][ T1088]  ? __pfx_kthread+0x10/0x10
[   78.960860][ T1088]  ? _raw_spin_unlock_irq+0x23/0x50
[   78.960867][ T1088]  ? lockdep_hardirqs_on+0x9c/0x150
[   78.960875][ T1088]  ? __pfx_kthread+0x10/0x10
[   78.960883][ T1088]  ret_from_fork+0x3fc/0x770
[   78.960891][ T1088]  ? __pfx_ret_from_fork+0x10/0x10
[   78.960900][ T1088]  ? __switch_to_asm+0x39/0x70
[   78.960908][ T1088]  ? __switch_to_asm+0x33/0x70
[   78.960915][ T1088]  ? __pfx_kthread+0x10/0x10
[   78.960923][ T1088]  ret_from_fork_asm+0x1a/0x30
[   78.960937][ T1088]  </TASK>
[   78.960940][ T1088] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[   78.997217][ T6518] BFS-fs: bfs_fill_super(): loop0 is unclean, continuing
[   79.414219][ T6524] vcan0: tx drop: invalid sa for name 0x0000000000000003
[   79.454610][ T6526] loop0: detected capacity change from 0 to 4096
[   79.457814][ T6526] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[   79.484800][ T6530] loop1: detected capacity change from 0 to 128
[   79.621729][ T6535] loop0: detected capacity change from 0 to 4096
[   79.633070][ T6535] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[   79.654358][ T6535] ntfs3(loop0): ino=19, mi_enum_attr
[   79.663330][ T6535] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[   79.678211][ T6535] ntfs3(loop0): failed to convert "c46c" to koi8-u
[   79.683615][ T6535] ntfs3(loop0): ino=20, mi_enum_attr
[   79.993391][ T6549] loop0: detected capacity change from 0 to 128
[   80.006673][ T6549] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   80.012016][ T6549] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   80.080380][ T6551] bond_slave_0: entered promiscuous mode
[   80.082673][ T6551] bond_slave_1: entered promiscuous mode
[   80.087693][ T6551] 8021q: adding VLAN 0 to HW filter on device macvlan2
[   80.091192][ T6551] bond_slave_0: left promiscuous mode
[   80.093725][ T6551] bond_slave_1: left promiscuous mode
[   80.329334][   T29] kworker/u9:1: attempt to access beyond end of device
[   80.329334][   T29] loop1: rw=1, sector=153, nr_sectors = 8 limit=128
[   80.334113][   T29] kworker/u9:1: attempt to access beyond end of device
[   80.334113][   T29] loop1: rw=1, sector=169, nr_sectors = 8 limit=128
[   80.339692][   T29] kworker/u9:1: attempt to access beyond end of device
[   80.339692][   T29] loop1: rw=1, sector=185, nr_sectors = 8 limit=128
[   80.345223][   T29] kworker/u9:1: attempt to access beyond end of device
[   80.345223][   T29] loop1: rw=1, sector=201, nr_sectors = 8 limit=128
[   80.354394][   T29] kworker/u9:1: attempt to access beyond end of device
[   80.354394][   T29] loop1: rw=1, sector=217, nr_sectors = 8 limit=128
[   80.360007][   T29] kworker/u9:1: attempt to access beyond end of device
[   80.360007][   T29] loop1: rw=1, sector=233, nr_sectors = 8 limit=128
[   80.364402][   T29] kworker/u9:1: attempt to access beyond end of device
[   80.364402][   T29] loop1: rw=1, sector=249, nr_sectors = 8 limit=128
[   80.369411][   T29] kworker/u9:1: attempt to access beyond end of device
[   80.369411][   T29] loop1: rw=1, sector=265, nr_sectors = 8 limit=128
[   80.373798][   T29] kworker/u9:1: attempt to access beyond end of device
[   80.373798][   T29] loop1: rw=1, sector=281, nr_sectors = 8 limit=128
[   80.816041][   T10] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[   80.966779][   T10] usb 2-1: too many configurations: 151, using maximum allowed: 8
[   80.980228][   T10] usb 2-1: New USB device found, idVendor=04d8, idProduct=0082, bcdDevice=ce.b7
[   80.983455][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=130
[   80.986240][   T10] usb 2-1: Product: syz
[   80.987652][   T10] usb 2-1: Manufacturer: syz
[   80.989207][   T10] usb 2-1: SerialNumber: syz
[   80.992591][   T10] usb 2-1: config 0 descriptor??
