last executing test programs:

55.516991649s ago: executing program 2 (id=45):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000400), &(0x7f0000000300)=0x8)

55.411080943s ago: executing program 2 (id=46):
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000080000000000000008000000811160000000000095"], &(0x7f0000000c40)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)

55.409713104s ago: executing program 2 (id=47):
r0 = socket$igmp(0x2, 0x3, 0x2)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x32, 0xffffffffffffffff, 0x0)
setsockopt$MRT_ADD_MFC(r0, 0x0, 0xcc, &(0x7f0000000040)={@broadcast, @multicast1, 0x1, "3dab2026179e3f9e94f795c462aef6c3ea5725a79a084ad573851312355a1302", 0xff, 0x3, 0x6, 0x2}, 0x3c)
setsockopt$MRT_DEL_MFC(r0, 0x0, 0xcd, &(0x7f0000000080)={@local, @dev={0xac, 0x14, 0x14, 0x28}, 0x1, "a25cfc95e75c9c55d5257a3fc5cf22adcb205d64f04fc93f830b020f52814d58", 0x2, 0xffffffff, 0x5, 0xfff}, 0x3c)

55.270064478s ago: executing program 2 (id=48):
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f90324fc60", 0x14}], 0x1}, 0x0)
recvmmsg(r0, &(0x7f0000001780)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000004c0)=""/4070, 0xfe6}, {&(0x7f0000000340)=""/70, 0x46}], 0x2}}, {{0x0, 0x0, 0x0}, 0xc9a}], 0x2, 0x0, 0x0)

55.171307089s ago: executing program 2 (id=49):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x220)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x30)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x40000, 0x120)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x888000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r2, 0xc018937c, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r1, {0x1}}, './file0\x00'})

55.116510896s ago: executing program 2 (id=51):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000006c0)={<r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth0_to_bridge\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=@newqdisc={0x78, 0x24, 0xd0f, 0x50bd2d, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0xa}, {0xffff, 0xffff}, {0xc, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x4c, 0x2, [@TCA_TBF_PRATE64={0xc, 0x5, 0x67eb6bf12151d48d}, @TCA_TBF_PARMS={0x28, 0x1, {{0x0, 0x1, 0x957, 0x1, 0x40, 0x10001}, {0x8, 0x2, 0xd, 0x92b, 0x200, 0x2e}, 0x3, 0x9, 0x14c5}}, @TCA_TBF_RATE64={0xc, 0x4, 0xcd3d9f535b42d61}, @TCA_TBF_PBURST={0x8, 0x7, 0x126e}]}}]}, 0x78}}, 0x44080)

39.887941748s ago: executing program 32 (id=51):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000006c0)={<r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth0_to_bridge\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=@newqdisc={0x78, 0x24, 0xd0f, 0x50bd2d, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0xa}, {0xffff, 0xffff}, {0xc, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x4c, 0x2, [@TCA_TBF_PRATE64={0xc, 0x5, 0x67eb6bf12151d48d}, @TCA_TBF_PARMS={0x28, 0x1, {{0x0, 0x1, 0x957, 0x1, 0x40, 0x10001}, {0x8, 0x2, 0xd, 0x92b, 0x200, 0x2e}, 0x3, 0x9, 0x14c5}}, @TCA_TBF_RATE64={0xc, 0x4, 0xcd3d9f535b42d61}, @TCA_TBF_PBURST={0x8, 0x7, 0x126e}]}}]}, 0x78}}, 0x44080)

25.897150744s ago: executing program 0 (id=418):
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$GIO_UNISCRNMAP(r0, 0x4b69, &(0x7f0000000000)=""/251)

25.839536593s ago: executing program 0 (id=420):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x1, 0x4, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x20}, 0x94)
rt_sigqueueinfo(0x0, 0x11, &(0x7f00000002c0)={0x9, 0x6, 0x100})

25.790997502s ago: executing program 0 (id=422):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000100)='./file1\x00', 0x1000803, &(0x7f0000002ac0)=ANY=[], 0x0, 0x1fb, &(0x7f0000000b00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x0, 0x0)
fadvise64(r0, 0xaa17, 0xff39, 0x3)

25.650861835s ago: executing program 0 (id=424):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000000), 0xfc, 0x582, &(0x7f0000000b40)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x1c0000000, 0x8005, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x200]})
mount(0x0, &(0x7f0000000240)='.\x00', 0x0, 0x2200020, 0x0)

25.477056328s ago: executing program 0 (id=428):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x7142, 0x0)
bind$inet(r0, 0x0, 0x0)

25.175379501s ago: executing program 0 (id=436):
r0 = socket(0x1000000000000010, 0x80802, 0x0)
sendmsg(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000200)="5500000018007fd500fe01b2a4a280930a06000000a843089100fe800c00080008000c00080000002d000f009b2c136ef75afb83de448daa72540d8102d2c55327c43abeb82286ef1fdd20648083656d4d24491550", 0x55}], 0x1}, 0x48000)

25.028388616s ago: executing program 33 (id=436):
r0 = socket(0x1000000000000010, 0x80802, 0x0)
sendmsg(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000200)="5500000018007fd500fe01b2a4a280930a06000000a843089100fe800c00080008000c00080000002d000f009b2c136ef75afb83de448daa72540d8102d2c55327c43abeb82286ef1fdd20648083656d4d24491550", 0x55}], 0x1}, 0x48000)

2.980283021s ago: executing program 4 (id=737):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x30, 0x1, 0x1, 0x301, 0x0, 0x0, {0xa, 0x0, 0x3}, [@CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x12c}]}, @CTA_TUPLE_ORIG={0x10, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x8008001}, 0x24008854)

