last executing test programs:

2.201758552s ago: executing program 1 (id=1886):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f00000013c0)=0x80000000001, 0x4)
connect$inet6(r3, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r3, &(0x7f00000001c0)="a6e2976b5c4383036d32dadd2e144d8645ca8d1b230e105614396838da83c754887e7bea2f35d4ea667817d90d532af065f2e398dd9081ea16f8b371a202a6f9e505bbc964a0d3880bf0104a0a0a2f0d311efee1637e85a0125b38f961918f99bf9c2c146e42327f178dc2b3d4936e7f7f0a79f74ba464d83ab41742d1186776dc1779b5c50ac82d0fa8f9e42074b5b6079207fb21e718080907964669be539791e3e98687ee059853", 0xfffffffffffffcc1, 0x840, 0x0, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = dup3(r3, r4, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x3000003, 0x12, r4, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r5, 0x6, 0x23, &(0x7f00000000c0)={&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000001380)=0x40)

1.923708647s ago: executing program 0 (id=1888):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, 0x0)

1.539148213s ago: executing program 0 (id=1889):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x121003, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40081271, &(0x7f0000000980)=0x4000)
mount(&(0x7f0000000040)=@nullb, &(0x7f0000000100)='.\x00', &(0x7f0000000140)='squashfs\x00', 0x8000, 0x0)

1.465666745s ago: executing program 0 (id=1890):
setresuid(0x0, 0xee00, 0x0)
capset(&(0x7f0000000500)={0x20080522}, &(0x7f0000000200)={0x200002, 0x200003, 0x801, 0x4, 0x7})
syz_clone3(&(0x7f0000000b40)={0x1080, 0x0, 0x0, 0x0, {0x32}, 0x0, 0x0, 0x0, 0x0}, 0x58)

1.358639133s ago: executing program 0 (id=1891):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='comm\x00')
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
write$FUSE_INIT(r0, 0x0, 0x0)

1.151396877s ago: executing program 1 (id=1894):
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000440)='attr/fscreate\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000640)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

1.150630089s ago: executing program 1 (id=1896):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bond0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14615}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r1}, @IFLA_MASTER={0x8, 0xa, r1}]}, 0x44}}, 0x0)

994.341103ms ago: executing program 2 (id=1899):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_OPTION$IOMMU_OPTION_RLIMIT_MODE(r0, 0x3b87, &(0x7f00000005c0)={0x18, 0x0, 0x1, 0x0, 0xfdfd})

994.133795ms ago: executing program 2 (id=1900):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10, &(0x7f0000000340)={[{@errors_remount}, {@nombcache}, {}]}, 0xfe, 0x450, &(0x7f0000000d80)="$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")

925.353895ms ago: executing program 1 (id=1901):
r0 = openat$adsp1(0xffffff9c, &(0x7f0000000040), 0x101a00, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
r2 = syz_io_uring_setup(0x88f, &(0x7f0000000300)={0x0, 0x17da, 0x800, 0x1, 0xbfdffffc}, &(0x7f0000000000)=<r3=>0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, 0x0, 0x0)
io_uring_enter(r2, 0x75fa, 0xe475, 0x0, 0x0, 0x0)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000500)='stat\x00')
lseek(r5, 0x9, 0x0)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2000008, 0x42031, r4, 0x0)
r6 = getpid()
r7 = syz_pidfd_open(r6, 0x0)
ioctl$FS_IOC_GETVERSION(r7, 0xff01, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0xa2f01, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="580000000008010200000000000000000200ffff0600024022eb000005000300ffff00000900010073797a3000000000260004"], 0x58}, 0x1, 0x0, 0x0, 0x20000015}, 0x20008000)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000300)={[{@grpquota}, {@auto_da_alloc}, {@quota}, {@stripe={'stripe', 0x3d, 0x2}}, {@jqfmt_vfsold}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
ioctl$SOUND_MIXER_READ_DEVMASK(r0, 0x80044dfe, &(0x7f0000000080))

923.550163ms ago: executing program 2 (id=1902):
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r0 = syz_mount_image$btrfs(&(0x7f00000051c0), &(0x7f0000005200)='./file0\x00', 0x1204408, &(0x7f00000003c0)={[{@compress_force}, {@clear_cache}, {@nodatasum}, {@nossd}, {}, {@space_cache_v1}]}, 0x0, 0x51ab, &(0x7f000000a440)="$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")
ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f0000000440)={0xc, 0x0, {0x0, @struct, 0x0, 0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, @usage=0xd5d}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @usage, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, @struct, 0x0, 0x0, [0x0, 0xfff]}})

856.062678ms ago: executing program 1 (id=1903):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb01001a0000000000000000000000002f4bf127432e"], &(0x7f0000001f80)=""/212, 0x1a, 0xd4, 0xd}, 0x28)

855.579139ms ago: executing program 1 (id=1904):
syz_usb_connect(0x5, 0x36, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r3, 0x3b81, &(0x7f00000003c0)={0xc, 0x0, <r4=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r3, 0x3b85, &(0x7f0000000040)={0x28, 0x7, r4, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r3, 0x3ba0, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000100)={0x1f, 0xffff}, 0x6)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ff9}]})
fchown(r6, 0x0, 0x0)
close_range(r6, 0xffffffffffffffff, 0x0)

225.86235ms ago: executing program 0 (id=1905):
mmap(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x0, 0x2172, 0xffffffffffffffff, 0x0)
munmap(&(0x7f0000001000/0x4000)=nil, 0x4000)
futex(&(0x7f0000004000)=0x2, 0x8d, 0xfffffffd, 0x0, 0x0, 0x0)

83.704972ms ago: executing program 2 (id=1906):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2, 0x0, 0xfffffffc}}, 0x2e)
writev(r0, &(0x7f0000000300)=[{0x0, 0x60}, {&(0x7f0000000280)="8577c28b54", 0x5}], 0x2)

83.276614ms ago: executing program 0 (id=1907):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
set_mempolicy(0xbfff, 0x0, 0x5)

292.443µs ago: executing program 2 (id=1908):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f00000026c0)=[{{&(0x7f0000000200)={0xa, 0x4e23, 0x4, @rand_addr=' \x01\x00', 0x1}, 0x1c, 0x0, 0x0, &(0x7f0000002780)=[@hoplimit_2292={{0x14, 0x29, 0x8, 0xfffff9a5}}], 0x18}}], 0x1, 0x40)