[   81.209970][   T10] ims_pcu 2-1:0.0: Zero length descriptor
[   81.212730][   T10] ims_pcu 2-1:0.0: probe with driver ims_pcu failed with error -22
[   81.226482][   T10] usb 2-1: USB disconnect, device number 6
[   81.246420][ T6569] capability: warning: `syz.0.267' uses 32-bit capabilities (legacy support in use)
[   81.546065][ T1722] cfg80211: failed to load regulatory.db
[   82.754746][ T6593] loop2: detected capacity change from 0 to 512
[   82.760154][ T6593] EXT4-fs: inline encryption not supported
[   82.762493][ T6593] EXT4-fs: Ignoring removed oldalloc option
[   82.769455][ T6593] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   82.781413][ T6593] EXT4-fs error (device loop2): __ext4_fill_super:5500: inode #2: comm syz.2.277: iget: special inode unallocated
[   82.790899][ T6593] EXT4-fs (loop2): get root inode failed
[   82.793110][ T6593] EXT4-fs (loop2): mount failed
[   83.280881][ T6609] loop0: detected capacity change from 0 to 32768
[   83.290986][ T6608] loop1: detected capacity change from 0 to 32768
[   83.359869][ T6609] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[   83.359884][ T6609]   allowing incompatible features above 0.0: (unknown version)
[   83.359890][ T6609]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   83.375017][ T6609] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0
[   83.378067][ T6609] bcachefs (loop0): initializing new filesystem
[   83.387109][ T6609] bcachefs (loop0): going read-write
[   83.392643][ T6609] bcachefs (loop0): marking superblocks
[   83.398718][ T6609] bcachefs (loop0): initializing freespace
[   83.402121][ T6609] bcachefs (loop0): done initializing freespace
[   83.405792][ T6609] bcachefs (loop0): reading snapshots table
[   83.408351][ T6609] bcachefs (loop0): reading snapshots done
[   83.427687][ T6609] bcachefs (loop0): done starting filesystem
[   83.446058][ T1722] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[   83.449808][ T6609] syz.0.284 (6609) used greatest stack depth: 15768 bytes left
[   83.463420][ T5846] bcachefs (loop0): shutting down
[   83.465476][ T5846] bcachefs (loop0): going read-only
[   83.467936][ T5846] bcachefs (loop0): finished waiting for writes to stop
[   83.469689][ T6608] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[   83.486833][ T5846] bcachefs (loop0): flushing journal and stopping allocators, journal seq 2
[   83.490406][ T6608]   allowing incompatible features above 0.0: (unknown version)
[   83.493626][ T6608]   features: 
[   83.495138][ T6608] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0
[   83.506874][ T6608] bcachefs (loop1): initializing new filesystem
[   83.508691][ T5846] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 3
[   83.513907][ T5846] bcachefs (loop0): clean shutdown complete, journal seq 4
[   83.517620][ T6608] bcachefs (loop1): going read-write
[   83.517966][ T5846] bcachefs (loop0): marking filesystem clean
[   83.523720][ T6608] bcachefs (loop1): marking superblocks
[   83.537783][ T5846] bcachefs (loop0): shutdown complete
[   83.549616][ T6608] bcachefs (loop1): initializing freespace
[   83.557095][ T6608] bcachefs (loop1): done initializing freespace
[   83.564766][ T6608] bcachefs (loop1): reading snapshots table
[   83.568116][ T6608] bcachefs (loop1): reading snapshots done
[   83.587716][ T6608] bcachefs (loop1): done starting filesystem
[   83.608613][ T1722] usb 3-1: Using ep0 maxpacket: 32
[   83.629109][ T1722] usb 3-1: config 0 has an invalid interface number: 132 but max is 0
[   83.636237][ T1722] usb 3-1: config 0 has no interface number 0
[   83.638457][ T1722] usb 3-1: config 0 interface 132 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[   83.654704][ T1722] usb 3-1: New USB device found, idVendor=0413, idProduct=6023, bcdDevice=ec.e5
[   83.658932][ T1722] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   83.670400][ T1722] usb 3-1: Product: syz
[   83.671844][ T1722] usb 3-1: Manufacturer: syz
[   83.673410][ T1722] usb 3-1: SerialNumber: syz
[   83.691504][ T1722] usb 3-1: config 0 descriptor??