2.980028446s ago: executing program 4 (id=738):
syz_mount_image$bcachefs(&(0x7f00000000c0), &(0x7f00000003c0)='./file1\x00', 0x810, &(0x7f00000017c0)=ANY=[], 0xff, 0x5aa3, &(0x7f0000012f40)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x82400, 0x184)
lseek(r0, 0x12, 0x1)
getdents(r0, 0x0, 0x40)

2.759957696s ago: executing program 1 (id=743):
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x1, 0x5, 0x9, 0x84, 0x144}, 0x48)

2.700732677s ago: executing program 1 (id=744):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="fc000000190001000000000000000000bf010000000000000000000000000001ac1414bb00000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000a900000000000000000000000000000000000000000000000000000000000000ffffffffffffffff000000000000000000000040000000000000000000000000000a000000000000000000000080400000000000000000080000000000000000000000000000000044000500ac1414aa000000000000000000000000000000003c00000000000000ffffffff000000000000000000000000000000000003fe"], 0xfc}}, 0x0)
syz_emit_ethernet(0x46, &(0x7f00000009c0)={@link_local, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x10, 0x3a, 0xff, @private2={0xfc, 0x2, '\x00', 0x1}, @mcast2, {[], @ndisc_ra}}}}}, 0x0)

2.700527209s ago: executing program 1 (id=745):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b3", 0x40}], 0x2, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000200)=""/83, 0x53}], 0x1}, 0x0)

2.689421827s ago: executing program 4 (id=746):
syz_emit_ethernet(0x7e, &(0x7f0000000300)={@multicast, @local, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010100", 0x48, 0x11, 0x0, @remote, @local, {[], {0x4e20, 0xe22, 0x48, 0x0, @wg=@cookie={0x3, 0x2, "88c73ba1f267636d01dbe5712c1c941e1cdafbbb43f09c70", "e13808ca72381f41e5fff9620915b6f78670dfaf9a2038083179cf6b7931c9b4"}}}}}}}, 0x0)

2.610578253s ago: executing program 1 (id=747):
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000040)={0x0, 0x0, 0x10000, 0x0, 0x0, 0xfffffffd})
r0 = syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x40)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000300)={0x53, 0x0, 0x6, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000140)="ad5e02c912b8", 0x0, 0x1, 0x14, 0x0, 0x0})

2.610299969s ago: executing program 1 (id=748):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="3400000011000500040000000000000007000000", @ANYRES32=r2, @ANYBLOB="000000000a00000014001a80100004800c000280080001"], 0x34}}, 0x0)

2.540522286s ago: executing program 1 (id=749):
syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', 0x0, 0x0, 0x0)
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
sendmsg$nl_crypto(0xffffffffffffffff, 0x0, 0x0)
ioctl(r0, 0x8b2d, 0x0)
openat$uinput(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r1 = syz_io_uring_setup(0x3f, &(0x7f0000000040)={0x0, 0x0, 0x80, 0xffffff7f, 0x3c0}, 0x0, 0x0)
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r1, 0x2, 0x0, 0xfe)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
syz_open_dev$sndctrl(0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_setup(0x82e, 0x0, &(0x7f0000000100), 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
syz_usb_connect(0x6, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x61, 0x11, 0x78}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f0000000200)=""/4096, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x70)

1.681849014s ago: executing program 4 (id=751):
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getsockopt$IP_VS_SO_GET_DESTS(0xffffffffffffffff, 0x0, 0x484, 0x0, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x9, 0x18, 0x8, 0x40, 0x42, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000580), 0x1000, r1}, 0x38)

1.508961325s ago: executing program 3 (id=754):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000200)={[{@namecase}, {@discard}, {@errors_continue}, {@errors_remount}, {@utf8}, {@discard}, {@sys_tz}, {@errors_continue}, {@namecase}, {@time_offset={'time_offset', 0x3d, 0x80000000}}]}, 0x1, 0x1526, &(0x7f00000037c0)="$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")

1.50882811s ago: executing program 3 (id=755):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0xb, 0x248}, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(0xffffffffffffffff, 0x0, 0x1a, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
sendmsg$IPVS_CMD_NEW_DEST(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, 0x0}, 0x800)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f00000006c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000500)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x1, 0x404, [{0x0, 0x3, 0x4}]}, @restrict]}}, &(0x7f0000000600)=""/195, 0x3e, 0xc3, 0x1}, 0x28)
socket$unix(0x1, 0x5, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCSETA(r1, 0x560a, &(0x7f0000001040)={0x0, 0x3, 0x0, 0x20, 0x2, "08000000f28f00"})

1.259878821s ago: executing program 3 (id=756):
syz_usb_connect$cdc_ecm(0x2, 0x59, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000020000102505a1a440000000010109024700010100800309040007ff02020000052406000005240000000d240f010000000000000000000424130903240702"], 0x0)

650.980388ms ago: executing program 4 (id=757):
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x60042, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r0, 0x402c5342, &(0x7f0000000040)={0x0, 0x8, 0x60})

650.786208ms ago: executing program 4 (id=758):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000580)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x45, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x240}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f00000000c0)={[{@quota}]})

60.437647ms ago: executing program 3 (id=759):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x40, 0x7ffc1ffb}]})
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = dup(r0)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x85, &(0x7f0000000540), &(0x7f00000000c0)=0x8)

60.120476ms ago: executing program 3 (id=760):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a40000000140a050000000000000000000200000208000340000000020c00064000000000000000030900010073797a3000"], 0x6f4}}, 0x0)