0s ago: executing program 2 (id=1909):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40082, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000640)=0x1)
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000080)=0x40)
pwritev(r0, &(0x7f0000000440)=[{&(0x7f0000000380)="80fd0215a7b8", 0x6}], 0x1, 0x9, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:14897' (ED25519) to the list of known hosts.
syzkaller login: [   63.648047][ T5838] cgroup: Unknown subsys name 'net'
[   63.753365][ T5838] cgroup: Unknown subsys name 'cpuset'
[   63.760028][ T5838] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   65.472445][ T5838] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   71.282252][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[   71.285183][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[   75.162972][ T5896] mmap: syz.1.40 (5896) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   79.768035][   T55] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   79.773059][   T55] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   79.776961][ T5919] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   79.780938][ T5919] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   79.784061][ T5919] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   79.787416][ T5919] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   79.792622][ T5919] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   79.817482][ T5918] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   79.827551][   T55] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   79.838452][   T55] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   79.849352][   T55] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   79.859137][   T55] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   79.877367][   T55] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   79.881709][   T55] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   79.891183][ T5915] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   80.243361][ T5914] chnl_net:caif_netlink_parms(): no params data found
[   80.373744][ T5917] chnl_net:caif_netlink_parms(): no params data found
[   80.453892][ T5921] chnl_net:caif_netlink_parms(): no params data found
[   80.485280][ T5914] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.488836][ T5914] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.491569][ T5914] bridge_slave_0: entered allmulticast mode
[   80.494367][ T5914] bridge_slave_0: entered promiscuous mode
[   80.503103][ T5914] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.505934][ T5914] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.509856][ T5914] bridge_slave_1: entered allmulticast mode
[   80.513825][ T5914] bridge_slave_1: entered promiscuous mode
[   80.600336][ T5914] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   80.603135][ T5917] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.605820][ T5917] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.608482][ T5917] bridge_slave_0: entered allmulticast mode
[   80.612604][ T5917] bridge_slave_0: entered promiscuous mode
[   80.624658][ T5914] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   80.628291][ T5917] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.631301][ T5917] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.634069][ T5917] bridge_slave_1: entered allmulticast mode
[   80.637801][ T5917] bridge_slave_1: entered promiscuous mode
[   80.715259][ T5921] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.718280][ T5921] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.721918][ T5921] bridge_slave_0: entered allmulticast mode
[   80.725649][ T5921] bridge_slave_0: entered promiscuous mode
[   80.746409][ T5917] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   80.750854][ T5921] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.753403][ T5921] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.756087][ T5921] bridge_slave_1: entered allmulticast mode
[   80.759254][ T5921] bridge_slave_1: entered promiscuous mode
[   80.772400][ T5914] team0: Port device team_slave_0 added
[   80.786951][ T5917] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   80.804427][ T5914] team0: Port device team_slave_1 added
[   80.819606][ T5921] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   80.834047][ T5917] team0: Port device team_slave_0 added
[   80.849800][ T5921] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   80.854631][ T5917] team0: Port device team_slave_1 added
[   80.857888][ T5914] batman_adv: batadv0: Adding interface: batadv_slave_0
[   80.862587][ T5914] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.873902][ T5914] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   80.913094][ T5914] batman_adv: batadv0: Adding interface: batadv_slave_1
[   80.915454][ T5914] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.924608][ T5914] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   80.929992][ T5921] team0: Port device team_slave_0 added
[   80.947717][ T5921] team0: Port device team_slave_1 added
[   80.951936][ T5917] batman_adv: batadv0: Adding interface: batadv_slave_0
[   80.954385][ T5917] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.966072][ T5917] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   80.971643][ T5917] batman_adv: batadv0: Adding interface: batadv_slave_1
[   80.974149][ T5917] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.983734][ T5917] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   81.055246][ T5914] hsr_slave_0: entered promiscuous mode
[   81.057900][ T5914] hsr_slave_1: entered promiscuous mode
[   81.063016][ T5921] batman_adv: batadv0: Adding interface: batadv_slave_0
[   81.065688][ T5921] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   81.075567][ T5921] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   81.095798][ T5921] batman_adv: batadv0: Adding interface: batadv_slave_1
[   81.098164][ T5921] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   81.106150][ T5921] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   81.151096][ T5917] hsr_slave_0: entered promiscuous mode
[   81.153554][ T5917] hsr_slave_1: entered promiscuous mode
[   81.155610][ T5917] debugfs: 'hsr0' already exists in 'hsr'
[   81.157383][ T5917] Cannot create hsr debugfs directory
[   81.233921][ T5921] hsr_slave_0: entered promiscuous mode
[   81.237204][ T5921] hsr_slave_1: entered promiscuous mode
[   81.240834][ T5921] debugfs: 'hsr0' already exists in 'hsr'
[   81.243103][ T5921] Cannot create hsr debugfs directory
[   81.532796][ T5914] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   81.552432][ T5914] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   81.569497][ T5914] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   81.576396][ T5914] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   81.662670][ T5917] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   81.684103][ T5917] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   81.691557][ T5917] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   81.699519][ T5917] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   81.758297][ T5921] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   81.774188][ T5921] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   81.782434][ T5921] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   81.793203][ T5921] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   81.839700][ T5233] Bluetooth: hci1: command tx timeout
[   81.872707][ T5914] 8021q: adding VLAN 0 to HW filter on device bond0
[   81.914255][ T5914] 8021q: adding VLAN 0 to HW filter on device team0
[   81.924184][ T5917] 8021q: adding VLAN 0 to HW filter on device bond0
[   81.928233][ T5233] Bluetooth: hci0: command tx timeout
[   81.931978][ T5233] Bluetooth: hci2: command tx timeout
[   81.940765][   T27] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.943496][   T27] bridge0: port 1(bridge_slave_0) entered forwarding state
[   81.973864][ T5917] 8021q: adding VLAN 0 to HW filter on device team0
[   81.979246][   T67] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.981779][   T67] bridge0: port 2(bridge_slave_1) entered forwarding state
[   82.001536][   T67] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.004384][   T67] bridge0: port 1(bridge_slave_0) entered forwarding state
[   82.034656][   T67] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.037356][   T67] bridge0: port 2(bridge_slave_1) entered forwarding state
[   82.065327][ T5921] 8021q: adding VLAN 0 to HW filter on device bond0
[   82.091651][ T5914] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   82.142537][ T5921] 8021q: adding VLAN 0 to HW filter on device team0
[   82.153785][ T5917] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   82.163251][   T27] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.166029][   T27] bridge0: port 1(bridge_slave_0) entered forwarding state
[   82.172043][   T27] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.174699][   T27] bridge0: port 2(bridge_slave_1) entered forwarding state
[   82.328031][ T5917] 8021q: adding VLAN 0 to HW filter on device batadv0
[   82.384409][ T5914] 8021q: adding VLAN 0 to HW filter on device batadv0
[   82.392468][ T5917] veth0_vlan: entered promiscuous mode
[   82.405238][ T5917] veth1_vlan: entered promiscuous mode
[   82.423717][ T5921] 8021q: adding VLAN 0 to HW filter on device batadv0
[   82.448599][ T5917] veth0_macvtap: entered promiscuous mode
[   82.461687][ T5917] veth1_macvtap: entered promiscuous mode
[   82.490986][ T5917] batman_adv: batadv0: Interface activated: batadv_slave_0
[   82.495996][ T5914] veth0_vlan: entered promiscuous mode
[   82.508633][ T5917] batman_adv: batadv0: Interface activated: batadv_slave_1
[   82.526398][   T13] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.531532][   T13] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.542348][ T5914] veth1_vlan: entered promiscuous mode
[   82.547417][   T13] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.553542][   T13] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.562125][ T5921] veth0_vlan: entered promiscuous mode
[   82.587722][ T5921] veth1_vlan: entered promiscuous mode
[   82.631703][ T5914] veth0_macvtap: entered promiscuous mode
[   82.653413][ T5914] veth1_macvtap: entered promiscuous mode
[   82.701182][ T5921] veth0_macvtap: entered promiscuous mode
[   82.707830][ T5921] veth1_macvtap: entered promiscuous mode
[   82.711941][ T1093] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   82.717700][ T1093] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   82.724771][ T5914] batman_adv: batadv0: Interface activated: batadv_slave_0
[   82.752728][ T5914] batman_adv: batadv0: Interface activated: batadv_slave_1
[   82.771286][ T1093] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   82.775093][ T1093] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   82.782746][ T5921] batman_adv: batadv0: Interface activated: batadv_slave_0
[   82.790832][ T5931] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.800560][ T5921] batman_adv: batadv0: Interface activated: batadv_slave_1
[   82.809691][ T5931] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.822918][ T5931] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.833111][ T5931] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.846356][ T5931] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.855344][ T5917] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   82.871652][ T5931] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.890395][ T5931] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.893958][ T5931] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.928083][   T67] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   82.936191][   T67] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.055438][   T67] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.058459][   T67] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.060762][ T1093] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.068588][ T1093] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.085887][ T5984] loop2: detected capacity change from 0 to 128
[   83.103139][ T5984] =======================================================
[   83.103139][ T5984] WARNING: The mand mount option has been deprecated and
[   83.103139][ T5984]          and is ignored by this kernel. Remove the mand
[   83.103139][ T5984]          option from the mount to silence this warning.
[   83.103139][ T5984] =======================================================
[   83.152409][ T5984] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   83.176048][   T26] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.182597][   T26] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.337371][ T5988] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[   83.356832][ T5988] CIFS mount error: No usable UNC path provided in device string!
[   83.356832][ T5988] 
[   83.365179][ T5988] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[   83.668485][ T6003] warning: `syz.2.61' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   83.789392][ T5312] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   83.919146][ T5915] Bluetooth: hci1: command tx timeout
[   83.989304][ T5312] usb 1-1: New USB device found, idVendor=09e1, idProduct=5121, bcdDevice=40.c1
[   83.994088][ T5312] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   83.999121][ T5233] Bluetooth: hci0: command tx timeout
[   84.001749][ T5915] Bluetooth: hci2: command tx timeout
[   84.002062][ T5312] usb 1-1: Product: syz
[   84.011488][ T5312] usb 1-1: Manufacturer: syz
[   84.022275][ T5312] usb 1-1: SerialNumber: syz
[   84.041564][ T5312] usb 1-1: config 0 descriptor??
[   84.103680][ T6017] input: syz0 as /devices/virtual/input/input4
[   84.286930][ T5312] int51x1 1-1:0.0: probe with driver int51x1 failed with error -22
[   84.486849][ T5312] usb 1-1: USB disconnect, device number 2
[   84.677194][ T6038] loop2: detected capacity change from 0 to 16
[   84.685915][ T6038] erofs (device loop2): mounted with root inode @ nid 36.
[   84.937289][ T6050] binder: 6049:6050 ioctl c00c620f 0 returned -14
[   85.283566][ T6066] loop1: detected capacity change from 0 to 256
[   85.425191][ T6070] loop2: detected capacity change from 0 to 64
[   85.471553][ T6070] MINIX-fs: bad superblock or unable to read bitmaps
[   85.557828][ T6072] loop1: detected capacity change from 0 to 4096
[   85.624012][ T6074] nfs: Deprecated parameter 'nointr'
[   85.631092][ T6075] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   85.897560][ T6085] loop2: detected capacity change from 0 to 512
[   85.907272][ T6085] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   85.912684][ T6085] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   85.935952][ T6085] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #16: comm syz.2.101: invalid indirect mapped block 83886080 (level 1)
[   85.953047][ T6085] EXT4-fs (loop2): Remounting filesystem read-only
[   85.966027][ T6085] EXT4-fs (loop2): 1 orphan inode deleted
[   85.968668][ T6085] EXT4-fs (loop2): 1 truncate cleaned up
[   85.973554][ T6085] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.000876][ T5233] Bluetooth: hci1: command tx timeout
[   86.080571][ T5233] Bluetooth: hci0: command tx timeout
[   86.082705][ T5233] Bluetooth: hci2: command tx timeout
[   86.739147][  T975] cfg80211: failed to load regulatory.db
[   86.972891][ T5917] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.055416][ T6098] loop1: detected capacity change from 0 to 1024
[   87.055579][ T6099] loop2: detected capacity change from 0 to 2
[   87.071668][ T6099] jffs2: Bad value for 'rp_size'
[   87.214142][ T6105] loop0: detected capacity change from 0 to 512
[   87.218524][ T6105] EXT4-fs: Ignoring removed bh option
[   87.235455][ T6105] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   87.241068][ T6105] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[   87.254067][ T6105] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[   87.258638][ T6105] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[   87.275808][ T6107] loop2: detected capacity change from 0 to 128
[   87.289535][ T6105] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.330419][ T6105] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.108: bg 0: block 353: padding at end of block bitmap is not set
[   87.335370][ T6107] overlayfs: upper fs needs to support d_type.
[   87.344990][ T6107] overlayfs: upper fs does not support RENAME_WHITEOUT.
[   87.347916][ T6107] overlayfs: failed to set xattr on upper
[   87.351314][ T6107] overlayfs: ...falling back to redirect_dir=nofollow.
[   87.355974][ T6107] overlayfs: ...falling back to index=off.
[   87.358423][ T6107] overlayfs: ...falling back to uuid=null.
[   87.406277][ T6112] loop1: detected capacity change from 0 to 1024
[   87.417117][ T6112] EXT4-fs: Ignoring removed orlov option
[   87.431192][ T6112] EXT4-fs: Ignoring removed oldalloc option
[   87.433907][ T6112] EXT4-fs: Ignoring removed bh option
[   87.450432][ T5914] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.464017][ T6112] EXT4-fs (loop1): inodes count not valid: 262176 vs 32
[   87.721190][ T6122] input: syz0 as /devices/virtual/input/input5
[   88.018812][ T6126] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.027904][ T6126] bridge_slave_1: left allmulticast mode
[   88.047370][ T6126] bridge_slave_1: left promiscuous mode
[   88.053608][ T6126] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.080482][ T5915] Bluetooth: hci1: command tx timeout
[   88.097663][ T6126] bond0: (slave bridge_slave_1): Enslaving as an active interface with an up link
[   88.160501][ T5915] Bluetooth: hci2: command tx timeout
[   88.163582][ T5233] Bluetooth: hci0: command tx timeout
[   89.116187][ T6136] loop2: detected capacity change from 0 to 47
[   89.438263][ T6148] netlink: 12 bytes leftover after parsing attributes in process `syz.1.123'.
[   90.085093][ T6153] loop2: detected capacity change from 0 to 32768
[   90.092209][ T6153] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.128 (6153)
[   90.113126][ T6153] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   90.116809][ T6153] BTRFS info (device loop2): using crc32c (crc32c-lib) checksum algorithm
[   90.120900][ T6153] BTRFS info (device loop2): using free-space-tree
[   90.160072][ T1098] BTRFS warning (device loop2): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0
[   90.166104][ T6153] BTRFS error (device loop2): failed to load root extent
[   90.177799][ T6153] BTRFS warning (device loop2): try to load backup roots slot 1
[   90.182364][ T1098] BTRFS warning (device loop2): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0
[   90.191786][ T6153] BTRFS warning (device loop2): couldn't read tree root
[   90.205586][ T6153] BTRFS warning (device loop2): try to load backup roots slot 2
[   90.210962][ T1098] BTRFS error (device loop2): level verify failed on logical 5255168 mirror 1 wanted 0 found 1
[   90.215577][ T6153] BTRFS warning (device loop2): couldn't read tree root
[   90.218419][ T6153] BTRFS warning (device loop2): try to load backup roots slot 3
[   90.239582][ T6153] BTRFS info (device loop2): checking UUID tree
[   90.272512][ T5966] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   90.371106][ T5917] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   90.440700][ T5966] usb 1-1: Using ep0 maxpacket: 32
[   90.461891][ T5966] usb 1-1: config 0 has an invalid interface number: 67 but max is 0
[   90.465053][ T5966] usb 1-1: config 0 has no interface number 0
[   90.489355][ T5966] usb 1-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[   90.492573][ T5966] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   90.495566][ T5966] usb 1-1: Product: syz
[   90.497086][ T5966] usb 1-1: Manufacturer: syz
[   90.511825][ T5966] usb 1-1: SerialNumber: syz
[   90.522468][ T5966] usb 1-1: config 0 descriptor??
[   90.534155][ T5966] smsc95xx v2.0.0
[   90.597484][ T6178] loop2: detected capacity change from 0 to 4096
[   90.631720][ T6178] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512).
[   90.640821][ T6182] loop1: detected capacity change from 0 to 128
[   90.694232][ T6178] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[   90.718461][ T6178] ntfs3(loop2): ino=5, mi_enum_attr
[   90.736252][ T6178] ntfs3(loop2): ino=5, "/" mi_enum_attr
[   90.936889][ T5966] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -61
[   90.946678][ T5966] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[   90.962756][ T6194] netlink: 4 bytes leftover after parsing attributes in process `syz.2.139'.
[   91.392695][ T6218] loop2: detected capacity change from 0 to 1024
[   91.427782][ T6218] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   91.551759][ T5966] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[   91.566939][ T5966] smsc95xx 1-1:0.67: probe with driver smsc95xx failed with error -71
[   91.600283][ T5966] usb 1-1: USB disconnect, device number 3
[   91.997600][   T33] audit: type=1326 audit(1755625130.485:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6223 comm="syz.1.149" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f426b98ebe9 code=0x0
[   92.460798][ T6227] loop0: detected capacity change from 0 to 32768
[   92.495730][ T6227] JBD2: Ignoring recovery information on journal
[   92.581059][ T6227] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   92.781645][ T5914] ocfs2: Unmounting device (7,0) on (node local)
[   92.934152][ T5917] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.269592][  T791] usb 3-1: new full-speed USB device number 2 using dummy_hcd
[   93.468696][   T47] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   93.505092][  T791] usb 3-1: unable to get BOS descriptor or descriptor too short
[   93.509449][  T791] usb 3-1: not running at top speed; connect to a high speed hub
[   93.515117][  T791] usb 3-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[   93.518619][  T791] usb 3-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[   93.522747][  T791] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[   93.529626][  T791] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   93.534245][  T791] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   93.537582][  T791] usb 3-1: Product: syz
[   93.539804][  T791] usb 3-1: Manufacturer: syz
[   93.541803][  T791] usb 3-1: SerialNumber: syz
[   93.628966][   T47] usb 2-1: Using ep0 maxpacket: 8
[   93.636346][   T47] usb 2-1: unable to get BOS descriptor or descriptor too short
[   93.641621][   T47] usb 2-1: config 7 has an invalid interface number: 67 but max is 0
[   93.644803][   T47] usb 2-1: config 7 has no interface number 0
[   93.650479][   T47] usb 2-1: New USB device found, idVendor=16c0, idProduct=05df, bcdDevice=6b.16
[   93.654215][   T47] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   93.657524][   T47] usb 2-1: Product: syz
[   93.660557][   T47] usb 2-1: Manufacturer: syz