[   83.701074][ T1722] em28xx 3-1:0.132: New device syz syz @ 480 Mbps (0413:6023, interface 132, class 132)
[   83.704174][ T1722] em28xx 3-1:0.132: Video interface 132 found:
[   83.709440][ T5851] bcachefs (loop1): shutting down
[   83.711631][ T5851] bcachefs (loop1): going read-only
[   83.713846][ T5851] bcachefs (loop1): finished waiting for writes to stop
[   83.719965][ T5851] bcachefs (loop1): flushing journal and stopping allocators, journal seq 2
[   83.752657][ T5851] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 3
[   83.757873][ T5851] bcachefs (loop1): clean shutdown complete, journal seq 4
[   83.760709][ T5851] bcachefs (loop1): marking filesystem clean
[   83.765115][ T6631] geneve2: entered promiscuous mode
[   83.768753][ T6631] geneve2: entered allmulticast mode
[   83.782464][ T5851] bcachefs (loop1): shutdown complete
[   84.022565][ T6641] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.028031][ T6641] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[   84.102839][ T1722] em28xx 3-1:0.132: unknown em28xx chip ID (0)
[   84.280771][ T6643] loop0: detected capacity change from 0 to 32768
[   84.287151][ T6643] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.292 (6643)
[   84.309075][ T1722] em28xx 3-1:0.132: failed to trigger read from i2c address 0xa0 (error=-5)
[   84.315508][ T1722] em28xx 3-1:0.132: board has no eeprom
[   84.326673][ T6643] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   84.331159][ T6643] BTRFS info (device loop0): using crc32c (crc32c-lib) checksum algorithm
[   84.334959][ T6643] BTRFS info (device loop0): using free-space-tree
[   84.384773][ T1722] em28xx 3-1:0.132: Identified as Leadtek Winfast USB II (card=7)
[   84.392063][ T1722] em28xx 3-1:0.132: analog set to bulk mode.
[   84.396701][ T5878] em28xx 3-1:0.132: Registering V4L2 extension
[   84.424017][ T1722] usb 3-1: USB disconnect, device number 4
[   84.437744][ T1722] em28xx 3-1:0.132: Disconnecting em28xx
[   84.448520][ T5846] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   84.481702][ T5878] em28xx 3-1:0.132: Config register raw data: 0xffffffed
[   84.485806][ T5878] em28xx 3-1:0.132: AC97 chip type couldn't be determined
[   84.492646][ T5878] em28xx 3-1:0.132: No AC97 audio processor
[   84.502116][ T5878] usb 3-1: Decoder not found
[   84.508104][ T5878] em28xx 3-1:0.132: failed to create media graph
[   84.510493][ T5878] em28xx 3-1:0.132: V4L2 device video103 deregistered
[   84.518226][ T5878] em28xx 3-1:0.132: Remote control support is not available for this card.
[   84.521595][ T1722] em28xx 3-1:0.132: Closing input extension
[   84.554333][ T1722] em28xx 3-1:0.132: Freeing device
[   84.793536][ T6671] netlink: 'syz.0.296': attribute type 9 has an invalid length.
[   84.797351][ T6671] netlink: 32 bytes leftover after parsing attributes in process `syz.0.296'.
[   85.646299][    T9] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[   85.796790][    T9] usb 2-1: Using ep0 maxpacket: 32
[   85.806089][    T9] usb 2-1: config 0 has an invalid interface number: 89 but max is 0
[   85.808789][    T9] usb 2-1: config 0 has no interface number 0
[   85.810888][    T9] usb 2-1: config 0 interface 89 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[   85.816493][    T9] usb 2-1: config 0 interface 89 altsetting 0 endpoint 0xA has invalid maxpacket 1023, setting to 64
[   85.823404][    T9] usb 2-1: New USB device found, idVendor=0bfd, idProduct=0114, bcdDevice= 4.be
[   85.828721][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   85.857531][    T9] usb 2-1: Product: syz
[   85.859161][    T9] usb 2-1: Manufacturer: syz
[   85.860872][    T9] usb 2-1: SerialNumber: syz
[   85.882862][    T9] usb 2-1: config 0 descriptor??