0s ago: executing program 3 (id=761):
r0 = openat$uhid(0xffffffffffffff9c, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6(0xa, 0x2, 0x0)
mount$binderfs(0x0, &(0x7f00000023c0)='./binderfs\x00', &(0x7f0000002400), 0x4000, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x10000018, {0x0, 0x0, 0x0, 0x0, {0x1}, {}, {0xe}}, [@TCA_INGRESS_BLOCK={0x8}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}}, 0x0)
r5 = fsopen(&(0x7f0000000340)='ocfs2_dlmfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_SET_BINARY(r5, 0x2, &(0x7f0000000200)='/dev/snd/midiC#D#\x00', &(0x7f0000000d80)="fb", 0x1)
write$UHID_CREATE(r0, &(0x7f0000000000)={0x0, {'syz0\x00', 'syz0\x00', 'syz0\x00', 0x0, 0x0, 0xfffc, 0x4, 0x4000, 0x0, 0xc08}}, 0x120)

kernel console output (not intermixed with test programs):

 43 of nid 36
[   53.619848][ T6100] loop1: detected capacity change from 0 to 1024
[   53.622930][ T6100] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[   53.626466][ T6100] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   53.630211][ T6100] EXT4-fs (loop1): invalid journal inode
[   53.632321][ T6100] EXT4-fs (loop1): can't get journal size
[   53.636378][ T6100] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 17104912: comm syz.1.71: lblock 2 mapped to illegal pblock 17104912 (length 1)
[   53.643375][ T6100] EXT4-fs (loop1): failed to initialize system zone (-117)
[   53.647275][ T6100] EXT4-fs (loop1): mount failed
[   53.683550][ T6103] process 'syz.1.72' launched './file0' with NULL argv: empty string added
[   53.822377][ T6105] loop1: detected capacity change from 0 to 40427
[   53.829553][ T6105] F2FS-fs (loop1): Invalid log blocks per segment (327689)
[   53.832266][ T6105] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[   53.836622][ T6105] F2FS-fs (loop1): invalid crc value
[   53.858041][ T6105] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   53.862942][ T5851] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.866700][ T6105] F2FS-fs (loop1): Start checkpoint disabled!
[   53.869847][ T6105] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[   53.872561][ T6105] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[   53.886440][ T6105] F2FS-fs (loop1): Stopped filesystem due to reason: 0
[   53.896787][ T6105] syz.1.73: attempt to access beyond end of device
[   53.896787][ T6105] loop1: rw=0, sector=45064, nr_sectors = 8 limit=40427
[   53.955104][ T6111] loop0: detected capacity change from 0 to 4096
[   53.959333][ T6111] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[   54.181164][ T6119] libceph: resolve '400' (ret=-3): failed
[   54.316452][ T5238] Bluetooth: hci1: command tx timeout
[   54.319475][ T5238] Bluetooth: hci0: command tx timeout
[   54.322209][ T5238] Bluetooth: hci2: command tx timeout
[   54.646388][ T5914] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   54.819465][ T5914] usb 2-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac
[   54.823245][ T5914] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   54.826794][ T5914] usb 2-1: Product: syz
[   54.828676][ T5914] usb 2-1: Manufacturer: syz
[   54.830634][ T5914] usb 2-1: SerialNumber: syz
[   54.833845][ T5914] usb 2-1: config 0 descriptor??
[   54.838320][ T5914] gspca_main: sunplus-2.14.0 probing 055f:c230
[   54.968157][ T6130] loop0: detected capacity change from 0 to 1024
[   54.971436][ T6130] EXT4-fs: inline encryption not supported
[   54.973869][ T6130] EXT4-fs: Ignoring removed bh option
[   54.989590][ T6130] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.014738][ T5851] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.726006][ T5854] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   55.896078][ T5854] usb 1-1: Using ep0 maxpacket: 32
[   55.900110][ T5854] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   55.906415][ T5854] usb 1-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[   55.910075][ T5854] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   55.913294][ T5854] usb 1-1: Product: syz
[   55.914938][ T5854] usb 1-1: Manufacturer: syz
[   55.918762][ T5854] usb 1-1: SerialNumber: syz
[   55.921627][ T5854] usb 1-1: config 0 descriptor??
[   55.924679][ T5854] cdc_ether 1-1:0.0: skipping garbage
[   55.927362][ T5854] usb 1-1: bad CDC descriptors
[   55.929820][ T5854] usb 1-1: unsupported MDLM descriptors
[   56.050142][ T5912] usb 2-1: USB disconnect, device number 3
[   56.129600][ T5914] usb 1-1: USB disconnect, device number 3
[   56.603977][ T6158] loop1: detected capacity change from 0 to 4096
[   56.682359][ T6160] netlink: 16 bytes leftover after parsing attributes in process `syz.0.95'.
[   56.867011][ T6171] loop0: detected capacity change from 0 to 8
[   56.877238][ T6171] MTD: Attempt to mount non-MTD device "/dev/loop0"
[   57.039864][ T6177] loop0: detected capacity change from 0 to 512
[   57.044282][ T6177] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   57.065967][ T6177] Quota error (device loop0): v2_read_file_info: Free block number 1090519040 out of range (1, 6).
[   57.070712][ T6177] EXT4-fs warning (device loop0): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   57.078703][ T6177] EXT4-fs (loop0): mount failed
[   57.708927][ T6184] loop0: detected capacity change from 0 to 32768
[   57.729892][ T6184] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   57.784966][ T6184] XFS (loop0): Ending clean mount
[   57.791117][ T6184] XFS (loop0): Quotacheck needed: Please wait.
[   57.800763][ T6184] XFS (loop0): Quotacheck: Done.
[   57.835769][ T5851] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   57.957124][ T6198] loop0: detected capacity change from 0 to 256