[   93.662481][   T47] usb 2-1: SerialNumber: syz
[   93.945029][ T6231] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[   93.947908][ T6231] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   94.007866][ T6231] vhci_hcd vhci_hcd.0: Device attached
[   94.023677][ T6238] vhci_hcd: connection closed
[   94.025616][ T5931] vhci_hcd: stop threads
[   94.031220][ T5931] vhci_hcd: release socket
[   94.035293][ T5931] vhci_hcd: disconnect device
[   94.051470][   T47] usb 2-1: USB disconnect, device number 2
[   94.173815][  T791] usb 3-1: 0:2 : does not exist
[   94.208914][  T791] usb 3-1: USB disconnect, device number 2
[   94.270423][ T5926] udevd[5926]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   94.694946][ T6258] loop0: detected capacity change from 0 to 1024
[   94.765166][ T1098] hfsplus: b-tree write err: -5, ino 4
[   94.849100][  T791] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   95.000793][  T791] usb 2-1: config 3 has an invalid interface number: 56 but max is 0
[   95.003786][  T791] usb 2-1: config 3 has no interface number 0
[   95.006203][  T791] usb 2-1: config 3 interface 56 has no altsetting 0
[   95.013264][  T791] usb 2-1: New USB device found, idVendor=03f0, idProduct=2101, bcdDevice=80.cc
[   95.017035][  T791] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   95.021099][  T791] usb 2-1: Product: syz
[   95.023167][  T791] usb 2-1: Manufacturer: syz
[   95.024998][  T791] usb 2-1: SerialNumber: syz
[   95.049738][ T5952] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   95.229599][ T5952] usb 1-1: Using ep0 maxpacket: 32
[   95.335135][ T5952] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   95.379461][ T5952] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   95.391275][  T791] safe_serial 2-1:3.56: safe_serial converter detected
[   95.394507][  T791] safe_serial 2-1:3.56: probe with driver safe_serial failed with error -22
[   95.399092][ T5952] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[   95.406943][  T791] usb 2-1: USB disconnect, device number 3
[   95.410509][ T5952] usb 1-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[   95.417176][ T5952] usb 1-1: Product: syz
[   95.423496][ T5952] usb 1-1: Manufacturer: syz
[   95.441749][ T5952] hub 1-1:4.0: USB hub found
[   95.640746][ T5952] hub 1-1:4.0: config failed, hub doesn't have any ports! (err -19)
[   95.909695][ T6271] bridge0: port 2(bridge_slave_1) entered disabled state
[   95.914143][ T6271] bridge_slave_1: left allmulticast mode
[   95.916476][ T6271] bridge_slave_1: left promiscuous mode
[   95.922124][ T6271] bridge0: port 2(bridge_slave_1) entered disabled state
[   95.950280][ T6271] bond0: (slave bridge_slave_1): Enslaving as an active interface with an up link
[   95.979110][   T47] usb 1-1: USB disconnect, device number 4
[   96.114993][ T6280] loop2: detected capacity change from 0 to 1024
[   96.137406][ T6280] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.171528][ T5917] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.463482][ T6299] loop2: detected capacity change from 0 to 512
[   96.466643][ T6299] EXT4-fs: Ignoring removed nomblk_io_submit option
[   96.469347][ T6299] EXT4-fs: Ignoring removed nomblk_io_submit option
[   96.474423][ T6299] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[   96.485017][ T6299] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[   96.488268][ T6299] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2
[   96.496887][ T6299] EXT4-fs (loop2): 1 truncate cleaned up
[   96.509872][ T6299] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.541999][ T6299] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   96.562569][ T5917] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.656637][ T6306] netlink: 'syz.2.181': attribute type 21 has an invalid length.
[   96.662115][ T6306] netlink: 156 bytes leftover after parsing attributes in process `syz.2.181'.
[   96.761387][   T33] audit: type=1326 audit(1755625135.255:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6309 comm="syz.2.183" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[   96.771604][   T33] audit: type=1326 audit(1755625135.255:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6309 comm="syz.2.183" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[   96.771608][   T47] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[   96.801321][   T33] audit: type=1326 audit(1755625135.265:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6309 comm="syz.2.183" exe="/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[   96.820706][   T33] audit: type=1326 audit(1755625135.265:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6309 comm="syz.2.183" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[   96.834059][   T33] audit: type=1326 audit(1755625135.265:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6309 comm="syz.2.183" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[   96.850669][   T33] audit: type=1326 audit(1755625135.265:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6309 comm="syz.2.183" exe="/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[   96.859682][   T33] audit: type=1326 audit(1755625135.265:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6309 comm="syz.2.183" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[   96.866172][   T33] audit: type=1326 audit(1755625135.265:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6309 comm="syz.2.183" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[   96.973240][   T47] usb 1-1: config 0 has an invalid interface number: 69 but max is 0
[   96.976379][   T47] usb 1-1: config 0 has no interface number 0
[   96.999045][   T47] usb 1-1: config 0 interface 69 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 1023
[   97.012246][   T47] usb 1-1: config 0 interface 69 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   97.022368][   T33] audit: type=1326 audit(1755625135.265:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6309 comm="syz.2.183" exe="/syz-executor" sig=0 arch=c000003e syscall=189 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[   97.030029][   T33] audit: type=1326 audit(1755625135.265:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6309 comm="syz.2.183" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[   97.037754][   T33] audit: type=1326 audit(1755625135.265:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6309 comm="syz.2.183" exe="/syz-executor" sig=0 arch=c000003e syscall=192 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[   97.046653][   T33] audit: type=1326 audit(1755625135.265:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6309 comm="syz.2.183" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[   97.046909][   T47] usb 1-1: New USB device found, idVendor=0c4b, idProduct=0100, bcdDevice=d7.ca
[   97.055265][   T33] audit: type=1326 audit(1755625135.445:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6313 comm="syz.1.185" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f426b98ebe9 code=0x7ffc0000
[   97.055308][   T33] audit: type=1326 audit(1755625135.445:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6313 comm="syz.1.185" exe="/syz-executor" sig=0 arch=c000003e syscall=108 compat=0 ip=0x7f426b98ebe9 code=0x7ffc0000
[   97.055340][   T33] audit: type=1326 audit(1755625135.445:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6313 comm="syz.1.185" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f426b98ebe9 code=0x7ffc0000
[   97.055370][   T33] audit: type=1326 audit(1755625135.445:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6313 comm="syz.1.185" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f426b98ebe9 code=0x7ffc0000
[   97.207123][ T6317] loop1: detected capacity change from 0 to 4096
[   97.326127][   T47] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   97.329210][   T47] usb 1-1: Product: syz
[   97.330558][   T47] usb 1-1: Manufacturer: syz
[   97.331916][   T47] usb 1-1: SerialNumber: syz
[   97.338631][   T47] usb 1-1: config 0 descriptor??
[   97.341128][ T6302] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   97.345846][   T47] cyberjack 1-1:0.69: Reiner SCT Cyberjack USB card reader converter detected
[   97.358323][   T47] usb 1-1: Reiner SCT Cyberjack USB card reader converter now attached to ttyUSB0
[   97.361315][ T6317] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[   97.387559][ T6317] ntfs3(loop1): Failed to load $Extend (-22).
[   97.394633][ T6317] ntfs3(loop1): Failed to initialize $Extend.
[   97.543513][ T6320] veth1_macvtap: left promiscuous mode
[   97.546027][ T6320] macsec0: entered promiscuous mode
[   97.768879][ T5952] usb 1-1: USB disconnect, device number 5
[   97.775345][ T5952] cyberjack ttyUSB0: Reiner SCT Cyberjack USB card reader converter now disconnected from ttyUSB0
[   97.785468][ T5952] cyberjack 1-1:0.69: device disconnected
[   97.834305][ T6328] loop2: detected capacity change from 0 to 256
[   97.860680][ T6328] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   97.864914][ T6328] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[   97.882737][ T6328] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x43c9847d, utbl_chksum : 0xe619d30d)
[   98.275437][ T6345] sp0: Synchronizing with TNC
[   98.349461][ T6351] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   98.472074][ T6358] netlink: 20 bytes leftover after parsing attributes in process `syz.0.204'.
[   98.476005][ T6358] (unnamed net_device) (uninitialized): option min_links: invalid value (18446744073709551614)
[   98.503856][ T6358] (unnamed net_device) (uninitialized): option min_links: allowed values 0 - 2147483647
[   98.616600][ T6365] loop0: detected capacity change from 0 to 128
[   99.512653][ T6377] loop2: detected capacity change from 0 to 1024
[   99.519959][   T33] audit: type=1326 audit(1755625138.005:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6378 comm="syz.0.213" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[   99.540737][   T33] audit: type=1326 audit(1755625138.005:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6378 comm="syz.0.213" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[   99.571836][ T6377] hfsplus: bad catalog entry type
[   99.608328][ T6131] hfsplus: b-tree write err: -5, ino 4
[  100.232873][ T6396] macvlan1: entered promiscuous mode
[  100.237980][ T6396] ipvlan0: entered promiscuous mode
[  100.246131][ T6396] ipvlan0: left promiscuous mode
[  100.251630][ T6396] macvlan1: left promiscuous mode
[  100.669097][ T5952] usb 1-1: new full-speed USB device number 6 using dummy_hcd
[  100.672396][    T9] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  100.828915][    T9] usb 2-1: Using ep0 maxpacket: 8
[  100.835294][ T5952] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  100.842952][    T9] usb 2-1: config 32 has an invalid descriptor of length 48, skipping remainder of the config
[  100.847435][ T5952] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  100.851538][    T9] usb 2-1: too many endpoints for config 32 interface 0 altsetting 48: 48, using maximum allowed: 30
[  100.855972][    T9] usb 2-1: config 32 interface 0 altsetting 48 has 0 endpoint descriptors, different from the interface descriptor's value: 48
[  100.864613][ T5952] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  100.869765][ T5952] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  100.900372][    T9] usb 2-1: config 32 interface 0 has no altsetting 0
[  100.903586][    T9] usb 2-1: New USB device found, idVendor=19b5, idProduct=0021, bcdDevice=98.c7
[  100.910672][ T5952] usb 1-1: config 0 descriptor??
[  100.917546][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  101.409881][    T9] usb 2-1: string descriptor 0 read error: -71
[  101.413137][    T9] hub 2-1:32.0: bad descriptor, ignoring hub
[  101.415643][    T9] hub 2-1:32.0: probe with driver hub failed with error -5
[  101.465183][    T9] usb 2-1: USB disconnect, device number 4
[  101.484878][ T5952] savu 0003:1E7D:2D5A.0001: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.0-1/input0
[  101.731371][ T5312] usb 1-1: USB disconnect, device number 6
[  101.791906][ T6422] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -2
[  101.808876][ T6422] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  102.203574][ T6429] mac80211_hwsim hwsim6 wlan0: entered promiscuous mode
[  102.209121][ T6429] macvtap1: entered allmulticast mode
[  102.211376][ T6429] mac80211_hwsim hwsim6 wlan0: entered allmulticast mode
[  102.222960][ T6429] mac80211_hwsim hwsim6 wlan0: left allmulticast mode
[  102.226291][ T6429] mac80211_hwsim hwsim6 wlan0: left promiscuous mode
[  104.186407][ T6468] loop1: detected capacity change from 0 to 512
[  104.199727][ T6468] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  104.230871][ T6468] EXT4-fs (loop1): 1 truncate cleaned up
[  104.235034][ T6468] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.262232][ T5921] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.354444][ T6472] loop1: detected capacity change from 0 to 4096
[  104.907196][ T6494] loop0: detected capacity change from 0 to 4096
[  104.974524][ T6499] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  105.036770][ T6505] netlink: 28 bytes leftover after parsing attributes in process `syz.2.262'.
[  105.268074][ T6516] netlink: 28 bytes leftover after parsing attributes in process `syz.0.267'.
[  105.593350][ T6520] loop0: detected capacity change from 0 to 32768
[  105.605284][ T6520] XFS: attr2 mount option is deprecated.
[  105.632811][ T6520] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  105.637891][ T6520] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  105.661075][ T6520] XFS (loop0): Ending clean mount
[  105.674967][ T6520] XFS (loop0): Quotacheck needed: Please wait.
[  105.731344][ T6520] XFS (loop0): Quotacheck: Done.
[  105.826605][ T5914] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  105.987845][ T6546] process 'syz.0.278' launched '/dev/fd/3' with NULL argv: empty string added
[  106.044823][ T6548] Bluetooth: MGMT ver 1.23
[  106.062928][ T5966] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  106.230711][ T5966] usb 3-1: Using ep0 maxpacket: 32
[  106.252814][ T5966] usb 3-1: config 0 has an invalid interface number: 35 but max is 0
[  106.255638][ T5966] usb 3-1: config 0 has no interface number 0
[  106.269501][ T5966] usb 3-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f
[  106.288912][ T5966] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  106.291825][ T5966] usb 3-1: Product: syz
[  106.293424][ T5966] usb 3-1: Manufacturer: syz
[  106.295290][ T5966] usb 3-1: SerialNumber: syz
[  106.299379][ T6553] loop1: detected capacity change from 0 to 64
[  106.311784][ T5966] usb 3-1: config 0 descriptor??
[  106.327426][ T5966] radio-si470x 3-1:0.35: could not find interrupt in endpoint
[  106.333093][ T5966] radio-si470x 3-1:0.35: probe with driver radio-si470x failed with error -5
[  106.567477][ T5966] radio-raremono 3-1:0.35: this is not Thanko's Raremono.
[  106.579708][ T5966] usbhid 3-1:0.35: couldn't find an input interrupt endpoint
[  106.603257][ T5966] usb 3-1: USB disconnect, device number 3
[  107.126468][ T6551] loop0: detected capacity change from 0 to 32768
[  107.145839][ T6551] bcachefs: bch2_fs_open() bch_fs_open err opening /dev/loop0: erofs_nochanges
[  107.159362][ T6551] bcachefs: bch2_fs_get_tree() error: erofs_nochanges
[  108.135900][ T6596] ipip0: entered promiscuous mode
[  108.156848][ T6569] loop0: detected capacity change from 0 to 32768
[  108.160574][ T6569] XFS: ikeep mount option is deprecated.
[  108.183522][ T6602] netlink: 56 bytes leftover after parsing attributes in process `syz.1.303'.
[  108.201525][ T6569] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  108.265742][ T6611] netlink: 4 bytes leftover after parsing attributes in process `syz.1.305'.
[  108.292347][ T6569] XFS (loop0): Ending clean mount
[  108.296793][ T6569] XFS (loop0): Quotacheck needed: Please wait.
[  108.334326][ T6569] XFS (loop0): Quotacheck: Done.
[  108.356395][ T6617] syz.1.308 uses obsolete (PF_INET,SOCK_PACKET)
[  108.544834][ T5914] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  109.668980][  T975] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  109.899264][  T975] usb 3-1: Using ep0 maxpacket: 32
[  109.939090][ T5966] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  109.966460][ T5915] Bluetooth: hci1: unknown advertising packet type: 0x70
[  109.966504][ T5915] Bluetooth: hci1: Malformed LE Event: 0x02
[  109.975652][  T975] usb 3-1: unable to get BOS descriptor or descriptor too short
[  109.983451][  T975] usb 3-1: no configurations
[  109.985443][  T975] usb 3-1: can't read configurations, error -22
[  110.098983][ T5966] usb 2-1: Using ep0 maxpacket: 16
[  110.107088][ T5966] usb 2-1: New USB device found, idVendor=06b9, idProduct=4061, bcdDevice= 1.88
[  110.111052][ T5966] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  110.114608][ T5966] usb 2-1: Product: syz
[  110.116432][ T5966] usb 2-1: Manufacturer: syz
[  110.118316][ T5966] usb 2-1: SerialNumber: syz
[  110.124651][ T5966] usb 2-1: config 0 descriptor??
[  110.391042][ T5966] speedtch 2-1:0.0: speedtch_bind: data interface not found!
[  110.394544][ T5966] speedtch 2-1:0.0: usbatm_usb_probe: bind failed: -19!
[  110.566570][ T5966] usb 2-1: USB disconnect, device number 5
[  111.358907][ T6655] loop2: detected capacity change from 0 to 32768
[  111.452998][ T6655] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  111.514159][ T6663] loop1: detected capacity change from 0 to 512
[  111.532923][ T6663] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a846e02c, mo2=0002]
[  111.538607][ T6663] System zones: 1-12
[  111.542078][ T6663] EXT4-fs error (device loop1): dx_probe:791: inode #2: comm syz.1.325: Directory hole found for htree index block 0
[  111.551884][ T6663] EXT4-fs (loop1): Remounting filesystem read-only
[  111.555003][ T6663] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -117
[  111.563215][ T6663] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[  111.567543][ T6663] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.574276][ T6663] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.576849][ T5917] ocfs2: Unmounting device (7,2) on (node local)
[  111.754540][ T6675] loop2: detected capacity change from 0 to 256
[  111.805025][ T5312] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  111.969006][ T5312] usb 1-1: Using ep0 maxpacket: 16
[  112.106824][ T5312] usb 1-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.10
[  112.124985][ T5312] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  112.140313][ T5312] usb 1-1: Product: syz
[  112.148500][ T5312] usb 1-1: Manufacturer: syz
[  112.163346][ T5312] usb 1-1: SerialNumber: syz
[  112.233906][ T5312] usb 1-1: config 0 descriptor??
[  112.290881][ T5312] go7007 1-1:0.0: probe with driver go7007 failed with error -12
[  112.489698][ T5312] usb 1-1: USB disconnect, device number 7
[  113.110981][ T6684] lo speed is unknown, defaulting to 1000
[  113.113964][ T6684] lo speed is unknown, defaulting to 1000
[  113.128586][ T6684] lo speed is unknown, defaulting to 1000
[  113.157023][ T6684] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  113.196712][ T6684] infiniband 3yz0: RDMA CMA: cma_listen_on_dev, error -98
[  113.267476][ T6684] lo speed is unknown, defaulting to 1000
[  113.290829][ T6684] lo speed is unknown, defaulting to 1000
[  113.293533][ T6684] lo speed is unknown, defaulting to 1000
[  113.425554][ T6689] Zero length message leads to an empty skb
[  113.790754][ T6701] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[  113.794614][ T6701] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  113.987062][ T6710] netlink: set zone limit has 4 unknown bytes
[  114.070948][ T6716] random: crng reseeded on system resumption
[  114.564355][ T6733] loop2: detected capacity change from 0 to 8
[  114.576262][ T6733] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  114.611578][ T6733] cramfs: Error -3 while decompressing!
[  114.614799][ T6733] cramfs: ffffffff99beb628(26)->ffff888029eea000(4096)
[  114.617686][ T6733] cramfs: Error -3 while decompressing!
[  114.621705][ T6733] cramfs: ffffffff99beb642(26)->ffff888029f23000(4096)
[  114.626062][ T6733] cramfs: Error -3 while decompressing!
[  114.630958][ T6733] cramfs: ffffffff99beb65c(16)->ffff888029f22000(4096)
[  114.633685][ T6733] cramfs: Error -3 while decompressing!
[  114.636066][ T6733] cramfs: ffffffff99beb628(26)->ffff888029eea000(4096)
[  114.998518][ T6741] loop2: detected capacity change from 0 to 4096
[  115.181428][ T6751] kernel read not supported for file /eth0 (pid: 6751 comm: syz.2.359)
[  115.185234][   T33] kauditd_printk_skb: 3 callbacks suppressed
[  115.185244][   T33] audit: type=1800 audit(1755625153.675:24): pid=6751 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.359" name="eth0" dev="mqueue" ino=8823 res=0 errno=0
[  115.542485][ T6777] tmpfs: Bad value for 'mpol'
[  115.658516][ T6786] capability: warning: `syz.2.376' uses 32-bit capabilities (legacy support in use)
[  115.902413][ T6790] loop2: detected capacity change from 0 to 32768
[  115.907098][ T6790] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.378 (6790)
[  115.917263][ T6790] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  115.921252][ T6790] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm
[  115.924382][ T6790] BTRFS info (device loop2): using free-space-tree
[  116.874057][ T6815] loop0: detected capacity change from 0 to 4096
[  116.877390][ T6815] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[  116.891802][ T6815] ntfs3(loop0): ino=19, mi_enum_attr
[  116.893539][ T6815] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  116.898004][ T5917] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  116.935787][ T6817] loop1: detected capacity change from 0 to 512
[  116.940345][ T6817] EXT4-fs: Ignoring removed nobh option
[  116.974724][ T6817] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.381: iget: bad i_size value: 38620345925642
[  116.990800][ T6817] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.381: couldn't read orphan inode 15 (err -117)
[  117.003847][ T6817] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.328918][  T791] usb 2-1: new full-speed USB device number 6 using dummy_hcd
[  117.502348][  T791] usb 2-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[  117.539873][  T791] usb 2-1: New USB device found, idVendor=7a69, idProduct=0001, bcdDevice=a8.6b
[  117.542856][  T791] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  117.545291][  T791] usb 2-1: Product: syz
[  117.546654][  T791] usb 2-1: Manufacturer: syz
[  117.548167][  T791] usb 2-1: SerialNumber: syz
[  117.553388][ T6825] loop2: detected capacity change from 0 to 512
[  117.570029][  T791] usb 2-1: dvb_usb_v2: found a '774 Friio White ISDB-T USB2.0' in warm state
[  117.586923][ T6825] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[  117.624465][ T6825] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.383: bad orphan inode 15