[   85.887399][ T6699] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   85.893578][    T9] kvaser_usb 2-1:0.89: error -ENODEV: Cannot get usb endpoint(s)
[   86.179361][    T9] usb 2-1: USB disconnect, device number 7
[   86.778441][ T6719] loop2: detected capacity change from 0 to 32768
[   86.842513][ T6719] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,str_hash=crc64,noinodes_32bit,nocow
[   86.842525][ T6719]   allowing incompatible features above 0.0: (unknown version)
[   86.842529][ T6719]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   86.857302][ T6719] bcachefs (loop2): Using encoding defined by superblock: utf8-12.1.0
[   86.860028][ T6719] bcachefs (loop2): initializing new filesystem
[   86.869678][ T6719] bcachefs (loop2): going read-write
[   86.882654][ T6732] loop0: detected capacity change from 0 to 8192
[   86.885455][ T6719] bcachefs (loop2): marking superblocks
[   86.895755][ T6719] bcachefs (loop2): initializing freespace
[   86.903311][ T6719] bcachefs (loop2): done initializing freespace
[   86.910605][ T6719] bcachefs (loop2): reading snapshots table
[   86.912523][ T6719] bcachefs (loop2): reading snapshots done
[   86.921782][ T6732] bio_check_eod: 103 callbacks suppressed
[   86.921791][ T6732] syz.0.318: attempt to access beyond end of device
[   86.921791][ T6732] loop0: rw=0, sector=57847, nr_sectors = 1 limit=8192
[   86.931266][ T6719] bcachefs (loop2):  loop2: Superblock write was silently dropped! (seq 0 expected 42)
[   86.934696][ T6719] bcachefs (loop2): done starting filesystem
[   86.952466][ T6732] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000e1b1)
[   86.955007][ T6732] FAT-fs (loop0): Filesystem has been set read-only
[   86.963299][ T6732] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000e1b1)
[   86.967090][ T6732] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000e1b1)
[   86.993726][ T5842] bcachefs (loop2): shutting down
[   86.995784][ T5842] bcachefs (loop2): going read-only
[   87.012734][ T5842] bcachefs (loop2): finished waiting for writes to stop
[   87.032061][ T5842] bcachefs (loop2): flushing journal and stopping allocators, journal seq 2
[   87.063165][ T5842] bcachefs (loop2): flushing journal and stopping allocators complete, journal seq 3
[   87.068917][ T5842] bcachefs (loop2): clean shutdown complete, journal seq 4
[   87.072375][ T5842] bcachefs (loop2): marking filesystem clean
[   87.087147][ T5842] bcachefs (loop2): shutdown complete
[   87.240691][ T6740] loop1: detected capacity change from 0 to 32768
[   87.256981][ T6740] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   87.282006][ T6740] XFS (loop1): Ending clean mount
[   87.289754][ T6740] XFS (loop1): Quotacheck needed: Please wait.
[   87.310471][ T6740] XFS (loop1): Quotacheck: Done.
[   87.425606][ T6749] loop0: detected capacity change from 0 to 32768
[   87.501127][ T5851] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   87.750268][ T6764] loop1: detected capacity change from 0 to 16
[   87.784925][ T6764] erofs (device loop1): mounted with root inode @ nid 36.