[   58.189025][ T6213] netlink: 92 bytes leftover after parsing attributes in process `syz.0.114'.
[   58.191976][ T6213] netlink: 16 bytes leftover after parsing attributes in process `syz.0.114'.
[   58.257008][ T6221] loop0: detected capacity change from 0 to 1024
[   58.279585][ T6221] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   58.284622][ T6221] ext4 filesystem being mounted at /55/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.291105][   T33] audit: type=1800 audit(1755835745.833:2): pid=6221 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.118" name="file1" dev="loop0" ino=15 res=0 errno=0
[   58.301095][ T5851] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   58.343852][ T6227] loop0: detected capacity change from 0 to 1024
[   58.368665][ T6227] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   58.373697][ T6227] ext4 filesystem being mounted at /57/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.382661][   T33] audit: type=1800 audit(1755835745.923:3): pid=6227 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.120" name="file1" dev="loop0" ino=15 res=0 errno=0
[   58.390926][ T6227] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[   58.398152][ T6227] EXT4-fs (loop0): Remounting filesystem read-only
[   58.412857][ T5851] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.501976][ T6239] loop0: detected capacity change from 0 to 16
[   58.504653][ T6239] erofs (device loop0): DAX unsupported by block device. Turning off DAX.
[   58.512071][ T6239] erofs (device loop0): mounted with root inode @ nid 36.
[   58.597740][ T6247] openvswitch: netlink: Geneve option length err (len 612, max 255).
[   58.837725][ T6253] netlink: 16 bytes leftover after parsing attributes in process `syz.1.132'.
[   58.840884][ T6253] netlink: 16 bytes leftover after parsing attributes in process `syz.1.132'.
[   58.870690][    T9] usb 1-1: new full-speed USB device number 4 using dummy_hcd
[   58.900180][ T6259] netlink: 28 bytes leftover after parsing attributes in process `syz.1.135'.
[   58.903324][ T6259] netlink: 'syz.1.135': attribute type 7 has an invalid length.
[   58.907005][ T6259] netlink: 'syz.1.135': attribute type 8 has an invalid length.
[   58.910128][ T6259] netlink: 8 bytes leftover after parsing attributes in process `syz.1.135'.
[   59.033882][    T9] usb 1-1: config 0 has an invalid interface number: 128 but max is 0
[   59.037930][    T9] usb 1-1: config 0 has no interface number 0
[   59.040173][    T9] usb 1-1: config 0 interface 128 altsetting 6 endpoint 0x5 has invalid maxpacket 1024, setting to 1023
[   59.044454][    T9] usb 1-1: config 0 interface 128 altsetting 6 endpoint 0xF has invalid maxpacket 512, setting to 64
[   59.048517][    T9] usb 1-1: config 0 interface 128 altsetting 6 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[   59.052415][    T9] usb 1-1: config 0 interface 128 has no altsetting 0
[   59.059563][    T9] usb 1-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=95.91
[   59.063947][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   59.067131][    T9] usb 1-1: Product: syz
[   59.068628][    T9] usb 1-1: Manufacturer: syz
[   59.070307][    T9] usb 1-1: SerialNumber: syz
[   59.074080][    T9] usb 1-1: config 0 descriptor??
[   59.082529][    T9] radio-si470x 1-1:0.128: could not find interrupt in endpoint
[   59.085218][    T9] radio-si470x 1-1:0.128: probe with driver radio-si470x failed with error -5
[   59.088768][    T9] usbhid 1-1:0.128: couldn't find an input interrupt endpoint
[   59.310101][    T9] usb 1-1: USB disconnect, device number 4
[   60.039136][ T6270] loop0: detected capacity change from 0 to 32768
[   60.060952][ T6272] loop1: detected capacity change from 0 to 40427
[   60.063822][ T6272] F2FS-fs (loop1): build fault injection rate: 771
[   60.067274][ T6272] F2FS-fs (loop1): invalid crc value
[   60.084276][ T6272] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   60.088605][ T6272] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   60.095333][ T6270] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[   60.095348][ T6270]   allowing incompatible features above 0.0: (unknown version)
[   60.095352][ T6270]   features: 
[   60.111495][   T33] audit: type=1800 audit(1755835747.653:4): pid=6272 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.141" name="file1" dev="loop1" ino=10 res=0 errno=0
[   60.123295][ T6270] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0
[   60.126406][ T6270] bcachefs (loop0): initializing new filesystem
[   60.132549][ T6270] bcachefs (loop0): going read-write
[   60.137537][ T5846] syz-executor: attempt to access beyond end of device
[   60.137537][ T5846] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   60.142498][ T5846] CPU: 0 UID: 0 PID: 5846 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[   60.142508][ T5846] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   60.142513][ T5846] Call Trace:
[   60.142516][ T5846]  <TASK>
[   60.142520][ T5846]  dump_stack_lvl+0x189/0x250
[   60.142534][ T5846]  ? __pfx_dump_stack_lvl+0x10/0x10
[   60.142542][ T5846]  ? __pfx_queue_work_on+0x10/0x10
[   60.142550][ T5846]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   60.142560][ T5846]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   60.142571][ T5846]  f2fs_handle_critical_error+0x37c/0x540
[   60.142584][ T5846]  f2fs_write_end_io+0x886/0xb60
[   60.142594][ T5846]  __submit_merged_bio+0x27a/0x6a0
[   60.142605][ T5846]  __submit_merged_write_cond+0x255/0x530
[   60.142614][ T5846]  f2fs_write_data_pages+0x261d/0x3000
[   60.142624][ T5846]  ? lock_release+0x4b/0x3e0
[   60.142634][ T5846]  ? lock_release+0x4b/0x3e0