[  117.644893][ T6825] ext4_test_bit(bit=14, block=4) = 1
[  117.647367][ T6825] is_bad_inode(inode)=0
[  117.654489][ T6825] NEXT_ORPHAN(inode)=0
[  117.662674][ T6825] max_ino=32
[  117.667887][ T6825] i_nlink=1
[  117.691337][ T6825] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.744560][ T5917] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.984916][  T791] usb 2-1: dvb_usb_v2: this USB2.0 device cannot be run on a USB1.1 port (it lacks a hardware PID filter)
[  118.012281][  T791] usb 2-1: USB disconnect, device number 6
[  118.204824][ T6830] loop0: detected capacity change from 0 to 16
[  118.209800][ T6830] erofs (device loop0): mounted with root inode @ nid 36.
[  118.535641][ T5921] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.097482][ T6856] netlink: 'syz.1.397': attribute type 21 has an invalid length.
[  119.101756][ T6856] netlink: 164 bytes leftover after parsing attributes in process `syz.1.397'.
[  119.218036][ T6862] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  119.528680][ T6874] netlink: 24 bytes leftover after parsing attributes in process `syz.0.405'.
[  119.649286][  T975] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  119.800674][  T975] usb 2-1: config 1 interface 0 altsetting 3 bulk endpoint 0x82 has invalid maxpacket 64
[  119.804086][  T975] usb 2-1: config 1 interface 0 altsetting 3 bulk endpoint 0x3 has invalid maxpacket 32
[  119.807317][  T975] usb 2-1: config 1 interface 0 has no altsetting 0
[  119.813884][  T975] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  119.817649][  T975] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  119.820926][  T975] usb 2-1: Product: syz
[  119.822765][  T975] usb 2-1: Manufacturer: syz
[  119.824424][  T975] usb 2-1: SerialNumber: syz
[  119.838649][ T6868] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  119.844322][ T6868] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  120.068034][  T975] cdc_ether 2-1:1.0: probe with driver cdc_ether failed with error -71
[  120.077572][  T975] usb 2-1: USB disconnect, device number 7
[  120.688983][ T6886] loop1: detected capacity change from 0 to 512
[  120.695602][ T6886] EXT4-fs: Ignoring removed oldalloc option
[  120.750344][ T6886] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  120.755693][ T6886] ext4 filesystem being mounted at /104/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  120.803397][ T6886] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.410: bg 0: block 217: padding at end of block bitmap is not set
[  120.855910][ T5921] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.868060][ T6884] loop2: detected capacity change from 0 to 40427
[  120.877582][ T6884] F2FS-fs: inline encryption not supported
[  120.896570][ T6884] F2FS-fs (loop2): build fault injection rate: 19
[  120.910901][ T6884] F2FS-fs (loop2): build fault injection type: 0x3bfe8c
[  120.925483][ T6884] F2FS-fs (loop2): invalid crc value
[  120.965328][ T6884] F2FS-fs (loop2): inject page alloc in f2fs_grab_cache_folio of f2fs_ra_meta_pages+0x615/0x970
[  121.046657][ T6884] F2FS-fs (loop2): inject slab alloc in f2fs_kmem_cache_alloc of read_node_folio+0x20a/0x3f0
[  121.064148][ T6884] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  121.080413][ T6884] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  121.429435][ T6911] loop2: detected capacity change from 0 to 512
[  121.450791][ T6911] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2848: Unable to expand inode 17. Delete some EAs or run e2fsck.
[  121.458124][ T6911] EXT4-fs (loop2): 1 truncate cleaned up
[  121.468201][ T6911] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  121.489103][  T975] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  121.508098][ T5917] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.640089][  T975] usb 1-1: too many configurations: 151, using maximum allowed: 8
[  121.654502][  T975] usb 1-1: New USB device found, idVendor=04d8, idProduct=0082, bcdDevice=ce.b7
[  121.658058][  T975] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=130
[  121.661314][  T975] usb 1-1: Product: syz
[  121.662617][  T975] usb 1-1: Manufacturer: syz
[  121.664070][  T975] usb 1-1: SerialNumber: syz
[  121.671973][  T975] usb 1-1: config 0 descriptor??
[  121.883743][  T791] usb 1-1: USB disconnect, device number 8
[  122.728262][ T6943] loop2: detected capacity change from 0 to 1024
[  123.140517][ T6958] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[  123.226537][ T6961] netlink: 'syz.1.434': attribute type 10 has an invalid length.
[  123.278146][ T6961] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  123.649402][ T6969] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.436'.
[  124.204122][ T6972] netlink: 24 bytes leftover after parsing attributes in process `syz.0.438'.
[  124.239745][ T6972] netlink: 4 bytes leftover after parsing attributes in process `syz.0.438'.
[  124.462303][ T5952] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  124.643363][ T5952] usb 3-1: Using ep0 maxpacket: 16
[  124.656059][ T5952] usb 3-1: config 8 has an invalid interface number: 206 but max is 0
[  124.659366][ T5952] usb 3-1: config 8 has an invalid descriptor of length 0, skipping remainder of the config
[  124.663281][ T5952] usb 3-1: config 8 has no interface number 0
[  124.667024][ T5952] usb 3-1: config 8 interface 206 altsetting 1 has an endpoint descriptor with address 0xF7, changing to 0x87
[  124.675433][ T5952] usb 3-1: config 8 interface 206 altsetting 1 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  124.686114][ T5952] usb 3-1: config 8 interface 206 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  124.691216][ T5952] usb 3-1: config 8 interface 206 has no altsetting 0
[  124.696532][ T5952] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=35.bb
[  124.701986][ T5952] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  124.705036][ T5952] usb 3-1: Product: syz
[  124.706644][ T5952] usb 3-1: Manufacturer: syz
[  124.718132][ T5952] usb 3-1: SerialNumber: syz
[  124.810461][ T6983] loop1: detected capacity change from 0 to 32768
[  124.830680][ T6983] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  124.852729][ T6983] XFS (loop1): Ending clean mount
[  124.895204][ T5921] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  124.952918][ T5952] garmin_gps 3-1:8.206: Garmin GPS usb/tty converter detected
[  124.967941][ T5952] garmin_gps ttyUSB0: garmin_write_bulk - usb_submit_urb(write bulk) failed with status = -8
[  124.975315][ T5952] garmin_gps ttyUSB0: probe with driver garmin_gps failed with error -8
[  124.994722][ T5952] usb 3-1: USB disconnect, device number 6
[  124.999202][ T5952] garmin_gps 3-1:8.206: device disconnected
[  125.337021][ T7012] netlink: 1332 bytes leftover after parsing attributes in process `syz.0.454'.
[  125.384487][ T7012] hsr_slave_1 (unregistering): left promiscuous mode
[  125.884099][  T975] IPVS: starting estimator thread 0...
[  125.981297][ T7029] IPVS: using max 66 ests per chain, 158400 per kthread
[  126.237926][ T7026] loop2: detected capacity change from 0 to 32768
[  126.267287][ T7026] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  126.306891][ T7026] XFS (loop2): Ending clean mount
[  126.320128][ T7026] XFS (loop2): Quotacheck needed: Please wait.
[  126.363679][ T7026] XFS (loop2): Quotacheck: Done.
[  126.390136][ T5917] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  126.941803][  T975] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  126.948943][ T7056] loop2: detected capacity change from 0 to 32768
[  127.102210][  T975] usb 1-1: Using ep0 maxpacket: 32
[  127.109088][  T975] usb 1-1: config 186 has an invalid interface number: 85 but max is 0
[  127.112320][  T975] usb 1-1: config 186 has no interface number 0
[  127.118403][  T975] usb 1-1: config 186 interface 85 has no altsetting 0
[  127.124262][  T975] usb 1-1: New USB device found, idVendor=04b4, idProduct=931d, bcdDevice=bb.43
[  127.127667][  T975] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  127.135019][  T975] usb 1-1: Product: syz
[  127.136606][  T975] usb 1-1: Manufacturer: syz
[  127.138333][  T975] usb 1-1: SerialNumber: syz
[  127.186199][ T7062] netlink: 4 bytes leftover after parsing attributes in process `syz.2.472'.
[  127.226438][ T7060] loop1: detected capacity change from 0 to 40427
[  127.245033][ T7060] F2FS-fs (loop1): Image doesn't support compression
[  127.247672][ T7060] F2FS-fs (loop1): build fault injection rate: 4
[  127.255179][ T7060] F2FS-fs (loop1): build fault injection type: 0x4
[  127.263311][ T7060] F2FS-fs (loop1): invalid crc value
[  127.266469][ T7060] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_folio of __get_meta_folio+0x157/0x4f0
[  127.271759][ T7060] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_folio of f2fs_ra_meta_pages+0x615/0x970
[  127.286848][ T7060] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_folio of f2fs_ra_meta_pages+0x615/0x970
[  127.291303][ T7060] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_folio of f2fs_ra_meta_pages+0x615/0x970
[  127.346341][ T7060] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_folio of __get_meta_folio+0x157/0x4f0
[  127.387452][ T7060] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  127.387997][  T975] usb 1-1: can't set first interface for hiFace device.
[  127.398153][  T975] snd-usb-hiface 1-1:186.85: probe with driver snd-usb-hiface failed with error -5
[  127.398491][ T7060] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  127.405802][  T975] usb 1-1: USB disconnect, device number 9
[  127.459784][ T5921] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_folio of f2fs_grab_meta_folio+0x6a/0x1d0
[  127.478861][ T5921] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_folio of f2fs_grab_meta_folio+0x6a/0x1d0
[  127.935544][ T7079] loop1: detected capacity change from 0 to 512
[  127.940695][ T7079] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  127.960656][ T7079] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.964994][ T7079] ext4 filesystem being mounted at /131/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  127.968171][ T5952] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  128.038342][ T5921] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.123727][ T7090] loop0: detected capacity change from 0 to 2048
[  128.128563][ T5952] usb 3-1: Using ep0 maxpacket: 8
[  128.134108][ T5952] usb 3-1: unable to get BOS descriptor or descriptor too short
[  128.136082][ T7090] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  128.144581][ T5952] usb 3-1: config 4 interface 0 has no altsetting 0
[  128.161940][ T5952] usb 3-1: string descriptor 0 read error: -22
[  128.164531][ T5952] usb 3-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05
[  128.171728][ T5952] usb 3-1: New USB device strings: Mfr=2, Product=0, SerialNumber=3
[  128.179165][ T7093] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  128.206426][ T5952] usb 3-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state
[  128.211205][ T5952] usb 3-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  128.218693][ T5952] dvbdev: DVB: registering new adapter (Sigmatek DVB-110)
[  128.221195][ T5952] usb 3-1: media controller created
[  128.237378][ T5952] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  128.327004][ T7098] loop1: detected capacity change from 0 to 1024
[  128.332369][ T7098] EXT4-fs: inline encryption not supported
[  128.334721][ T7098] EXT4-fs: Ignoring removed bh option
[  128.343201][ T7099] netlink: 4 bytes leftover after parsing attributes in process `syz.0.486'.
[  128.351305][ T7099] bridge_slave_0: left allmulticast mode
[  128.355526][ T7099] bridge_slave_0: left promiscuous mode
[  128.357974][ T7099] bridge0: port 1(bridge_slave_0) entered disabled state
[  128.371966][ T7098] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.389639][ T7098] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4183: comm syz.1.487: Allocating blocks 257-513 which overlap fs metadata
[  128.400534][ T7098] EXT4-fs (loop1): Remounting filesystem read-only
[  128.431980][ T5921] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.587195][ T5952] zl10353_read_register: readreg error (reg=127, ret==0)
[  128.655465][ T5952] usb 3-1: USB disconnect, device number 7
[  129.418120][ T7126] netlink: 16 bytes leftover after parsing attributes in process `syz.0.498'.
[  129.422465][ T7126] netlink: 'syz.0.498': attribute type 1 has an invalid length.
[  129.481158][ T7129] loop0: detected capacity change from 0 to 128
[  129.750377][ T7140] capability: warning: `syz.1.504' uses deprecated v2 capabilities in a way that may be insecure
[  129.881863][  T791] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  130.053038][  T791] usb 3-1: Using ep0 maxpacket: 16
[  130.059533][  T791] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  130.065376][  T791] usb 3-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  130.069203][  T791] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  130.075736][  T791] usb 3-1: config 0 descriptor??
[  130.085451][  T791] input: bcm5974 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input6
[  130.398295][ T5278] bcm5974 3-1:0.0: could not read from device
[  130.398674][   T47] usb 3-1: USB disconnect, device number 8
[  130.406893][ T5924] bcm5974 3-1:0.0: could not read from device
[  130.415714][ T5278] bcm5974 3-1:0.0: could not read from device
[  130.854159][ T7175] netlink: 'syz.0.520': attribute type 13 has an invalid length.
[  130.903065][ T7177] netlink: 8 bytes leftover after parsing attributes in process `syz.0.521'.
[  131.009552][ T7181] loop2: detected capacity change from 0 to 256
[  131.016157][ T7181] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  131.020280][ T7181] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  131.043444][ T7181] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  131.255482][ T7191] loop0: detected capacity change from 0 to 256
[  131.279272][ T7191] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  131.302931][ T7191] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  131.318310][ T7191] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  131.607807][ T5312] usb 3-1: new full-speed USB device number 9 using dummy_hcd
[  131.780838][ T5312] usb 3-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  131.783798][ T5312] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  131.795335][ T5312] usb 3-1: Product: syz
[  131.796914][ T5312] usb 3-1: Manufacturer: syz
[  131.798489][ T5312] usb 3-1: SerialNumber: syz
[  131.801111][ T7209] loop1: detected capacity change from 0 to 32768
[  131.804234][ T5312] usb 3-1: config 0 descriptor??
[  131.809138][ T7209] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.535 (7209)
[  132.072560][ T5312] usb 3-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  132.270103][ T7209] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  132.273561][ T7209] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[  132.327772][ T7209] BTRFS info (device loop1): rebuilding free space tree
[  132.370040][ T7209] BTRFS info (device loop1): disabling free space tree
[  132.375172][ T7209] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  132.378979][ T7209] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  132.548871][ T5921] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  132.674042][ T7232] loop0: detected capacity change from 0 to 256
[  132.690367][ T7232] exfat: Bad value for 'uid'
[  132.692527][ T7232] exfat: Bad value for 'uid'
[  133.038671][ T7240] netlink: 28 bytes leftover after parsing attributes in process `syz.1.542'.
[  133.042232][ T7240] netlink: 28 bytes leftover after parsing attributes in process `syz.1.542'.
[  133.156334][ T7232] loop0: detected capacity change from 0 to 32768
[  133.165970][ T7232] JFS: Invalid value of umask
[  133.301401][ T7244] netlink: 4 bytes leftover after parsing attributes in process `syz.0.545'.
[  133.350561][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  133.356321][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  133.368023][ T7248] loop0: detected capacity change from 0 to 512
[  133.376400][ T7248] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  133.389647][ T7248] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=884ee02c, mo2=0102]
[  133.392756][ T7248] EXT4-fs (loop0): orphan cleanup on readonly fs
[  133.404306][ T7248] EXT4-fs error (device loop0): ext4_get_branch:178: inode #11: block 33619980: comm syz.0.546: invalid block
[  133.424321][ T7248] EXT4-fs (loop0): Remounting filesystem read-only
[  133.435604][ T7248] EXT4-fs (loop0): 1 truncate cleaned up
[  133.443840][ T7248] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: writeback.
[  133.521317][ T5914] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  133.648051][ T7255] 8021q: adding VLAN 0 to HW filter on device batadv1
[  133.652408][ T7255] team0: Failed to send port change of device batadv1 via netlink (err -105)
[  133.659612][ T7255] team0: Failed to send options change via netlink (err -105)
[  133.667448][ T7255] team0: Port device batadv1 added
[  133.854097][ T7264] overlay: Unknown parameter '\'
[  134.033390][ T5312] dvb_usb_rtl28xxu 3-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  134.049415][ T5312] usb 3-1: USB disconnect, device number 9
[  134.053569][ T7262] loop1: detected capacity change from 0 to 40427
[  134.061460][ T7262] F2FS-fs (loop1): invalid crc value
[  134.114479][ T7262] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  134.118841][ T7262] F2FS-fs (loop1): Start checkpoint disabled!
[  134.130534][ T7262] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  134.258047][ T1098] kworker/u10:8: attempt to access beyond end of device
[  134.258047][ T1098] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  134.270173][ T1098] CPU: 0 UID: 0 PID: 1098 Comm: kworker/u10:8 Not tainted syzkaller #0 PREEMPT(full) 
[  134.270196][ T1098] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  134.270206][ T1098] Workqueue: writeback wb_workfn (flush-7:1)
[  134.270229][ T1098] Call Trace:
[  134.270236][ T1098]  <TASK>
[  134.270259][ T1098]  dump_stack_lvl+0x189/0x250
[  134.270282][ T1098]  ? __pfx_dump_stack_lvl+0x10/0x10
[  134.270328][ T1098]  ? __pfx_queue_work_on+0x10/0x10
[  134.270343][ T1098]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  134.270363][ T1098]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  134.270387][ T1098]  f2fs_handle_critical_error+0x37c/0x540
[  134.270465][ T1098]  f2fs_write_end_io+0x886/0xb60
[  134.270493][ T1098]  __submit_merged_bio+0x27a/0x6a0
[  134.270518][ T1098]  __submit_merged_write_cond+0x255/0x530
[  134.270551][ T1098]  f2fs_write_data_pages+0x261d/0x3000
[  134.270597][ T1098]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  134.270629][ T1098]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  134.270671][ T1098]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  134.270702][ T1098]  ? trace_f2fs_writepages+0x7f/0x200
[  134.270722][ T1098]  ? f2fs_write_node_pages+0x478/0x6e0
[  134.270745][ T1098]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  134.270773][ T1098]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  134.270795][ T1098]  do_writepages+0x32e/0x550
[  134.270818][ T1098]  ? reacquire_held_locks+0x127/0x1d0
[  134.270833][ T1098]  ? writeback_sb_inodes+0x384/0x1010
[  134.270859][ T1098]  __writeback_single_inode+0x145/0xff0
[  134.270877][ T1098]  ? do_raw_spin_unlock+0x4d/0x240
[  134.270898][ T1098]  writeback_sb_inodes+0x6c7/0x1010
[  134.270936][ T1098]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  134.270988][ T1098]  ? rcu_is_watching+0x15/0xb0
[  134.271011][ T1098]  wb_writeback+0x43b/0xaf0
[  134.271035][ T1098]  ? queue_io+0x361/0x590
[  134.271056][ T1098]  ? __pfx_wb_writeback+0x10/0x10
[  134.271080][ T1098]  ? _raw_spin_unlock_irq+0x23/0x50
[  134.271102][ T1098]  wb_workfn+0x409/0xef0
[  134.271129][ T1098]  ? __pfx_wb_workfn+0x10/0x10
[  134.271148][ T1098]  ? __lock_acquire+0xab9/0xd20
[  134.271178][ T1098]  ? process_scheduled_works+0x9ef/0x17b0
[  134.271197][ T1098]  ? _raw_spin_unlock_irq+0x23/0x50
[  134.271214][ T1098]  ? process_scheduled_works+0x9ef/0x17b0
[  134.271227][ T1098]  ? process_scheduled_works+0x9ef/0x17b0
[  134.271243][ T1098]  process_scheduled_works+0xae1/0x17b0
[  134.271281][ T1098]  ? __pfx_process_scheduled_works+0x10/0x10
[  134.271346][ T1098]  worker_thread+0x8a0/0xda0
[  134.271363][ T1098]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  134.271387][ T1098]  ? __kthread_parkme+0x7b/0x200
[  134.271410][ T1098]  kthread+0x711/0x8a0
[  134.271431][ T1098]  ? __pfx_worker_thread+0x10/0x10
[  134.271445][ T1098]  ? __pfx_kthread+0x10/0x10
[  134.271464][ T1098]  ? _raw_spin_unlock_irq+0x23/0x50
[  134.271480][ T1098]  ? lockdep_hardirqs_on+0x9c/0x150
[  134.271498][ T1098]  ? __pfx_kthread+0x10/0x10
[  134.271515][ T1098]  ret_from_fork+0x3fc/0x770
[  134.271541][ T1098]  ? __pfx_ret_from_fork+0x10/0x10
[  134.271562][ T1098]  ? __switch_to_asm+0x39/0x70
[  134.271580][ T1098]  ? __switch_to_asm+0x33/0x70
[  134.271596][ T1098]  ? __pfx_kthread+0x10/0x10
[  134.271614][ T1098]  ret_from_fork_asm+0x1a/0x30
[  134.271645][ T1098]  </TASK>
[  134.271652][ T1098] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  134.453983][ T7268] loop0: detected capacity change from 0 to 40427
[  134.467059][ T7268] F2FS-fs: heap/no_heap options were deprecated
[  134.485704][ T7268] F2FS-fs (loop0): Image doesn't support compression
[  134.488315][ T7268] F2FS-fs (loop0): build fault injection rate: 690
[  134.511192][ T7268] F2FS-fs (loop0): invalid crc value
[  134.619438][ T7268] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  134.625090][ T7274] loop2: detected capacity change from 0 to 128
[  134.642196][ T7268] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  134.662872][ T7274] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  134.677014][ T7274] ext4 filesystem being mounted at /186/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  134.690496][ T7268] syz.0.555: attempt to access beyond end of device
[  134.690496][ T7268] loop0: rw=34817, sector=77824, nr_sectors = 128 limit=40427
[  134.704429][ T7268] syz.0.555: attempt to access beyond end of device
[  134.704429][ T7268] loop0: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  134.710857][ T7268] CPU: 1 UID: 0 PID: 7268 Comm: syz.0.555 Not tainted syzkaller #0 PREEMPT(full) 
[  134.710880][ T7268] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  134.710890][ T7268] Call Trace:
[  134.710897][ T7268]  <TASK>
[  134.710904][ T7268]  dump_stack_lvl+0x189/0x250
[  134.710934][ T7268]  ? __pfx_dump_stack_lvl+0x10/0x10
[  134.710954][ T7268]  ? __pfx_queue_work_on+0x10/0x10
[  134.710969][ T7268]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  134.710992][ T7268]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  134.711021][ T7268]  f2fs_handle_critical_error+0x37c/0x540