[   87.979779][ T6770] loop1: detected capacity change from 0 to 512
[   88.012101][ T6770] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.331: casefold flag without casefold feature
[   88.018269][ T6770] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.331: couldn't read orphan inode 15 (err -117)
[   88.024611][ T6770] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.052613][ T6770] evm: overlay not supported
[   88.221999][ T5851] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.352754][ T6768] loop0: detected capacity change from 0 to 32768
[   88.360634][ T6768] bcachefs (/dev/loop0): error validating superblock: Invalid superblock section clean: entry type btree_keys overruns end of section
[   88.360634][ T6768] clean (size 2912):
[   88.360634][ T6768] flags:          0
[   88.360634][ T6768] journal_seq:    10
[   88.360634][ T6768] usage: type=inodes v=8
[   88.360634][ T6768] usage: type=key_version v=0
[   88.360634][ T6768] btree_keys: 
[   88.360634][ T6768] usage: type=reserved v=0
[   88.360634][ T6768] usage: type=reserved v=0
[   88.360634][ T6768] usage: type=reserved v=0
[   88.360634][ T6768] data_usage: btree: 1/1 [0]=2816
[   88.360634][ T6768] data_usage: journal: 1/1 [0]=0
[   88.360634][ T6768] data_usage: user: 1/1 [0]=16
[   88.360634][ T6768] dev_usage: dev=0  
[   88.360634][ T6768]   free: buckets=83 sectors=0 fragmented=0
[   88.360634][ T6768]   sb: buckets=25 sectors=6152 fragmented=248
[   88.360634][ T6768]   journal: buckets=8 sectors=2048 fragmented=0
[   88.360634][ T6768]   btree: buckets=11 sectors=2816 fragmented=0
[   88.360634][ T6768]   user: buckets=1 sectors=16 fragmented=240
[   88.360634][ T6768]   cached: buckets=0 sectors=0 fragmented=13565952
[   88.360634][ T6768]   parity: buckets=0 sectors=0 fragmented=0
[   88.360634][ T6768]   stripe: buckets=0 sectors=0 fragmented=0
[   88.360634][ T6768]   need_gc_gens: buckets=0 sectors=0 fragmented=0
[   88.360634][ T6768]   need_discard: buckets=0 sectors=0 fragmented=0
[   88.360634][ T6768] clock: read=0
[   88.360634][ T6768] clock: write=1280
[   88.360634][ T6768] btree_root: btree=extents level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c6c25c0
[   88.360815][ T6768] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[   88.438827][ T6778] syz_tun: entered allmulticast mode
[   88.464171][ T6777] syz_tun: left allmulticast mode
[   88.681192][ T6788] loop2: detected capacity change from 0 to 4096
[   88.690319][ T6788] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512).
[   88.813645][ T6796] blkio.reset_stats is deprecated
[   89.018787][ T6798] loop1: detected capacity change from 0 to 4096
[   89.053955][ T6798] ntfs3(loop1): failed to convert "0080" to cp775
[   89.616071][    T9] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[   89.774310][    T9] usb 2-1: config 8 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   89.781139][    T9] usb 2-1: config 8 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   89.785277][    T9] usb 2-1: config 8 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   89.792112][    T9] usb 2-1: New USB device found, idVendor=07b5, idProduct=0312, bcdDevice= 0.00
[   89.795606][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   90.217934][    T9] megaworld 0003:07B5:0312.0002: hidraw0: USB HID v0.00 Device [HID 07b5:0312] on usb-dummy_hcd.1-1/input0
[   90.221663][    T9] megaworld 0003:07B5:0312.0002: no inputs found
[   90.414190][ T1722] usb 2-1: USB disconnect, device number 8
[   90.573267][    C1] vcan0: j1939_tp_rxtimer: 0xffff88802b6d1000: rx timeout, send abort
[   90.577664][    C1] vcan0: j1939_tp_rxtimer: 0xffff88802b6d3c00: rx timeout, send abort
[   90.580505][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88802b6d1000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   90.585348][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88802b6d3c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   90.632862][ T6826] netlink: 'syz.0.354': attribute type 2 has an invalid length.
[   91.752893][ T6851] syz.0.363: attempt to access beyond end of device
[   91.752893][ T6851] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[   91.780554][ T6851] SQUASHFS error: Failed to read block 0x0: -5
[   91.784804][ T6851] unable to read squashfs_super_block
[   91.928441][ T6855] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   91.943183][ T6849] loop2: detected capacity change from 0 to 32768
[   91.952980][ T6849] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.362 (6849)
[   91.983713][ T6849] BTRFS info (device loop2): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[   91.988834][ T6849] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[   91.993906][ T6849] BTRFS info (device loop2): using free-space-tree
[   92.285830][ T5842] BTRFS info (device loop2): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[   92.420018][ T6883] loop0: detected capacity change from 0 to 512
[   92.452275][ T6883] fscrypt (loop0, inode 2): Error -61 getting encryption context
[   92.455271][ T6883] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -61
[   92.460174][ T6883] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #13: comm syz.0.371: iget: bad i_size value: 12154757448730
[   92.465120][ T6883] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.371: couldn't read orphan inode 13 (err -117)
[   92.473722][ T6883] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   92.486888][ T6883] fscrypt (loop0, inode 2): Error -61 getting encryption context
[   92.513218][ T5846] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.928859][ T6904] netlink: 12 bytes leftover after parsing attributes in process `syz.1.379'.