[   60.142648][ T5846]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   60.142660][ T5846]  ? is_bpf_text_address+0x26/0x2b0
[   60.142670][ T5846]  ? rcu_is_watching+0x15/0xb0
[   60.142682][ T5846]  ? unwind_next_frame+0xa5/0x2390
[   60.142691][ T5846]  ? rcu_is_watching+0x15/0xb0
[   60.142697][ T5846]  ? unwind_next_frame+0xa5/0x2390
[   60.142705][ T5846]  ? css_rstat_updated+0x23a/0x4f0
[   60.142714][ T5846]  ? unwind_next_frame+0xa5/0x2390
[   60.142721][ T5846]  ? rcu_is_watching+0x15/0xb0
[   60.142729][ T5846]  ? do_raw_spin_lock+0x121/0x290
[   60.142739][ T5846]  ? do_raw_spin_unlock+0x4d/0x240
[   60.142746][ T5846]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   60.142756][ T5846]  do_writepages+0x32e/0x550
[   60.142767][ T5846]  ? rcu_is_watching+0x15/0xb0
[   60.142774][ T5846]  ? do_raw_spin_unlock+0x4d/0x240
[   60.142789][ T5846]  filemap_fdatawrite+0x199/0x240
[   60.142800][ T5846]  ? __pfx_filemap_fdatawrite+0x10/0x10
[   60.142815][ T5846]  ? rcu_is_watching+0x15/0xb0
[   60.142822][ T5846]  ? do_raw_spin_unlock+0x4d/0x240
[   60.142830][ T5846]  f2fs_sync_dirty_inodes+0x31f/0x830
[   60.142839][ T5846]  f2fs_write_checkpoint+0x95a/0x1df0
[   60.142850][ T5846]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[   60.142862][ T5846]  ? f2fs_stop_gc_thread+0x7f/0xb0
[   60.142869][ T5846]  ? kfree+0x18e/0x440
[   60.142878][ T5846]  ? kill_f2fs_super+0x298/0x6c0
[   60.142886][ T5846]  kill_f2fs_super+0x2c3/0x6c0
[   60.142893][ T5846]  ? __pfx_kill_f2fs_super+0x10/0x10
[   60.142899][ T5846]  ? radix_tree_delete_item+0x2b6/0x400
[   60.142911][ T5846]  ? shrinker_free+0x2ce/0x3e0
[   60.142919][ T5846]  deactivate_locked_super+0xbc/0x130
[   60.142928][ T5846]  cleanup_mnt+0x425/0x4c0
[   60.142937][ T5846]  task_work_run+0x1d4/0x260
[   60.142947][ T5846]  ? __pfx_task_work_run+0x10/0x10
[   60.142956][ T5846]  ? __x64_sys_umount+0x122/0x160
[   60.142965][ T5846]  ? __pfx___x64_sys_umount+0x10/0x10
[   60.142974][ T5846]  ? rcu_is_watching+0x15/0xb0
[   60.142981][ T5846]  exit_to_user_mode_loop+0xec/0x110
[   60.142991][ T5846]  do_syscall_64+0x2bd/0x3b0
[   60.143002][ T5846]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.143010][ T5846]  ? exc_page_fault+0x9f/0xf0
[   60.143019][ T5846]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.143026][ T5846] RIP: 0033:0x7f576b58ff17
[   60.143035][ T5846] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   60.143042][ T5846] RSP: 002b:00007ffebe147058 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   60.143051][ T5846] RAX: 0000000000000000 RBX: 00007f576b611c05 RCX: 00007f576b58ff17
[   60.143056][ T5846] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffebe147110
[   60.143060][ T5846] RBP: 00007ffebe147110 R08: 0000000000000000 R09: 0000000000000000
[   60.143064][ T5846] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffebe1481a0
[   60.143069][ T5846] R13: 00007f576b611c05 R14: 000000000000ea53 R15: 00007ffebe1481e0
[   60.143076][ T5846]  </TASK>
[   60.143079][ T5846] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[   60.280729][ T6270] bcachefs (loop0): marking superblocks
[   60.285819][ T6270] bcachefs (loop0): initializing freespace
[   60.289706][ T6270] bcachefs (loop0): done initializing freespace
[   60.293796][ T6270] bcachefs (loop0): reading snapshots table
[   60.296150][ T6270] bcachefs (loop0): reading snapshots done
[   60.304048][ T6270] bcachefs (loop0): done starting filesystem
[   60.364291][ T6270] syz.0.140 (6270) used greatest stack depth: 16752 bytes left
[   60.372432][ T5851] bcachefs (loop0): shutting down
[   60.374620][ T5851] bcachefs (loop0): going read-only
[   60.377250][ T5851] bcachefs (loop0): finished waiting for writes to stop
[   60.379802][ T5851] bcachefs (loop0): flushing journal and stopping allocators, journal seq 3
[   60.387747][ T5851] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 3
[   60.391135][ T5851] bcachefs (loop0): clean shutdown complete, journal seq 4
[   60.394099][ T5851] bcachefs (loop0): marking filesystem clean
[   60.404341][ T5851] bcachefs (loop0): shutdown complete
[   60.455250][ T6294] Bluetooth: MGMT ver 1.23
[   60.496312][ T6296] netlink: 28 bytes leftover after parsing attributes in process `syz.1.146'.
[   60.499729][ T6296] netlink: 108 bytes leftover after parsing attributes in process `syz.1.146'.
[   60.503947][ T6296] netlink: 28 bytes leftover after parsing attributes in process `syz.1.146'.
[   60.508714][ T6296] netlink: 108 bytes leftover after parsing attributes in process `syz.1.146'.
[   60.597452][ T6302] loop1: detected capacity change from 0 to 8
[   60.605488][ T6302] unable to read xattr id index table
[   61.243518][ T6314] loop0: detected capacity change from 0 to 512
[   61.249424][ T6314] EXT4-fs warning (device loop0): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[   61.254218][ T6314] EXT4-fs warning (device loop0): dx_probe:849: Enable large directory feature to access it
[   61.258783][ T6314] EXT4-fs warning (device loop0): dx_probe:934: inode #2: comm syz.0.143: Corrupt directory, running e2fsck is recommended
[   61.264885][ T6314] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117
[   61.268644][ T6314] EXT4-fs error (device loop0): ext4_iget_extra_inode:5104: inode #15: comm syz.0.143: corrupted in-inode xattr: e_name out of bounds
[   61.274522][ T6314] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.143: couldn't read orphan inode 15 (err -117)
[   61.280324][ T6314] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   61.296998][ T5851] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.958409][ T6329] loop1: detected capacity change from 0 to 32768