[  134.711051][ T7268]  f2fs_write_end_io+0x886/0xb60
[  134.711081][ T7268]  __submit_merged_bio+0x27a/0x6a0
[  134.711109][ T7268]  __submit_merged_write_cond+0x255/0x530
[  134.711138][ T7268]  f2fs_write_data_pages+0x261d/0x3000
[  134.711187][ T7268]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  134.711298][ T7268]  ? __lock_acquire+0xab9/0xd20
[  134.711330][ T7268]  ? do_raw_spin_lock+0x121/0x290
[  134.711356][ T7268]  ? do_raw_spin_unlock+0x4d/0x240
[  134.711373][ T7268]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  134.711397][ T7268]  do_writepages+0x32e/0x550
[  134.711428][ T7268]  ? do_raw_spin_unlock+0x4d/0x240
[  134.711450][ T7268]  filemap_fdatawrite+0x199/0x240
[  134.711472][ T7268]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  134.711528][ T7268]  ? do_raw_spin_unlock+0x4d/0x240
[  134.711551][ T7268]  f2fs_sync_dirty_inodes+0x31f/0x830
[  134.711578][ T7268]  f2fs_write_checkpoint+0x95a/0x1df0
[  134.711615][ T7268]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  134.711663][ T7268]  ? down_write+0x162/0x1f0
[  134.711686][ T7268]  ? __pfx_down_write+0x10/0x10
[  134.711719][ T7268]  f2fs_issue_checkpoint+0x3ac/0x570
[  134.711738][ T7268]  ? __pfx_f2fs_issue_checkpoint+0x10/0x10
[  134.711759][ T7268]  ? mnt_get_write_access+0x68/0x2a0
[  134.711798][ T7268]  ? f2fs_sync_fs+0x200/0x3d0
[  134.711821][ T7268]  __f2fs_ioctl+0x3d63/0xb610
[  134.711851][ T7268]  ? 0xffffffffff600000
[  134.711865][ T7268]  ? file_ioctl+0x22d/0x780
[  134.711887][ T7268]  ? __pfx_file_ioctl+0x10/0x10
[  134.711915][ T7268]  ? kasan_quarantine_put+0xdd/0x220
[  134.711937][ T7268]  ? __pfx___f2fs_ioctl+0x10/0x10
[  134.711956][ T7268]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  134.711977][ T7268]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  134.712000][ T7268]  ? do_vfs_ioctl+0xb33/0x1430
[  134.712019][ T7268]  ? 0xffffffffff600000
[  134.712032][ T7268]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  134.712062][ T7268]  ? __lock_acquire+0xab9/0xd20
[  134.712099][ T7268]  ? __fget_files+0x2a/0x420
[  134.712124][ T7268]  ? __fget_files+0x2a/0x420
[  134.712144][ T7268]  ? __fget_files+0x3a0/0x420
[  134.712164][ T7268]  ? __fget_files+0x2a/0x420
[  134.712187][ T7268]  ? f2fs_ioctl+0x135/0x250
[  134.712201][ T7268]  ? 0xffffffffff600000
[  134.712213][ T7268]  ? __pfx_f2fs_ioctl+0x10/0x10
[  134.712226][ T7268]  ? 0xffffffffff600000
[  134.712238][ T7268]  __se_sys_ioctl+0xfc/0x170
[  134.712290][ T7268]  do_syscall_64+0xfa/0x3b0
[  134.712311][ T7268]  ? lockdep_hardirqs_on+0x9c/0x150
[  134.712332][ T7268]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.712348][ T7268]  ? exc_page_fault+0x9f/0xf0
[  134.712369][ T7268]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.712384][ T7268] RIP: 0033:0x7fedfab8ebe9
[  134.712398][ T7268] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.712412][ T7268] RSP: 002b:00007fedfb9bb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  134.712429][ T7268] RAX: ffffffffffffffda RBX: 00007fedfadb5fa0 RCX: 00007fedfab8ebe9
[  134.712441][ T7268] RDX: ffffffffff600000 RSI: 000000000000f507 RDI: 000000000000000a
[  134.712451][ T7268] RBP: 00007fedfac11e19 R08: 0000000000000000 R09: 0000000000000000
[  134.712460][ T7268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  134.712469][ T7268] R13: 00007fedfadb6038 R14: 00007fedfadb5fa0 R15: 00007ffe0c3cde88
[  134.712488][ T7268]  ? 0xffffffffff600000
[  134.712504][ T7268]  </TASK>
[  134.712510][ T7268] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  134.864466][   T33] audit: type=1800 audit(1755625172.462:25): pid=7268 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.555" name="file1" dev="loop0" ino=10 res=0 errno=0
[  134.880623][   T33] audit: type=1800 audit(1755625172.481:26): pid=7268 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.555" name="bus" dev="loop0" ino=14 res=0 errno=0
[  134.887503][ T7268] CPU: 1 UID: 0 PID: 7268 Comm: syz.0.555 Not tainted syzkaller #0 PREEMPT(full) 
[  134.887528][ T7268] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  134.887538][ T7268] Call Trace:
[  134.887545][ T7268]  <TASK>
[  134.887552][ T7268]  dump_stack_lvl+0x189/0x250
[  134.887579][ T7268]  ? __pfx_dump_stack_lvl+0x10/0x10
[  134.887599][ T7268]  ? __pfx_queue_work_on+0x10/0x10
[  134.887613][ T7268]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  134.887633][ T7268]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  134.887661][ T7268]  f2fs_handle_critical_error+0x37c/0x540
[  134.887690][ T7268]  f2fs_write_end_io+0x886/0xb60
[  134.887720][ T7268]  __submit_merged_bio+0x27a/0x6a0
[  134.887746][ T7268]  __submit_merged_write_cond+0x255/0x530
[  134.887772][ T7268]  f2fs_write_data_pages+0x261d/0x3000
[  134.887823][ T7268]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  134.887887][ T7268]  ? __lock_acquire+0xab9/0xd20
[  134.887913][ T7268]  ? do_raw_spin_lock+0x121/0x290
[  134.887937][ T7268]  ? do_raw_spin_unlock+0x4d/0x240
[  134.887954][ T7268]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  134.887974][ T7268]  do_writepages+0x32e/0x550
[  134.887996][ T7268]  ? do_raw_spin_unlock+0x4d/0x240
[  134.888013][ T7268]  filemap_fdatawrite+0x199/0x240
[  134.888030][ T7268]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  134.888082][ T7268]  ? do_raw_spin_unlock+0x4d/0x240
[  134.888105][ T7268]  f2fs_sync_dirty_inodes+0x31f/0x830
[  134.888134][ T7268]  f2fs_write_checkpoint+0x95a/0x1df0
[  134.888169][ T7268]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  134.888216][ T7268]  ? down_write+0x162/0x1f0
[  134.888277][ T7268]  ? __pfx_down_write+0x10/0x10
[  134.888309][ T7268]  f2fs_issue_checkpoint+0x3ac/0x570
[  134.888329][ T7268]  ? __pfx_f2fs_issue_checkpoint+0x10/0x10
[  134.888349][ T7268]  ? mnt_get_write_access+0x68/0x2a0
[  134.888388][ T7268]  ? f2fs_sync_fs+0x200/0x3d0
[  134.888411][ T7268]  __f2fs_ioctl+0x3d63/0xb610
[  134.888439][ T7268]  ? 0xffffffffff600000
[  134.888452][ T7268]  ? file_ioctl+0x22d/0x780
[  134.888472][ T7268]  ? __pfx_file_ioctl+0x10/0x10
[  134.888499][ T7268]  ? kasan_quarantine_put+0xdd/0x220
[  134.888522][ T7268]  ? __pfx___f2fs_ioctl+0x10/0x10
[  134.888561][ T7268]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  134.888584][ T7268]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  134.888608][ T7268]  ? do_vfs_ioctl+0xb33/0x1430
[  134.888626][ T7268]  ? 0xffffffffff600000
[  134.888640][ T7268]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  134.888671][ T7268]  ? __lock_acquire+0xab9/0xd20
[  134.888710][ T7268]  ? __fget_files+0x2a/0x420
[  134.888733][ T7268]  ? __fget_files+0x2a/0x420
[  134.888751][ T7268]  ? __fget_files+0x3a0/0x420
[  134.888769][ T7268]  ? __fget_files+0x2a/0x420
[  134.888790][ T7268]  ? f2fs_ioctl+0x135/0x250
[  134.888802][ T7268]  ? 0xffffffffff600000
[  134.888813][ T7268]  ? __pfx_f2fs_ioctl+0x10/0x10
[  134.888825][ T7268]  ? 0xffffffffff600000
[  134.888836][ T7268]  __se_sys_ioctl+0xfc/0x170
[  134.888853][ T7268]  do_syscall_64+0xfa/0x3b0
[  134.888872][ T7268]  ? lockdep_hardirqs_on+0x9c/0x150
[  134.888891][ T7268]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.888904][ T7268]  ? exc_page_fault+0x9f/0xf0
[  134.888922][ T7268]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.888935][ T7268] RIP: 0033:0x7fedfab8ebe9
[  134.888949][ T7268] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.888960][ T7268] RSP: 002b:00007fedfb9bb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  134.888977][ T7268] RAX: ffffffffffffffda RBX: 00007fedfadb5fa0 RCX: 00007fedfab8ebe9
[  134.888986][ T7268] RDX: ffffffffff600000 RSI: 000000000000f507 RDI: 000000000000000a
[  134.888994][ T7268] RBP: 00007fedfac11e19 R08: 0000000000000000 R09: 0000000000000000
[  134.889001][ T7268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  134.889008][ T7268] R13: 00007fedfadb6038 R14: 00007fedfadb5fa0 R15: 00007ffe0c3cde88
[  134.889023][ T7268]  ? 0xffffffffff600000
[  134.889037][ T7268]  </TASK>
[  134.889187][ T7268] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  134.896968][ T5917] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  135.006939][ T7282] netlink: 4 bytes leftover after parsing attributes in process `syz.1.559'.
[  135.117480][ T7285] Driver unsupported XDP return value 0 on prog  (id 43) dev N/A, expect packet loss!
[  135.128751][ T7282] netlink: 4 bytes leftover after parsing attributes in process `syz.1.559'.
[  135.346365][ T7292] loop0: detected capacity change from 0 to 512
[  135.349611][ T7292] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  135.356141][ T7292] EXT4-fs (loop0): 1 truncate cleaned up
[  135.359376][ T7292] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  135.619685][ T5914] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.765868][ T5312] hid-generic 00A0:0006:0003.0002: unknown main item tag 0x0
[  135.769102][ T5312] hid-generic 00A0:0006:0003.0002: unknown main item tag 0x0
[  135.771766][ T5312] hid-generic 00A0:0006:0003.0002: unknown main item tag 0x0
[  135.775841][ T5312] hid-generic 00A0:0006:0003.0002: unknown main item tag 0x0
[  135.778777][ T5312] hid-generic 00A0:0006:0003.0002: unknown main item tag 0x0
[  135.781667][ T5312] hid-generic 00A0:0006:0003.0002: unknown main item tag 0x0
[  135.784296][ T5312] hid-generic 00A0:0006:0003.0002: unknown main item tag 0x0
[  135.786735][ T5312] hid-generic 00A0:0006:0003.0002: unknown main item tag 0x0
[  135.790603][ T5312] hid-generic 00A0:0006:0003.0002: unknown main item tag 0x0
[  135.795851][ T5312] hid-generic 00A0:0006:0003.0002: unknown main item tag 0x0
[  135.811608][ T5312] hid-generic 00A0:0006:0003.0002: hidraw0: <UNKNOWN> HID v0.05 Device [syz1] on syz0
[  135.886270][ T7300] loop2: detected capacity change from 0 to 32768
[  135.923206][ T7300] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[  135.951029][ T7300] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  135.987690][   T33] audit: type=1800 audit(1755625173.688:27): pid=7300 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.565" name="file1" dev="loop2" ino=17058 res=0 errno=0
[  136.048671][ T5917] ocfs2: Unmounting device (7,2) on (node local)
[  136.397293][ T7310] loop1: detected capacity change from 0 to 32768
[  137.289784][ T7341] loop1: detected capacity change from 0 to 512
[  137.299651][ T7341] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  137.337804][ T7341] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #16: comm syz.1.582: invalid indirect mapped block 83886080 (level 1)
[  137.351281][ T7341] EXT4-fs (loop1): Remounting filesystem read-only
[  137.356482][ T7341] EXT4-fs (loop1): 1 orphan inode deleted
[  137.359177][ T7341] EXT4-fs (loop1): 1 truncate cleaned up
[  137.372098][ T7341] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.653561][ T7349] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  138.031473][ T7354] loop0: detected capacity change from 0 to 256
[  138.037569][ T7354] exfat: Deprecated parameter 'utf8'
[  138.054676][ T7354] exfat: Deprecated parameter 'namecase'
[  138.113244][ T7354] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  138.260968][ T7358] loop2: detected capacity change from 0 to 256
[  138.290047][ T7358] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  138.629030][ T7362] loop2: detected capacity change from 0 to 1024
[  138.678668][ T7362] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945)
[  138.694004][ T7362] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  138.700733][ T7366] loop0: detected capacity change from 0 to 512
[  138.709197][ T7366] EXT4-fs: Ignoring removed i_version option
[  138.712304][ T7366] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  138.715578][ T7362] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  138.719064][ T7362] EXT4-fs (loop2): orphan cleanup on readonly fs
[  138.721523][ T7366] EXT4-fs (loop0): 1 truncate cleaned up
[  138.722576][ T7366] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.748856][ T7366] EXT4-fs warning (device loop0): ext4_group_extend:1891: can't read last block, resize aborted
[  138.749161][ T5921] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.761957][ T7362] EXT4-fs error (device loop2): ext4_read_inode_bitmap:167: comm syz.2.591: Inode bitmap for bg 0 marked uninitialized
[  138.783325][ T7362] EXT4-fs (loop2): Remounting filesystem read-only
[  138.805857][ T7362] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  138.818020][ T5914] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.896088][ T5917] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.434366][ T7378] netlink: 44 bytes leftover after parsing attributes in process `syz.2.596'.
[  139.437882][ T7378] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  140.652510][ T7413] IPv6: NLM_F_CREATE should be specified when creating new route
[  140.799938][ T7420] loop1: detected capacity change from 0 to 512
[  140.806849][ T7420] EXT4-fs: Ignoring removed nomblk_io_submit option
[  140.887883][ T7420] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.899041][ T7420] ext4 filesystem being mounted at /171/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  140.980332][ T5921] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.290509][   T33] audit: type=1326 audit(1755625180.516:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7476 comm="syz.1.637" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f426b98ebe9 code=0x0
[  143.443817][ T7484] loop1: detected capacity change from 0 to 256
[  143.466434][ T7485] loop2: detected capacity change from 0 to 512
[  143.508168][ T7485] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.516084][ T7484] FAT-fs (loop1): Directory bread(block 64) failed
[  143.516255][ T7485] ext4 filesystem being mounted at /212/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  143.518700][ T7484] FAT-fs (loop1): Directory bread(block 65) failed
[  143.518803][ T7484] FAT-fs (loop1): Directory bread(block 66) failed
[  143.581016][ T7484] FAT-fs (loop1): Directory bread(block 67) failed
[  143.583586][ T7484] FAT-fs (loop1): Directory bread(block 68) failed
[  143.586048][ T7484] FAT-fs (loop1): Directory bread(block 69) failed
[  143.589952][   T33] audit: type=1800 audit(1755625180.797:29): pid=7485 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.641" name="file1" dev="loop2" ino=15 res=0 errno=0
[  143.597847][ T7484] FAT-fs (loop1): Directory bread(block 70) failed
[  143.597880][ T7484] FAT-fs (loop1): Directory bread(block 71) failed
[  143.597937][ T7484] FAT-fs (loop1): Directory bread(block 72) failed
[  143.597956][ T7484] FAT-fs (loop1): Directory bread(block 73) failed
[  143.739096][ T5917] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.095823][ T7507] loop2: detected capacity change from 0 to 2048
[  144.120423][ T7507] UDF-fs: error (device loop2): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  144.139647][ T7507] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found
[  144.147349][ T7507] UDF-fs: Scanning with blocksize 512 failed
[  144.162538][ T7507] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  144.193148][ T7512] loop0: detected capacity change from 0 to 128
[  145.016065][ T7528] loop2: detected capacity change from 0 to 32768
[  145.023942][ T7528] Mount JFS Failure: -22
[  145.028146][ T7528] jfs_mount failed w/return code = -22
[  145.315532][ T7543] netlink: 8 bytes leftover after parsing attributes in process `syz.0.664'.
[  145.854534][ T7552] loop0: detected capacity change from 0 to 4096
[  145.867964][ T7552] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  145.875379][ T7552] ntfs3(loop0): Failed to load $LogFile (-22).
[  146.220885][ T7557] netlink: 'syz.1.669': attribute type 5 has an invalid length.
[  146.863189][ T7574] loop1: detected capacity change from 0 to 512
[  146.936063][ T7574] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  147.002766][ T7574] EXT4-fs (loop1): 1 truncate cleaned up
[  147.017451][ T7574] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.169863][ T7553] syz.0.667 (7553): drop_caches: 2
[  147.170030][ T5921] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.508424][ T7580] loop2: detected capacity change from 0 to 32768
[  147.535171][  T791] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  147.882180][ T7580] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_delay=2013266920,journal_reclaim_delay=10,nojournal_transaction_names
[  147.882204][ T7580]   allowing incompatible features above 0.0: (unknown version)
[  147.882214][ T7580]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  147.882225][ T7580]   with devices loop2
[  147.905219][ T7580] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): Using encoding defined by superblock: utf8-12.1.0
[  147.912968][ T7580] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): initializing new filesystem
[  147.929392][  T791] usb 2-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00
[  147.932907][  T791] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  147.937624][ T7580] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): going read-write
[  147.946814][  T791] usb 2-1: config 0 descriptor??
[  147.967432][ T7580] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): marking superblocks
[  148.019163][ T7580] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): initializing freespace
[  148.038574][ T7580] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): done initializing freespace
[  148.054674][ T7580] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): reading snapshots table
[  148.058459][ T7580] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): reading snapshots done
[  148.111798][ T7580] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): done starting filesystem
[  148.196542][ T7580] syz.2.677 (7580) used greatest stack depth: 15352 bytes left
[  148.241037][ T5917] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutting down
[  148.243992][ T5917] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): going read-only
[  148.248680][ T5917] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): finished waiting for writes to stop
[  148.259366][ T5917] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): flushing journal and stopping allocators, journal seq 3
[  148.390050][ T5917] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): flushing journal and stopping allocators complete, journal seq 4
[  148.395687][  T791] kye 0003:0458:5019.0003: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  148.403942][  T791] kye 0003:0458:5019.0003: ignoring exceeding usage max
[  148.412785][ T5917] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): clean shutdown complete, journal seq 5
[  148.413334][  T791] kye 0003:0458:5019.0003: hidraw0: USB HID v0.00 Device [HID 0458:5019] on usb-dummy_hcd.1-1/input0
[  148.421814][  T791] kye 0003:0458:5019.0003: tablet-enabling feature report not found
[  148.424489][ T5917] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): marking filesystem clean
[  148.425275][  T791] kye 0003:0458:5019.0003: tablet enabling failed
[  148.502477][ T5917] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[  148.644185][ T5312] usb 2-1: USB disconnect, device number 8
[  149.673493][   T33] audit: type=1326 audit(1755625186.484:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7623 comm="syz.0.691" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  149.688423][   T33] audit: type=1326 audit(1755625186.484:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7623 comm="syz.0.691" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  150.070356][ T7637] loop2: detected capacity change from 0 to 4096
[  150.096727][ T7639] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  150.290723][ T7641] loop2: detected capacity change from 0 to 2048
[  150.334104][ T7644] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  150.539894][ T7648] input: syz1 as /devices/virtual/input/input7
[  150.923840][ T7655] loop1: detected capacity change from 0 to 512
[  150.949857][ T7655] FAT-fs (loop1): bogus number of FAT sectors
[  150.952336][ T7655] FAT-fs (loop1): Can't find a valid FAT filesystem
[  151.039664][ T7657] Bluetooth: hci0: Opcode 0x0401 failed: -112
[  151.259368][ T7662] loop2: detected capacity change from 0 to 8
[  151.298928][ T7662] Page size > filesystem block size (5).  This is currently not supported!
[  151.633575][ T7668] bridge0: port 2(bridge_slave_1) entered disabled state
[  151.637304][ T7668] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.722640][ T5312] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  151.795542][ T7668] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  151.810735][ T7668] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  151.900017][ T7668] macsec0: left promiscuous mode
[  151.913642][ T7668] netdevsim netdevsim1 netdevsim0: left allmulticast mode
[  151.968563][ T5312] usb 3-1: Using ep0 maxpacket: 8
[  151.970357][   T12] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  151.971147][ T5952] lo speed is unknown, defaulting to 1000
[  151.976250][ T5952] 3yz0: Port: 1 Link DOWN
[  151.976648][   T12] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  151.987357][ T5312] usb 3-1: config index 0 descriptor too short (expected 19222, got 18)
[  151.990569][ T5312] usb 3-1: config 28 has too many interfaces: 241, using maximum allowed: 32
[  151.994188][   T12] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  151.997056][   T12] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  151.999746][ T5312] usb 3-1: config 28 has 1 interface, different from the descriptor's value: 241
[  152.006246][ T5312] usb 3-1: New USB device found, idVendor=04b4, idProduct=1002, bcdDevice=62.0d
[  152.009353][ T5312] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  152.014248][ T5312] usb 3-1: Product: syz
[  152.015682][ T5312] usb 3-1: Manufacturer: syz
[  152.017164][ T5312] usb 3-1: SerialNumber: syz
[  152.175301][ T7676] kernel read not supported for file /!selinu (pid: 7676 comm: syz.1.712)
[  152.178961][   T33] audit: type=1800 audit(1755625188.822:32): pid=7676 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.712" name=2173656C696E75FF7F dev="mqueue" ino=12003 res=0 errno=0
[  152.240035][ T5952] usb 3-1: USB disconnect, device number 10
[  152.649915][ T7689] netlink: 44 bytes leftover after parsing attributes in process `syz.1.718'.
[  152.655631][ T7689] netlink: 12 bytes leftover after parsing attributes in process `syz.1.718'.
[  152.659260][ T7689] netlink: 40 bytes leftover after parsing attributes in process `syz.1.718'.
[  153.090083][ T7692] loop1: detected capacity change from 0 to 512
[  153.118539][ T7692] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.719: invalid indirect mapped block 4294967295 (level 1)
[  153.126057][ T7692] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.719: invalid indirect mapped block 4294967295 (level 1)
[  153.132540][ T7692] EXT4-fs (loop1): 2 truncates cleaned up