[   92.992824][ T5892] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[   93.074053][ T6913] netlink: 'syz.0.383': attribute type 29 has an invalid length.
[   93.083580][ T6913] netlink: 'syz.0.383': attribute type 29 has an invalid length.
[   93.086907][ T6913] netlink: 500 bytes leftover after parsing attributes in process `syz.0.383'.
[   93.166980][ T5892] usb 3-1: Using ep0 maxpacket: 8
[   93.170145][ T5892] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   93.173349][ T5892] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   93.178862][ T5892] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   93.185956][ T5892] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   93.200063][ T5892] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   93.206078][ T5892] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   93.258698][ T6920] process 'syz.1.386' launched '/dev/fd/3/./file0' with NULL argv: empty string added
[   93.271571][ T6915] loop0: detected capacity change from 0 to 32768
[   93.302441][ T6915] read_mapping_page failed!
[   93.304159][ T6915] ERROR: (device loop0): txCommit: 
[   93.304159][ T6915] 
[   93.333492][  T117] BUG at fs/jfs/jfs_txnmgr.c:931 assert(mp->nohomeok > 0)
[   93.338435][  T117] ------------[ cut here ]------------
[   93.340363][  T117] kernel BUG at fs/jfs/jfs_txnmgr.c:931!
[   93.342306][  T117] Oops: invalid opcode: 0000 [#1] SMP KASAN PTI
[   93.344899][  T117] CPU: 0 UID: 0 PID: 117 Comm: jfsCommit Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[   93.349431][  T117] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   93.352901][  T117] RIP: 0010:txUnlock+0xdaf/0xdf0
[   93.354577][  T117] Code: e5 fd 90 0f 0b e8 e1 3a 7d fe 48 c7 c7 60 1b c4 8b 48 c7 c6 59 17 c4 8b ba a3 03 00 00 48 c7 c1 60 28 c4 8b e8 d2 2e e5 fd 90 <0f> 0b e8 ba 3a 7d fe 48 c7 c7 60 1b c4 8b 48 c7 c6 59 17 c4 8b ba
[   93.361122][  T117] RSP: 0018:ffffc900023afbc8 EFLAGS: 00010246
[   93.363592][  T117] RAX: 0000000000000037 RBX: 0000000000001000 RCX: 367c0090a81e0100
[   93.366670][  T117] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[   93.369272][  T117] RBP: ffffc90001f22798 R08: ffffc900023af8e7 R09: 1ffff92000475f1c
[   93.371881][  T117] R10: dffffc0000000000 R11: fffff52000475f1d R12: dffffc0000000000
[   93.374437][  T117] R13: 1ffff110201d3d4b R14: ffff888100e9ea58 R15: 0000000000000000
[   93.377142][  T117] FS:  0000000000000000(0000) GS:ffff8880b861c000(0000) knlGS:0000000000000000
[   93.380035][  T117] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   93.382245][  T117] CR2: 00007fef7d387cc0 CR3: 0000000106e40000 CR4: 00000000000006f0
[   93.385634][  T117] Call Trace:
[   93.387094][  T117]  <TASK>
[   93.388363][  T117]  ? lockdep_hardirqs_on+0x9c/0x150
[   93.390508][  T117]  jfs_lazycommit+0x584/0xa90
[   93.392424][  T117]  ? __pfx_jfs_lazycommit+0x10/0x10
[   93.394576][  T117]  ? __pfx_default_wake_function+0x10/0x10
[   93.396973][  T117]  ? __kthread_parkme+0x7b/0x200
[   93.399019][  T117]  ? __kthread_parkme+0x1a1/0x200
[   93.401077][  T117]  kthread+0x711/0x8a0
[   93.402756][  T117]  ? __pfx_jfs_lazycommit+0x10/0x10
[   93.404890][  T117]  ? __pfx_kthread+0x10/0x10
[   93.406803][  T117]  ? _raw_spin_unlock_irq+0x23/0x50
[   93.408955][  T117]  ? lockdep_hardirqs_on+0x9c/0x150
[   93.411087][  T117]  ? __pfx_kthread+0x10/0x10
[   93.413008][  T117]  ret_from_fork+0x3fc/0x770
[   93.414917][  T117]  ? __pfx_ret_from_fork+0x10/0x10
[   93.417029][  T117]  ? __switch_to_asm+0x39/0x70