[   61.968783][ T6329] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[   61.975703][ T6329] (syz.1.156,6329,1):ocfs2_read_journal_inode:1659 ERROR: status = -13
[   61.978756][ T6329] (syz.1.156,6329,1):ocfs2_mark_dead_nodes:1942 ERROR: status = -13
[   61.981461][ T6329] (syz.1.156,6329,1):ocfs2_check_volume:2420 ERROR: status = -13
[   61.984081][ T6329] (syz.1.156,6329,1):ocfs2_check_volume:2432 ERROR: status = -13
[   61.986819][ T6329] (syz.1.156,6329,1):ocfs2_mount_volume:1764 ERROR: status = -13
[   61.992626][ T6329] (syz.1.156,6329,1):ocfs2_fill_super:1177 ERROR: status = -13
[   62.251899][ T6337] loop0: detected capacity change from 0 to 256
[   62.268623][ T6337] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[   62.280965][ T6337] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512
[   62.284137][ T6337] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[   62.287523][ T6337] UDF-fs: Scanning with blocksize 512 failed
[   62.290118][ T6337] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[   62.294063][ T6337] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   62.328081][ T6343] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   62.381335][ T6345] netlink: 'syz.0.163': attribute type 2 has an invalid length.
[   62.436407][ T6349] loop0: detected capacity change from 0 to 4096
[   62.451256][ T6349] ntfs3(loop0): Failed to initialize $Extend/$ObjId.
[   62.506125][ T5854] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[   62.574509][ T6353] loop0: detected capacity change from 0 to 32768
[   62.588040][ T6353] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   62.597749][ T6353] XFS (loop0): Ending clean mount
[   62.609113][ T5851] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   62.658482][ T5854] usb 2-1: config 0 has an invalid interface number: 101 but max is 0
[   62.661848][ T5854] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   62.667154][ T5854] usb 2-1: config 0 has no interface number 0
[   62.669665][ T5854] usb 2-1: config 0 interface 101 has no altsetting 0
[   62.672377][ T5854] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[   62.676525][ T5854] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   62.680921][ T5854] usb 2-1: config 0 descriptor??
[   62.692869][ T6363] loop0: detected capacity change from 0 to 512
[   62.710053][ T6363] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   62.715395][ T6363] ext4 filesystem being mounted at /81/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   62.737123][ T5851] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.889713][    T9] usb 2-1: USB disconnect, device number 4
[   63.435711][ T6374] loop1: detected capacity change from 0 to 512
[   63.451924][ T6374] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   63.457548][ T6374] ext4 filesystem being mounted at /58/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.491005][ T5846] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.538724][ T6381] loop1: detected capacity change from 0 to 2048
[   63.544258][ T6381] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[   63.571291][ T6383] Zero length message leads to an empty skb
[   63.821116][ T6388] loop0: detected capacity change from 0 to 32768
[   63.824961][ T6388] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[   63.834811][ T6388] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   63.844835][ T6388] ocfs2: Unmounting device (7,0) on (node local)
[   64.823615][ T6407] netlink: 'syz.1.184': attribute type 6 has an invalid length.
[   64.858451][ T6409] syz.1.185 uses obsolete (PF_INET,SOCK_PACKET)
[   65.027086][ T6426] __nla_validate_parse: 3 callbacks suppressed
[   65.027095][ T6426] netlink: 128 bytes leftover after parsing attributes in process `syz.1.192'.
[   65.347240][ T6444] netlink: 'syz.1.202': attribute type 11 has an invalid length.
[   65.474059][ T6448] loop1: detected capacity change from 0 to 40427
[   65.478213][ T6448] F2FS-fs (loop1): invalid crc value
[   65.498198][ T6448] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   65.501654][ T6448] F2FS-fs (loop1): Start checkpoint disabled!
[   65.504564][ T6448] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[   65.527868][   T40] kworker/u10:2: attempt to access beyond end of device
[   65.527868][   T40] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   65.533214][   T40] CPU: 1 UID: 0 PID: 40 Comm: kworker/u10:2 Not tainted syzkaller #0 PREEMPT(full) 
[   65.533225][   T40] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   65.533230][   T40] Workqueue: writeback wb_workfn (flush-7:1)
[   65.533244][   T40] Call Trace:
[   65.533247][   T40]  <TASK>
[   65.533251][   T40]  dump_stack_lvl+0x189/0x250
[   65.533263][   T40]  ? __pfx_dump_stack_lvl+0x10/0x10
[   65.533271][   T40]  ? __pfx_queue_work_on+0x10/0x10
[   65.533279][   T40]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   65.533289][   T40]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   65.533299][   T40]  f2fs_handle_critical_error+0x37c/0x540
[   65.533331][   T40]  f2fs_write_end_io+0x886/0xb60
[   65.533343][   T40]  __submit_merged_bio+0x27a/0x6a0
[   65.533353][   T40]  __submit_merged_write_cond+0x255/0x530
[   65.533363][   T40]  f2fs_write_data_pages+0x261d/0x3000
[   65.533378][   T40]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   65.533390][   T40]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[   65.533402][   T40]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[   65.533414][   T40]  ? trace_f2fs_writepages+0x7f/0x200
[   65.533423][   T40]  ? f2fs_write_node_pages+0x478/0x6e0
[   65.533431][   T40]  ? xa_load+0x60/0x210
[   65.533442][   T40]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[   65.533449][   T40]  ? do_raw_spin_lock+0x121/0x290