[  153.137021][ T7692] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  153.147810][ T7692] EXT4-fs error (device loop1): ext4_get_parent:1834: inode #11: comm syz.1.719: bad parent inode number: 3
[  153.185258][ T5921] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.189532][ T5233] Bluetooth: hci0: command 0x0401 tx timeout
[  153.194403][ T5915] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  153.273823][ T7696] loop2: detected capacity change from 0 to 1024
[  153.300870][ T7696] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  153.841587][ T5917] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.411060][ T5233] Bluetooth: hci0: command 0x0401 tx timeout
[  155.600934][ T7721] loop0: detected capacity change from 0 to 4096
[  155.609874][ T7721] ntfs3(loop0): Different NTFS sector size (2048) and media sector size (512).
[  155.613154][ T7721] ntfs3(loop0): RAW NTFS volume: Filesystem size 8192.00 Gb > volume size 0.00 Gb. Mount in read-only.
[  155.626657][ T7721] ntfs3(loop0): NTFS 8192.00 Gb is too big to use 32 bits per cluster.
[  155.632026][ T7723] loop1: detected capacity change from 0 to 512
[  155.640202][ T7723] EXT4-fs: Ignoring removed nobh option
[  155.655938][ T7721] ntfs3(loop0): try to read out of volume at offset 0x1ffe00
[  155.734207][ T7723] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #3: comm syz.1.730: corrupted inode contents
[  155.776557][ T7723] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #3: comm syz.1.730: mark_inode_dirty error
[  155.796771][ T7723] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #3: comm syz.1.730: corrupted inode contents
[  155.814677][ T7723] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #3: comm syz.1.730: mark_inode_dirty error
[  155.827005][ T7723] Quota error (device loop1): write_blk: dquota write failed
[  155.836521][ T7723] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  155.841745][ T7723] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.730: Failed to acquire dquot type 0
[  155.854145][ T7723] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #16: comm syz.1.730: corrupted inode contents
[  155.859430][ T7723] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #16: comm syz.1.730: mark_inode_dirty error
[  155.870400][ T7723] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #16: comm syz.1.730: corrupted inode contents
[  155.878061][ T7723] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #16: comm syz.1.730: mark_inode_dirty error
[  155.885347][ T7723] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #16: comm syz.1.730: corrupted inode contents
[  155.890723][ T7723] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  155.897890][ T7723] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #16: comm syz.1.730: corrupted inode contents
[  155.903075][ T7723] EXT4-fs error (device loop1): ext4_truncate:4666: inode #16: comm syz.1.730: mark_inode_dirty error
[  155.907800][ T7723] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  155.926680][ T7723] EXT4-fs (loop1): 1 truncate cleaned up
[  155.933385][ T7723] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  155.946150][ T7723] ext4 filesystem being mounted at /217/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  155.986925][ T7723] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.240910][   T33] audit: type=1326 audit(1755625192.545:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7732 comm="syz.2.734" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[  156.295935][   T33] audit: type=1326 audit(1755625192.545:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7732 comm="syz.2.734" exe="/syz-executor" sig=0 arch=c000003e syscall=106 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[  156.328045][   T33] audit: type=1326 audit(1755625192.545:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7732 comm="syz.2.734" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[  156.338291][   T33] audit: type=1326 audit(1755625192.545:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7732 comm="syz.2.734" exe="/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[  156.348356][   T33] audit: type=1326 audit(1755625192.545:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7732 comm="syz.2.734" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[  156.362785][   T33] audit: type=1326 audit(1755625192.545:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7732 comm="syz.2.734" exe="/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[  156.426694][    T9] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  156.488143][   T33] audit: type=1326 audit(1755625192.545:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7732 comm="syz.2.734" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[  156.497187][   T33] audit: type=1326 audit(1755625192.545:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7732 comm="syz.2.734" exe="/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[  156.982518][    T9] usb 3-1: Using ep0 maxpacket: 32
[  156.988081][    T9] usb 3-1: config 0 has an invalid interface number: 155 but max is 0
[  156.991485][    T9] usb 3-1: config 0 has no interface number 0
[  157.003972][    T9] usb 3-1: New USB device found, idVendor=05ac, idProduct=0274, bcdDevice=a7.4c
[  157.007573][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  157.010929][    T9] usb 3-1: Product: syz
[  157.012694][    T9] usb 3-1: Manufacturer: syz
[  157.026760][    T9] usb 3-1: SerialNumber: syz
[  157.035437][    T9] usb 3-1: config 0 descriptor??
[  157.191314][ T7754] pimreg: entered allmulticast mode
[  157.220238][ T7754] pimreg: left allmulticast mode
[  157.534213][ T7767] loop0: detected capacity change from 0 to 1024
[  157.548381][ T7767] EXT4-fs: inline encryption not supported
[  157.557013][ T7769] netlink: 'syz.1.747': attribute type 25 has an invalid length.
[  157.563260][ T7769] netlink: 'syz.1.747': attribute type 7 has an invalid length.
[  157.573723][ T7767] EXT4-fs (loop0): can't mount with commit=, fs mounted w/o journal
[  157.844696][ T7782] loop0: detected capacity change from 0 to 512
[  157.874816][ T7782] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.881379][ T7782] ext4 filesystem being mounted at /231/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  158.034542][ T5914] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.371288][ T7793] netlink: 72 bytes leftover after parsing attributes in process `syz.1.757'.
[  158.377019][ T7793] netlink: 72 bytes leftover after parsing attributes in process `syz.1.757'.
[  158.533772][ T7787] loop0: detected capacity change from 0 to 40427
[  158.547230][ T7787] F2FS-fs (loop0): invalid crc value
[  158.611770][ T7787] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  158.616021][ T7787] F2FS-fs (loop0): Start checkpoint disabled!
[  158.623128][ T7787] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  158.672670][ T1093] kworker/u10:5: attempt to access beyond end of device
[  158.672670][ T1093] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  158.678798][ T1093] CPU: 1 UID: 0 PID: 1093 Comm: kworker/u10:5 Not tainted syzkaller #0 PREEMPT(full) 
[  158.678820][ T1093] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  158.678830][ T1093] Workqueue: writeback wb_workfn (flush-7:0)
[  158.678855][ T1093] Call Trace:
[  158.678862][ T1093]  <TASK>
[  158.678869][ T1093]  dump_stack_lvl+0x189/0x250
[  158.678892][ T1093]  ? __pfx_dump_stack_lvl+0x10/0x10
[  158.678910][ T1093]  ? __pfx_queue_work_on+0x10/0x10
[  158.678924][ T1093]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  158.678944][ T1093]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  158.678972][ T1093]  f2fs_handle_critical_error+0x37c/0x540
[  158.679001][ T1093]  f2fs_write_end_io+0x886/0xb60
[  158.679033][ T1093]  __submit_merged_bio+0x27a/0x6a0
[  158.679084][ T1093]  __submit_merged_write_cond+0x255/0x530
[  158.679111][ T1093]  f2fs_write_data_pages+0x261d/0x3000
[  158.679164][ T1093]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  158.679199][ T1093]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  158.679247][ T1093]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  158.679267][ T1093]  ? look_up_lock_class+0x74/0x170
[  158.679296][ T1093]  ? trace_f2fs_writepages+0x7f/0x200
[  158.679317][ T1093]  ? f2fs_write_node_pages+0x478/0x6e0
[  158.679364][ T1093]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  158.679386][ T1093]  do_writepages+0x32e/0x550
[  158.679411][ T1093]  ? reacquire_held_locks+0x127/0x1d0
[  158.679426][ T1093]  ? writeback_sb_inodes+0x384/0x1010
[  158.679453][ T1093]  __writeback_single_inode+0x145/0xff0
[  158.679472][ T1093]  ? do_raw_spin_unlock+0x4d/0x240
[  158.679494][ T1093]  writeback_sb_inodes+0x6c7/0x1010
[  158.679511][ T1093]  ? lockdep_hardirqs_on+0x9c/0x150
[  158.679552][ T1093]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  158.679608][ T1093]  ? rcu_is_watching+0x15/0xb0
[  158.679634][ T1093]  wb_writeback+0x43b/0xaf0
[  158.679660][ T1093]  ? queue_io+0x361/0x590
[  158.679682][ T1093]  ? __pfx_wb_writeback+0x10/0x10
[  158.679708][ T1093]  ? _raw_spin_unlock_irq+0x23/0x50
[  158.679730][ T1093]  wb_workfn+0x409/0xef0
[  158.679760][ T1093]  ? __pfx_wb_workfn+0x10/0x10
[  158.679781][ T1093]  ? __lock_acquire+0xab9/0xd20
[  158.679812][ T1093]  ? process_scheduled_works+0x9ef/0x17b0
[  158.679834][ T1093]  ? _raw_spin_unlock_irq+0x23/0x50
[  158.679850][ T1093]  ? process_scheduled_works+0x9ef/0x17b0
[  158.679863][ T1093]  ? process_scheduled_works+0x9ef/0x17b0
[  158.679879][ T1093]  process_scheduled_works+0xae1/0x17b0
[  158.679923][ T1093]  ? __pfx_process_scheduled_works+0x10/0x10
[  158.679953][ T1093]  worker_thread+0x8a0/0xda0
[  158.679995][ T1093]  kthread+0x711/0x8a0
[  158.680018][ T1093]  ? __pfx_worker_thread+0x10/0x10
[  158.680032][ T1093]  ? __pfx_kthread+0x10/0x10
[  158.680071][ T1093]  ? _raw_spin_unlock_irq+0x23/0x50
[  158.680086][ T1093]  ? lockdep_hardirqs_on+0x9c/0x150
[  158.680102][ T1093]  ? __pfx_kthread+0x10/0x10
[  158.680120][ T1093]  ret_from_fork+0x3fc/0x770
[  158.680140][ T1093]  ? __pfx_ret_from_fork+0x10/0x10
[  158.680162][ T1093]  ? __switch_to_asm+0x39/0x70
[  158.680179][ T1093]  ? __switch_to_asm+0x33/0x70
[  158.680196][ T1093]  ? __pfx_kthread+0x10/0x10
[  158.680215][ T1093]  ret_from_fork_asm+0x1a/0x30
[  158.680248][ T1093]  </TASK>
[  158.680255][ T1093] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  159.118406][    T9] input: bcm5974 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.155/input/input8
[  159.129380][ T5278] bcm5974 3-1:0.155: could not read from device
[  159.146844][ T5278] bcm5974 3-1:0.155: could not read from device
[  159.151583][    T9] usb 3-1: USB disconnect, device number 11
[  159.528344][ T7812] loop2: detected capacity change from 0 to 32768
[  159.532594][ T7812] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.764 (7812)
[  159.549528][ T7812] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  159.553652][ T7812] BTRFS info (device loop2): using crc32c (crc32c-lib) checksum algorithm
[  159.557126][ T7812] BTRFS info (device loop2): disk space caching is enabled
[  159.569316][ T7812] BTRFS warning (device loop2): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  159.740375][ T7812] BTRFS info (device loop2): rebuilding free space tree
[  159.758404][ T7812] BTRFS info (device loop2): disabling free space tree
[  159.763678][ T7812] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  159.768920][ T7812] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  159.819499][ T7844] netlink: 8 bytes leftover after parsing attributes in process `syz.1.771'.
[  159.924524][ T7846] netlink: 4 bytes leftover after parsing attributes in process `syz.1.772'.
[  159.925913][ T5917] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  159.928099][ T7846] netlink: 4 bytes leftover after parsing attributes in process `syz.1.772'.
[  160.088158][ T7851] loop0: detected capacity change from 0 to 1024
[  160.113265][ T7851] hfsplus: extend alloc file! (16384,256,150995124)
[  160.475318][ T7864] loop2: detected capacity change from 0 to 32768
[  160.481623][ T7864] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.780 (7864)
[  160.505267][ T7864] BTRFS info (device loop2): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  160.509596][ T7864] BTRFS info (device loop2): using xxhash64 (xxhash64-generic) checksum algorithm
[  160.514076][ T7864] BTRFS info (device loop2): disk space caching is enabled
[  160.517123][ T7864] BTRFS warning (device loop2): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  160.565233][ T7864] BTRFS info (device loop2): rebuilding free space tree
[  160.581069][ T7864] BTRFS info (device loop2): disabling free space tree
[  160.584105][ T7864] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  160.588234][ T7864] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  160.636712][ T7864] BTRFS info (device loop2): balance: start -f -sprofiles=data|system|metadata|raid1|dup|raid5|raid1c3,usage=18446744073709551615,usage=4294967295..4294967295,drange=18446744073709551612..8,vrange=288230376151711744..2,limit=65536
[  160.653047][ T7864] BTRFS info (device loop2): balance: ended with status: 0
[  160.691421][ T5917] BTRFS info (device loop2): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  162.151295][ T7906] loop2: detected capacity change from 0 to 32768
[  162.163613][ T7906] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.793 (7906)
[  162.233483][ T7917] loop0: detected capacity change from 0 to 512
[  162.239289][ T7917] EXT4-fs: Ignoring removed nobh option
[  162.348852][ T7917] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #3: comm syz.0.795: corrupted inode contents
[  162.349371][ T7906] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  162.354881][ T7917] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #3: comm syz.0.795: mark_inode_dirty error
[  162.356596][ T7906] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm
[  162.365045][ T7917] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #3: comm syz.0.795: corrupted inode contents
[  162.369178][ T7917] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #3: comm syz.0.795: mark_inode_dirty error
[  162.374648][ T7917] __quota_error: 33 callbacks suppressed
[  162.374659][ T7917] Quota error (device loop0): write_blk: dquota write failed
[  162.379304][ T7917] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  162.383130][ T7917] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.795: Failed to acquire dquot type 0
[  162.619739][ T7906] BTRFS info (device loop2): rebuilding free space tree
[  162.623980][ T7917] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.795: corrupted inode contents
[  162.629088][ T7917] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #16: comm syz.0.795: mark_inode_dirty error
[  162.632215][ T7906] BTRFS info (device loop2): disabling free space tree
[  162.633465][ T7917] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.795: corrupted inode contents
[  162.635539][ T7906] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  162.641118][ T7917] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm syz.0.795: mark_inode_dirty error
[  162.645863][ T7906] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  162.648925][ T7917] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.795: corrupted inode contents
[  162.656967][ T7917] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  162.661761][ T7917] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.795: corrupted inode contents
[  162.678725][ T7917] EXT4-fs error (device loop0): ext4_truncate:4666: inode #16: comm syz.0.795: mark_inode_dirty error
[  162.683790][ T7917] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  162.688618][ T7917] EXT4-fs (loop0): 1 truncate cleaned up
[  162.692829][ T7917] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.696832][ T7917] ext4 filesystem being mounted at /239/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  162.749528][ T7917] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.749622][ T5917] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  163.640875][   T33] audit: type=1326 audit(1755625199.542:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7951 comm="syz.0.803" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  163.653982][   T33] audit: type=1326 audit(1755625199.542:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7951 comm="syz.0.803" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  163.671633][   T33] audit: type=1326 audit(1755625199.542:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7951 comm="syz.0.803" exe="/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  163.690863][   T33] audit: type=1326 audit(1755625199.542:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7951 comm="syz.0.803" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  163.702535][   T33] audit: type=1326 audit(1755625199.542:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7951 comm="syz.0.803" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  163.714443][   T33] audit: type=1326 audit(1755625199.542:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7951 comm="syz.0.803" exe="/syz-executor" sig=0 arch=c000003e syscall=129 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  163.733940][   T33] audit: type=1326 audit(1755625199.542:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7951 comm="syz.0.803" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fedfab85ba7 code=0x7ffc0000
[  163.772438][   T33] audit: type=1326 audit(1755625199.542:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7951 comm="syz.0.803" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fedfab2add9 code=0x7ffc0000
[  164.442729][ T7968] loop2: detected capacity change from 0 to 8192
[  164.641694][ T7974] loop2: detected capacity change from 0 to 512
[  164.646344][ T7974] EXT4-fs: Ignoring removed nobh option
[  164.691803][ T7974] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #3: comm syz.2.814: corrupted inode contents
[  164.698065][ T7974] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #3: comm syz.2.814: mark_inode_dirty error
[  164.707642][ T7974] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #3: comm syz.2.814: corrupted inode contents
[  164.715570][ T7974] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #3: comm syz.2.814: mark_inode_dirty error
[  164.721266][ T7974] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.814: Failed to acquire dquot type 0
[  164.728939][ T7974] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.814: corrupted inode contents
[  164.734115][ T7974] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #16: comm syz.2.814: mark_inode_dirty error
[  164.739118][ T7974] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.814: corrupted inode contents
[  164.747934][ T7974] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #16: comm syz.2.814: mark_inode_dirty error
[  164.752038][ T7974] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.814: corrupted inode contents
[  164.758346][ T7974] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  164.761415][ T7974] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.814: corrupted inode contents
[  164.768472][ T7974] EXT4-fs error (device loop2): ext4_truncate:4666: inode #16: comm syz.2.814: mark_inode_dirty error
[  164.772812][ T7974] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  164.777220][ T7974] EXT4-fs (loop2): 1 truncate cleaned up
[  164.780063][ T7974] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.784065][ T7974] ext4 filesystem being mounted at /258/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  164.802889][ T7974] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.499328][ T8009] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  165.732393][ T8027] bond0: Removing last ns target with arp_interval on
[  165.735462][   T12] bond0: (slave bond_slave_0): interface is now down
[  165.739934][   T12] bond0: (slave bond_slave_1): interface is now down
[  165.742568][   T12] bond0: (slave bridge_slave_1): interface is now down
[  165.833021][ T8038] netlink: 'syz.2.838': attribute type 16 has an invalid length.
[  165.836594][ T8038] netlink: 'syz.2.838': attribute type 17 has an invalid length.
[  168.682921][ T8102] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.863'.
[  168.686038][ T8102] openvswitch: netlink: ufid size 3068 bytes exceeds the range (1, 16)
[  170.212123][   T12] bond0: (slave bond_slave_0): interface is now down
[  170.225923][   T12] bond0: (slave bond_slave_1): interface is now down
[  170.245846][   T12] bond0: (slave bridge_slave_1): interface is now down
[  170.287946][   T12] bond0: now running without any active interface!
[  170.384018][ T8150] netlink: 'syz.0.884': attribute type 16 has an invalid length.
[  170.386492][ T8150] netlink: 'syz.0.884': attribute type 17 has an invalid length.
[  170.553169][ T8154] overlayfs: failed to clone upperpath
[  171.032425][ T8175] sch_tbf: burst 3 is lower than device lo mtu (65550) !
[  171.794088][ T8199] overlayfs: failed to clone lowerpath
[  171.996007][ T8205] fuse: Bad value for 'fd'
[  172.398418][ T8225] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  172.872236][ T5233] Bluetooth: hci1: unexpected Set CIG Parameters response data
[  173.328856][ T8253] netlink: zone id is out of range
[  173.330599][ T8253] netlink: zone id is out of range
[  173.332357][ T8253] netlink: zone id is out of range
[  173.334292][ T8253] netlink: zone id is out of range
[  173.336589][ T8253] netlink: zone id is out of range
[  173.341548][ T8253] netlink: zone id is out of range
[  173.344069][ T8253] netlink: zone id is out of range
[  173.345914][ T8253] netlink: zone id is out of range
[  173.347681][ T8253] netlink: zone id is out of range
[  173.773999][ T8261] 9pnet_fd: Insufficient options for proto=fd
[  174.477713][   T12] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  174.482005][   T12] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  174.488768][   T12] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  174.491483][   T12] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  174.549642][ T8293] netlink: 4 bytes leftover after parsing attributes in process `syz.0.948'.
[  174.674076][ T8299] netlink: 12 bytes leftover after parsing attributes in process `syz.0.951'.
[  174.679774][ T8299] netlink: 16 bytes leftover after parsing attributes in process `syz.0.951'.
[  174.683142][ T8299] netlink: 12 bytes leftover after parsing attributes in process `syz.0.951'.
[  174.687520][ T8299] netlink: 16 bytes leftover after parsing attributes in process `syz.0.951'.
[  174.690457][ T8299] netlink: 5 bytes leftover after parsing attributes in process `syz.0.951'.
[  175.521913][ T8351] fuse: Bad value for 'fd'
[  175.725459][ T8362] netlink: 'syz.2.978': attribute type 10 has an invalid length.
[  175.727927][ T8362] netlink: 2 bytes leftover after parsing attributes in process `syz.2.978'.
[  175.730777][ T8362] team0: entered promiscuous mode