[   93.419015][  T117]  ? __switch_to_asm+0x33/0x70
[   93.420970][  T117]  ? __pfx_kthread+0x10/0x10
[   93.422885][  T117]  ret_from_fork_asm+0x1a/0x30
[   93.424855][  T117]  </TASK>
[   93.426138][  T117] Modules linked in:
[   93.428360][  T117] ---[ end trace 0000000000000000 ]---
[   93.433139][  T117] RIP: 0010:txUnlock+0xdaf/0xdf0
[   93.435245][  T117] Code: e5 fd 90 0f 0b e8 e1 3a 7d fe 48 c7 c7 60 1b c4 8b 48 c7 c6 59 17 c4 8b ba a3 03 00 00 48 c7 c1 60 28 c4 8b e8 d2 2e e5 fd 90 <0f> 0b e8 ba 3a 7d fe 48 c7 c7 60 1b c4 8b 48 c7 c6 59 17 c4 8b ba
[   93.443476][ T5892] usb 3-1: GET_CAPABILITIES returned 0
[   93.445701][ T5892] usbtmc 3-1:16.0: can't read capabilities
[   93.448143][  T117] RSP: 0018:ffffc900023afbc8 EFLAGS: 00010246
[   93.450622][  T117] RAX: 0000000000000037 RBX: 0000000000001000 RCX: 367c0090a81e0100
[   93.457298][  T117] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[   93.460203][  T117] RBP: ffffc90001f22798 R08: ffffc900023af8e7 R09: 1ffff92000475f1c
[   93.463466][  T117] R10: dffffc0000000000 R11: fffff52000475f1d R12: dffffc0000000000
[   93.466930][  T117] R13: 1ffff110201d3d4b R14: ffff888100e9ea58 R15: 0000000000000000
[   93.470199][  T117] FS:  0000000000000000(0000) GS:ffff8880b861c000(0000) knlGS:0000000000000000
[   93.473808][  T117] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   93.476641][  T117] CR2: 0000001b32123ffc CR3: 0000000025170000 CR4: 00000000000006f0
[   93.479898][  T117] Kernel panic - not syncing: Fatal exception
[   93.483142][  T117] Kernel Offset: disabled
[   93.484916][  T117] Rebooting in 86400 seconds..

VM DIAGNOSIS:
22:04:31  Registers:
info registers vcpu 0

CPU#0
RAX=1ffffffff33bdc60 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=0000000000000000 RDI=0000000000000020 RBP=ffffffff99dee630 RSP=ffffc900023af2b0
R8 =ffff888021288237 R9 =1ffff11004251046 R10=dffffc0000000000 R11=ffffffff854efe60
R12=dffffc0000000000 R13=0000000000000000 R14=ffffffff99dee3a0 R15=0000000000000000
RIP=ffffffff854efed7 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880b861c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fef7d387cc0 CR3=0000000106e40000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000001 XMM01=0000000000000015 000000000003bf12
XMM02=000055556ce14e37 000055556ce14dd0 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 0000000000000000 XMM05=000055556ce0ac9d 000055556ce0ac30
XMM06=0000000000000000 0000000000000000 XMM07=0fffffffffffff04 0a80030fffffffff
XMM08=ffff0409f0036e08 0009e80301080009 XMM09=0000000000000000 0000000000000000
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=62e3ae8f85251d00 RBX=ffffffff81968308 RCX=62e3ae8f85251d00 RDX=0000000000000001
RSI=ffffffff8be333e0 RDI=ffffffff81968308 RBP=ffffc90000177f20 RSP=ffffc90000177de0
R8 =ffff888136632f9b R9 =1ffff11026cc65f3 R10=dffffc0000000000 R11=ffffed1026cc65f4
R12=ffffffff8fa37e30 R13=0000000000000001 R14=0000000000000001 R15=1ffff1102001f000
RIP=ffffffff8b7943f3 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8881a3c1c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000555560225808 CR3=000000002a052000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 00000000000001a4 XMM01=0000000000000000 0000000000000000
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 0000000000000000 XMM05=0000000000000000 0000000000000000
XMM06=0000000000000000 0000000000000000 XMM07=0000000000000000 0000000000000000
XMM08=0000000000000000 0000000000000000 XMM09=0000000000000000 0000000000000000
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