[   65.533458][   T40]  ? rcu_is_watching+0x15/0xb0
[   65.533466][   T40]  ? set_shrinker_bit+0x7c/0x350
[   65.533474][   T40]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   65.533484][   T40]  do_writepages+0x32e/0x550
[   65.533494][   T40]  ? unwind_next_frame+0xa5/0x2390
[   65.533504][   T40]  __writeback_single_inode+0x145/0xff0
[   65.533513][   T40]  ? do_raw_spin_unlock+0x4d/0x240
[   65.533522][   T40]  writeback_sb_inodes+0x6c7/0x1010
[   65.533532][   T40]  ? fprop_reflect_period_percpu+0x6b/0x330
[   65.533543][   T40]  ? __pfx_writeback_sb_inodes+0x10/0x10
[   65.533557][   T40]  ? rcu_is_watching+0x15/0xb0
[   65.533565][   T40]  wb_writeback+0x43b/0xaf0
[   65.533574][   T40]  ? queue_io+0x3c1/0x590
[   65.533582][   T40]  ? __pfx_wb_writeback+0x10/0x10
[   65.533592][   T40]  ? rcu_is_watching+0x15/0xb0
[   65.533599][   T40]  wb_workfn+0x409/0xef0
[   65.533607][   T40]  ? __pfx_wb_workfn+0x10/0x10
[   65.533614][   T40]  ? rcu_is_watching+0x15/0xb0
[   65.533625][   T40]  ? rcu_is_watching+0x15/0xb0
[   65.533633][   T40]  ? process_scheduled_works+0x9ef/0x17b0
[   65.533639][   T40]  ? rcu_is_watching+0x15/0xb0
[   65.533645][   T40]  ? lock_acquire+0x5f/0x360
[   65.533656][   T40]  ? rcu_is_watching+0x15/0xb0
[   65.533662][   T40]  ? process_scheduled_works+0x9ef/0x17b0
[   65.533668][   T40]  ? process_scheduled_works+0x9ef/0x17b0
[   65.533674][   T40]  process_scheduled_works+0xae1/0x17b0
[   65.533685][   T40]  ? __pfx_process_scheduled_works+0x10/0x10
[   65.533694][   T40]  worker_thread+0x8a0/0xda0
[   65.533701][   T40]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   65.533711][   T40]  ? __kthread_parkme+0x7b/0x200
[   65.533720][   T40]  kthread+0x711/0x8a0
[   65.533728][   T40]  ? __pfx_worker_thread+0x10/0x10
[   65.533735][   T40]  ? __pfx_kthread+0x10/0x10
[   65.533743][   T40]  ? _raw_spin_unlock_irq+0x23/0x50
[   65.533751][   T40]  ? lockdep_hardirqs_on+0x9c/0x150
[   65.533761][   T40]  ? __pfx_kthread+0x10/0x10
[   65.533769][   T40]  ret_from_fork+0x3fc/0x770
[   65.533777][   T40]  ? __pfx_ret_from_fork+0x10/0x10
[   65.533784][   T40]  ? __switch_to_asm+0x39/0x70
[   65.533793][   T40]  ? __switch_to_asm+0x33/0x70
[   65.533801][   T40]  ? __pfx_kthread+0x10/0x10
[   65.533809][   T40]  ret_from_fork_asm+0x1a/0x30
[   65.533820][   T40]  </TASK>
[   65.533823][   T40] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[   65.815052][ T6457] loop1: detected capacity change from 0 to 512
[   65.819707][ T6457] EXT4-fs error (device loop1): ext4_get_journal_inode:5800: comm syz.1.206: inode #16777216: comm syz.1.206: iget: illegal inode #
[   65.824777][ T6457] EXT4-fs (loop1): Remounting filesystem read-only
[   65.827387][ T6457] EXT4-fs (loop1): no journal found
[   65.829398][ T6457] EXT4-fs (loop1): can't get journal size
[   65.831660][ T6457] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[   65.834906][ T6457] EXT4-fs (loop1): failed to initialize system zone (-22)
[   65.837498][ T6457] EXT4-fs (loop1): mount failed
[   65.948727][ T6464] loop1: detected capacity change from 0 to 32768
[   65.959801][ T6464] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[   65.975060][ T5846] ocfs2: Unmounting device (7,1) on (node local)
[   66.952930][ T5238] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   66.955498][ T5238] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   66.960210][ T5238] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   66.962731][ T5238] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   66.963497][ T6480] netlink: 64 bytes leftover after parsing attributes in process `syz.1.215'.
[   66.965174][ T5238] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   67.038899][ T6477] chnl_net:caif_netlink_parms(): no params data found
[   67.078373][ T6477] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.080892][ T6477] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.083251][ T6477] bridge_slave_0: entered allmulticast mode
[   67.085707][ T6477] bridge_slave_0: entered promiscuous mode
[   67.089043][ T6477] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.092024][ T6477] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.094756][ T6477] bridge_slave_1: entered allmulticast mode
[   67.098440][ T6477] bridge_slave_1: entered promiscuous mode
[   67.110265][ T6477] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   67.115101][ T5715] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.121868][ T6477] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   67.140379][ T6477] team0: Port device team_slave_0 added
[   67.144207][ T6477] team0: Port device team_slave_1 added
[   67.162650][ T5715] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.168037][ T6477] batman_adv: batadv0: Adding interface: batadv_slave_0
[   67.170386][ T6477] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.179633][ T6477] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   67.183924][ T6477] batman_adv: batadv0: Adding interface: batadv_slave_1
[   67.186847][ T6477] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.196190][ T6477] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   67.203099][ T5715] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.225743][ T6477] hsr_slave_0: entered promiscuous mode
[   67.228260][ T6477] hsr_slave_1: entered promiscuous mode
[   67.230681][ T6477] debugfs: 'hsr0' already exists in 'hsr'
[   67.232656][ T6477] Cannot create hsr debugfs directory