[  175.732364][ T8362] team_slave_0: entered promiscuous mode
[  175.735331][ T8362] team_slave_1: entered promiscuous mode
[  175.737422][ T8362] bridge0: port 2(team0) entered blocking state
[  175.739450][ T8362] bridge0: port 2(team0) entered disabled state
[  175.741634][ T8362] team0: entered allmulticast mode
[  175.743678][ T8362] team_slave_0: entered allmulticast mode
[  175.747170][ T8362] team_slave_1: entered allmulticast mode
[  175.750871][ T8362] bridge0: port 2(team0) entered blocking state
[  175.752981][ T8362] bridge0: port 2(team0) entered forwarding state
[  176.730802][ T8385] net_ratelimit: 166 callbacks suppressed
[  176.730813][ T8385] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  177.222178][ T5233] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  177.226266][ T5233] Bluetooth: hci1: Injecting HCI hardware error event
[  177.230141][ T5233] Bluetooth: hci1: hardware error 0x00
[  177.813891][ T8424] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  177.983700][ T8431] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1006'.
[  178.526635][ T8453] overlayfs: failed to clone upperpath
[  178.879552][ T8476] macvtap1: entered promiscuous mode
[  178.883510][ T8476] batadv0: entered promiscuous mode
[  178.891886][ T8476] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  178.911749][ T8476] batadv0: left promiscuous mode
[  178.914921][ T8479] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1030'.
[  179.443511][ T5233] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  180.037204][ T8522] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1050'.
[  180.041197][ T8522] tc_dump_action: action bad kind
[  183.188093][ T8619] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1095'.
[  183.200482][ T8619] (unnamed net_device) (uninitialized): option arp_interval: invalid value (18446744073709551615)
[  183.204593][ T8619] (unnamed net_device) (uninitialized): option arp_interval: allowed values 0 - 2147483647
[  183.518760][ T8623] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1093'.
[  184.278780][ T8635] netlink: 'syz.2.1101': attribute type 10 has an invalid length.
[  184.306205][ T8635] dummy0: entered promiscuous mode
[  184.311335][ T8635] dummy0: entered allmulticast mode
[  184.314407][ T8635] team0: Port device dummy0 added
[  184.546072][ T8655] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1110'.
[  185.053023][ T8671] overlayfs: failed to clone upperpath
[  185.731436][ T8683] openvswitch: netlink: IP tunnel dst address not specified
[  185.995460][    C1] vcan0: j1939_tp_rxtimer: 0xffff888121dbb000: rx timeout, send abort
[  186.000821][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888121dbb000: 0x2f000: (3) A timeout occurred and this is the connection abort to close the session.
[  186.600530][ T8720] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1140'.
[  186.603930][ T8720] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1140'.
[  186.629334][ T8720] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1140'.
[  186.634688][ T8720] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1140'.
[  186.646441][ T8720] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1140'.
[  186.828999][ T8728] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1146'.
[  186.833380][ T8728] netlink: 660 bytes leftover after parsing attributes in process `syz.0.1146'.
[  186.914615][ T8732] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  190.454328][ T8818] cgroup: fork rejected by pids controller in /syz1
[  190.586251][ T8853] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1189'.
[  192.344694][ T8922] netlink: 'syz.2.1220': attribute type 1 has an invalid length.
[  192.384538][ T8924] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1221'.
[  193.878018][ T8979] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  193.899329][ T8979] batman_adv: batadv0: Removing interface: batadv_slave_0
[  193.917116][ T8979] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[  194.835204][ T9021] overlayfs: failed to resolve './file0': -2
[  195.155004][ T9055] cifs: Unknown parameter 'IT&:"1:ӭ'4,Zz-#F<]%gC
[  195.155004][ T9055] SȘȞZ6'
[  195.617194][ T9099] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1304'.
[  195.824452][ T9105] overlayfs: failed to clone upperpath
[  195.826206][ T9107] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1308'.
[  195.959791][ T9121] cgroup: name respecified
[  196.383718][ T9141] netlink: 'syz.1.1324': attribute type 23 has an invalid length.
[  197.464928][ T9172] netlink: 'syz.1.1339': attribute type 1 has an invalid length.
[  197.488219][ T9170] overlayfs: only single ':' or double '::' sequences of unescaped colons in lowerdir mount option allowed.
[  197.752558][   T33] kauditd_printk_skb: 12 callbacks suppressed
[  197.752583][   T33] audit: type=1107 audit(1755625231.458:92): pid=9189 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  198.401842][ T9225] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1363'.
[  198.422053][ T9226] netlink: 'syz.0.1364': attribute type 15 has an invalid length.
[  198.452937][ T9228] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1365'.
[  198.688787][ T9217] overlayfs: failed to clone upperpath
[  198.778639][ T9240] netlink: 'syz.0.1372': attribute type 2 has an invalid length.
[  198.781917][ T9240] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.1372'.
[  198.788104][ T9240] nbd: must specify at least one socket
[  199.043931][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  199.046469][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  199.401671][ T9266] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1383'.
[  200.865995][ T9324] virtio-fs: tag </dev/md0> not found
[  202.063467][   T33] audit: type=1326 audit(1755625235.480:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9359 comm="syz.2.1426" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[  202.073474][   T33] audit: type=1326 audit(1755625235.480:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9359 comm="syz.2.1426" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[  202.107658][   T33] audit: type=1326 audit(1755625235.508:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9359 comm="syz.2.1426" exe="/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[  202.116983][   T33] audit: type=1326 audit(1755625235.508:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9359 comm="syz.2.1426" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[  202.150306][   T33] audit: type=1326 audit(1755625235.508:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9359 comm="syz.2.1426" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[  202.369588][ T9368] netdevsim0: mtu less than device minimum
[  202.619832][ T9388] lo speed is unknown, defaulting to 1000
[  203.384301][ T9411] tipc: Started in network mode
[  203.395770][ T9411] tipc: Node identity ac14140f, cluster identity 4711
[  203.415653][ T9411] tipc: New replicast peer: 255.255.255.255
[  203.418837][ T9411] tipc: Enabled bearer <udp:syz2>, priority 10
[  204.630802][   T47] tipc: Node number set to 2886997007
[  205.200764][ T9506] lo speed is unknown, defaulting to 1000
[  205.297705][ T9514] netlink: 'syz.0.1497': attribute type 83 has an invalid length.
[  209.714655][   T33] audit: type=1326 audit(1755625242.645:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9622 comm="syz.2.1547" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[  209.722983][ T9625] A link change request failed with some changes committed already. Interface macvlan0 may have been left with an inconsistent configuration, please check.
[  209.739438][   T33] audit: type=1326 audit(1755625242.655:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9622 comm="syz.2.1547" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[  209.770655][   T33] audit: type=1326 audit(1755625242.655:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9622 comm="syz.2.1547" exe="/syz-executor" sig=0 arch=c000003e syscall=92 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[  209.782285][   T33] audit: type=1326 audit(1755625242.655:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9622 comm="syz.2.1547" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[  209.805098][   T33] audit: type=1326 audit(1755625242.655:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9622 comm="syz.2.1547" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063cb8ebe9 code=0x7ffc0000
[  211.998453][ T9686] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  212.213602][ T5915] Bluetooth: hci2: command 0x0406 tx timeout
[  212.599343][   T33] audit: type=1326 audit(1755625245.339:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9697 comm="syz.0.1579" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  212.608743][   T33] audit: type=1326 audit(1755625245.339:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9697 comm="syz.0.1579" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  212.618982][   T33] audit: type=1326 audit(1755625245.339:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9697 comm="syz.0.1579" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  212.633940][   T33] audit: type=1326 audit(1755625245.339:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9697 comm="syz.0.1579" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  212.643673][   T33] audit: type=1326 audit(1755625245.339:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9697 comm="syz.0.1579" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  212.707977][ T9700] IPv6: Can't replace route, no match found
[  214.531473][ T9758] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1607'.
[  214.540211][ T9760] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1608'.
[  215.799699][ T9793] lo speed is unknown, defaulting to 1000
[  216.104414][ T9805] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1626'.
[  217.444207][   T33] kauditd_printk_skb: 15 callbacks suppressed
[  217.444217][   T33] audit: type=1326 audit(1755625249.876:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9856 comm="syz.0.1652" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fedfab8ebe9 code=0x0
[  218.087573][   T33] audit: type=1326 audit(1755625250.475:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9895 comm="syz.0.1671" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  218.097802][   T33] audit: type=1326 audit(1755625250.475:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9895 comm="syz.0.1671" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  218.108564][   T33] audit: type=1326 audit(1755625250.493:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9895 comm="syz.0.1671" exe="/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  218.127114][   T33] audit: type=1326 audit(1755625250.493:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9895 comm="syz.0.1671" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  218.136467][   T33] audit: type=1326 audit(1755625250.493:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9895 comm="syz.0.1671" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  218.145958][   T33] audit: type=1326 audit(1755625250.493:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9895 comm="syz.0.1671" exe="/syz-executor" sig=0 arch=c000003e syscall=280 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  218.154457][   T33] audit: type=1326 audit(1755625250.493:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9895 comm="syz.0.1671" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  218.436494][ T9919] netlink: 'syz.0.1682': attribute type 4 has an invalid length.
[  218.521420][ T9924] lo speed is unknown, defaulting to 1000
[  219.214598][   T33] audit: type=1326 audit(1755625251.410:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9923 comm="syz.0.1684" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fedfab8ebe9 code=0x0
[  220.410697][ T9968] overlayfs: failed to clone upperpath
[  220.722382][ T9985] netlink: 'syz.2.1710': attribute type 1 has an invalid length.
[  220.772680][ T9981] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1706'.
[  220.799615][ T9985] bond1: (slave gretap1): making interface the new active one
[  220.803720][ T9985] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  220.804288][ T9988] netlink: 'syz.0.1711': attribute type 1 has an invalid length.
[  220.845502][ T9985] bond1: (slave gretap2): Enslaving as an active interface with an up link
[  221.730918][T10052] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1740'.
[  221.977838][T10063] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1746'.
[  222.361766][T10072] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1749'.
[  223.100920][T10094] netlink: 172 bytes leftover after parsing attributes in process `syz.0.1759'.
[  223.107473][T10094] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1759'.
[  223.111391][T10094] netlink: 172 bytes leftover after parsing attributes in process `syz.0.1759'.
[  223.117829][T10094] netlink: 100 bytes leftover after parsing attributes in process `syz.0.1759'.
[  223.121552][T10094] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1759'.
[  223.238631][T10096] lo speed is unknown, defaulting to 1000
[  225.447120][T10139] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1779'.
[  227.236513][T10187] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1800'.
[  228.957811][T10237] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  228.981824][T10239] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  229.433240][T10257] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1832'.
[  229.504790][   T33] audit: type=1326 audit(1755625261.157:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10259 comm="syz.2.1833" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f063cb8ebe9 code=0x0
[  230.610248][T10296] netlink: 'syz.1.1848': attribute type 3 has an invalid length.
[  231.799918][T10345] overlayfs: failed to clone upperpath
[  231.874731][T10352] vlan0: entered promiscuous mode
[  233.521017][   T33] audit: type=1326 audit(1755625264.917:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10391 comm="syz.0.1891" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fedfab8ebe9 code=0x0
[  233.717454][T10399] 9pnet_fd: Insufficient options for proto=fd
[  233.777889][T10403] macsec2: entered allmulticast mode
[  233.780201][T10403] bond0: entered allmulticast mode
[  233.782866][T10403] bond_slave_0: entered allmulticast mode
[  233.785325][T10403] bond_slave_1: entered allmulticast mode
[  233.787601][T10403] syz_tun: entered allmulticast mode
[  233.798182][T10403] bond0: left allmulticast mode
[  233.800336][T10403] bond_slave_0: left allmulticast mode
[  233.802572][T10403] bond_slave_1: left allmulticast mode
[  233.805337][T10403] syz_tun: left allmulticast mode
[  233.949299][T10413] netlink: 34 bytes leftover after parsing attributes in process `syz.1.1901'.
[  234.646025][T10423] GUP no longer grows the stack in syz.0.1905 (10423): 200000005000-200000008000 (200000004000)
[  234.651450][T10423] CPU: 0 UID: 0 PID: 10423 Comm: syz.0.1905 Not tainted syzkaller #0 PREEMPT(full) 
[  234.651474][T10423] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  234.651483][T10423] Call Trace:
[  234.651490][T10423]  <TASK>
[  234.651498][T10423]  dump_stack_lvl+0x189/0x250
[  234.651527][T10423]  ? __pfx_dump_stack_lvl+0x10/0x10
[  234.651546][T10423]  ? __pfx__printk+0x10/0x10
[  234.651565][T10423]  ? find_vma+0xe7/0x160
[  234.651596][T10423]  fixup_user_fault+0x661/0x720
[  234.651620][T10423]  fault_in_user_writeable+0x72/0xe0
[  234.651641][T10423]  futex_lock_pi+0x773/0xa90
[  234.651670][T10423]  ? __pfx_futex_lock_pi+0x10/0x10
[  234.651714][T10423]  ? __pfx_futex_wake_mark+0x10/0x10
[  234.651747][T10423]  ? __pfx_userfaultfd_unmap_complete+0x10/0x10
[  234.651775][T10423]  do_futex+0x292/0x420
[  234.651799][T10423]  ? __pfx_do_futex+0x10/0x10
[  234.651818][T10423]  ? __vm_munmap+0x301/0x3d0
[  234.651841][T10423]  __se_sys_futex+0x36f/0x400
[  234.651866][T10423]  ? __pfx___se_sys_futex+0x10/0x10
[  234.651885][T10423]  ? rcu_is_watching+0x15/0xb0
[  234.651905][T10423]  ? __x64_sys_futex+0x21/0xf0
[  234.651927][T10423]  do_syscall_64+0xfa/0x3b0
[  234.651948][T10423]  ? lockdep_hardirqs_on+0x9c/0x150
[  234.651966][T10423]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.651981][T10423]  ? exc_page_fault+0x9f/0xf0
[  234.652002][T10423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.652018][T10423] RIP: 0033:0x7fedfab8ebe9
[  234.652032][T10423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  234.652046][T10423] RSP: 002b:00007fedfb9bb038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  234.652063][T10423] RAX: ffffffffffffffda RBX: 00007fedfadb5fa0 RCX: 00007fedfab8ebe9
[  234.652074][T10423] RDX: 00000000fffffffd RSI: 000000000000008d RDI: 0000200000004000
[  234.652125][T10423] RBP: 00007fedfac11e19 R08: 0000000000000000 R09: 0000000000000000
[  234.652136][T10423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  234.652146][T10423] R13: 00007fedfadb6038 R14: 00007fedfadb5fa0 R15: 00007ffe0c3cde88
[  234.652172][T10423]  </TASK>
[  234.792706][   T33] audit: type=1326 audit(1755625266.105:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10425 comm="syz.0.1907" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  234.817047][   T33] audit: type=1326 audit(1755625266.105:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10425 comm="syz.0.1907" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  234.831634][   T33] audit: type=1326 audit(1755625266.105:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10425 comm="syz.0.1907" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  234.840039][   T33] audit: type=1326 audit(1755625266.105:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10425 comm="syz.0.1907" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  234.849451][   T33] audit: type=1326 audit(1755625266.105:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10425 comm="syz.0.1907" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  234.859000][   T33] audit: type=1326 audit(1755625266.105:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10425 comm="syz.0.1907" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  234.869719][   T33] audit: type=1326 audit(1755625266.115:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10425 comm="syz.0.1907" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedfab8ebe9 code=0x7ffc0000
[  234.878399][   T33] audit: type=1326 audit(1755625266.115:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10425 comm="syz.0.1907" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fedfab85ba7 code=0x7ffc0000
[  234.887109][   T33] audit: type=1326 audit(1755625266.115:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10425 comm="syz.0.1907" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fedfab2add9 code=0x7ffc0000
[  234.896195][   T33] audit: type=1326 audit(1755625266.115:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10425 comm="syz.0.1907" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fedfab85ba7 code=0x7ffc0000
[  234.906617][   T33] audit: type=1326 audit(1755625266.115:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10425 comm="syz.0.1907" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fedfab2add9 code=0x7ffc0000
[  234.915234][   T33] audit: type=1326 audit(1755625266.115:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10425 comm="syz.0.1907" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fedfab85ba7 code=0x7ffc0000
[  234.926247][   T33] audit: type=1326 audit(1755625266.115:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10425 comm="syz.0.1907" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fedfab2add9 code=0x7ffc0000
[  234.934977][   T33] audit: type=1326 audit(1755625266.115:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10425 comm="syz.0.1907" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fedfab85ba7 code=0x7ffc0000
[  234.944731][   T33] audit: type=1326 audit(1755625266.115:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10425 comm="syz.0.1907" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fedfab2add9 code=0x7ffc0000
Connection to localhost closed by remote host.
[  235.606699][ T8329] bond0: (slave syz_tun): Releasing backup interface
[  235.890911][ T5931] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.056183][ T5931] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.157780][ T5931] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.212380][ T5931] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.388807][ T5931] team0: left allmulticast mode
[  236.391291][ T5931] team_slave_0: left allmulticast mode
[  236.394560][ T5931] team_slave_1: left allmulticast mode
[  236.398124][ T5931] dummy0: left allmulticast mode
[  236.405007][ T5931] bridge0: port 2(team0) entered disabled state
[  236.414748][ T5931] bridge_slave_0: left allmulticast mode
[  236.417122][ T5931] bridge_slave_0: left promiscuous mode
[  236.419542][ T5931] bridge0: port 1(bridge_slave_0) entered disabled state
[  236.643858][ T5931] bond1 (unregistering): (slave gretap1): Releasing active interface
[  236.647124][ T5931] bond1 (unregistering): (slave gretap1): the permanent HWaddr of slave - 8a:9b:e5:70:69:92 - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  236.656636][ T5931] bond1 (unregistering): (slave gretap2): making interface the new active one
[  236.676776][ T5931] bond1 (unregistering): (slave gretap2): Releasing active interface
[  236.916549][ T5931] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  236.924501][ T5931] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  236.930200][ T5931] bond0 (unregistering): (slave bridge_slave_1): Releasing backup interface
[  236.935169][ T5931] bond0 (unregistering): Released all slaves
[  236.951039][ T5931] bond1 (unregistering): Released all slaves
[  237.023284][ T5931] tipc: Disabling bearer <udp:syz2>
[  237.025925][ T5931] tipc: Left network mode
[  237.395246][ T5931] hsr_slave_0: left promiscuous mode
[  237.399494][ T5931] hsr_slave_1: left promiscuous mode
[  237.402282][ T5931] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  237.405346][ T5931] batman_adv: batadv0: Removing interface: batadv_slave_0
[  237.412752][ T5931] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  237.417919][ T5931] batman_adv: batadv0: Removing interface: batadv_slave_1
[  237.446494][ T5931] veth1_macvtap: left promiscuous mode
[  237.449451][ T5931] veth0_macvtap: left promiscuous mode
[  237.958290][ T5931] team_slave_1 (unregistering): left promiscuous mode
[  237.962171][ T5931] team0 (unregistering): Port device team_slave_1 removed
[  238.008531][ T5931] team_slave_0 (unregistering): left promiscuous mode
[  238.012771][ T5931] team0 (unregistering): Port device team_slave_0 removed
[  238.426634][ T5931] dummy0 (unregistering): left promiscuous mode
[  238.431078][ T5931] team0 (unregistering): Port device dummy0 removed

VM DIAGNOSIS:
17:41:23  Registers:
info registers vcpu 0

CPU#0
RAX=47f99a6691e20d00 RBX=ffffffff819683a8 RCX=47f99a6691e20d00 RDX=0000000000000001
RSI=ffffffff8d9b6935 RDI=ffffffff8be33300 RBP=ffffffff8de07eb8 RSP=ffffffff8de07d80
R8 =ffff88804b032f9b R9 =1ffff110096065f3 R10=dffffc0000000000 R11=ffffed10096065f4
R12=ffffffff8fa37e30 R13=0000000000000000 R14=0000000000000000 R15=1ffffffff1bd2a20
RIP=ffffffff8b7943f3 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880b861c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000055b27b32f680 CR3=000000010f084000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000009f35df4 0000000000000000 XMM01=0100000000000100 0000000000000000
XMM02=65626d6520002e74 736f686c61636f6c XMM03=0000000000000000 0000000000000000
XMM04=ffffffffffffff00 0000000000000000 XMM05=0100000000000000 00000000000002ff
XMM06=0100000000000000 00000000000002ff XMM07=0000000000000000 0000000000000000
XMM08=0000000000000000 0000000000000000 XMM09=0000000000000000 0000000000000000
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=e5404ee9a553dc00 RBX=ffffffff819683a8 RCX=e5404ee9a553dc00 RDX=0000000000000001
RSI=ffffffff8d9b6935 RDI=ffffffff8be33300 RBP=ffffc90000177f20 RSP=ffffc90000177de0
R8 =ffff888136632f9b R9 =1ffff11026cc65f3 R10=dffffc0000000000 R11=ffffed1026cc65f4
R12=ffffffff8fa37e30 R13=0000000000000001 R14=0000000000000001 R15=1ffff110200d5000
RIP=ffffffff8b7943f3 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8881a3c1c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fcb96856580 CR3=000000000df36000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00ff000000000000 0000000000000000 XMM01=ff00000000000000 0000000000000000
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 0000000000000000 XMM05=0000000000000000 0000000000000000
XMM06=0000000000000000 0000000000000000 XMM07=0000000000000000 0000000000000000
XMM08=0000000000000000 0000000000000000 XMM09=0000000000000000 0000000000000000
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