[   67.261892][ T5715] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.285820][ T6477] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   67.291184][ T6477] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   67.296145][ T6477] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   67.301659][ T6477] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   67.337549][ T5715] bridge_slave_1: left allmulticast mode
[   67.339956][ T5715] bridge_slave_1: left promiscuous mode
[   67.342390][ T5715] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.347706][ T5715] bridge_slave_0: left allmulticast mode
[   67.350519][ T5715] bridge_slave_0: left promiscuous mode
[   67.352921][ T5715] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.431849][ T5715] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   67.436872][ T5715] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   67.441104][ T5715] bond0 (unregistering): Released all slaves
[   67.458937][ T6477] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.467752][ T6477] bridge0: port 2(bridge_slave_1) entered forwarding state
[   67.476623][ T6477] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.479224][ T6477] bridge0: port 1(bridge_slave_0) entered forwarding state
[   67.496932][ T4282] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.505292][ T4282] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.532081][ T6477] 8021q: adding VLAN 0 to HW filter on device bond0
[   67.541241][ T6477] 8021q: adding VLAN 0 to HW filter on device team0
[   67.547412][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.549785][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[   67.561081][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.563552][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[   67.634519][ T5715] hsr_slave_0: left promiscuous mode
[   67.637783][ T5715] hsr_slave_1: left promiscuous mode
[   67.639816][ T5715] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   67.642272][ T5715] batman_adv: batadv0: Removing interface: batadv_slave_0
[   67.645051][ T5715] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   67.649802][ T5715] batman_adv: batadv0: Removing interface: batadv_slave_1
[   67.654716][ T5715] veth1_macvtap: left promiscuous mode
[   67.656949][ T5715] veth0_macvtap: left promiscuous mode
[   67.658865][ T5715] veth1_vlan: left promiscuous mode
[   67.660707][ T5715] veth0_vlan: left promiscuous mode
[   67.729974][ T5715] team0 (unregistering): Port device team_slave_1 removed
[   67.737215][ T5715] team0 (unregistering): Port device team_slave_0 removed
[   67.802103][ T6477] 8021q: adding VLAN 0 to HW filter on device batadv0
[   67.819898][ T6477] veth0_vlan: entered promiscuous mode
[   67.823789][ T6477] veth1_vlan: entered promiscuous mode
[   67.833997][ T6477] veth0_macvtap: entered promiscuous mode
[   67.839802][ T6477] veth1_macvtap: entered promiscuous mode
[   67.849805][ T6477] batman_adv: batadv0: Interface activated: batadv_slave_0
[   67.855080][ T6477] batman_adv: batadv0: Interface activated: batadv_slave_1
[   67.859993][ T5870] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.867666][ T5870] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   67.874986][ T5870] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.883149][ T5870] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.905255][ T1092] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.910274][ T1092] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.942185][ T1092] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.945207][ T1092] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   68.011442][ T5715] IPVS: stop unused estimator thread 0...
[   68.114390][ T6527] loop1: detected capacity change from 0 to 32768
[   68.143076][ T6527] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   68.191104][ T6527] XFS (loop1): Ending clean mount
[   68.211401][ T6527] XFS (loop1): Quotacheck needed: Please wait.
[   68.222680][ T6527] XFS (loop1): Quotacheck: Done.
[   68.296699][ T5846] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   68.534463][ T6572] loop0: detected capacity change from 0 to 4096
[   68.561748][ T6572] ntfs3(loop0): ino=18, mi_enum_attr
[   68.563621][ T6572] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[   68.577000][ T6572] ntfs3(loop0): ino=1a, mi_enum_attr
[   68.614403][ T6567] loop1: detected capacity change from 0 to 32768
[   68.630757][ T6567] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[   68.654711][ T6582] netlink: 8 bytes leftover after parsing attributes in process `syz.3.236'.
[   68.668756][ T6582] openvswitch: netlink: nsh attribute has unmatched MD type 0.
[   68.670411][ T6584] bridge_slave_0: invalid flags given to default FDB implementation
[   68.674090][ T6582] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   68.688723][ T5846] ocfs2: Unmounting device (7,1) on (node local)
[   68.743399][ T6588] netlink: 4 bytes leftover after parsing attributes in process `syz.3.240'.
[   68.854969][ T6590] loop0: detected capacity change from 0 to 32768
[   68.930685][ T6590] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io
[   68.930705][ T6590]   allowing incompatible features above 0.0: (unknown version)
[   68.930713][ T6590]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   68.952594][ T6590] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0
[   68.968924][ T6590] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[   68.972515][ T6590] bcachefs (loop0): Version upgrade required:
[   68.972515][ T6590] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   68.972515][ T6590] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[   68.972515][ T6590]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[   69.006578][ T6590] bcachefs (loop0): dropping and reconstructing all alloc info
[   69.019080][ T6590] bcachefs (loop0): invalid bkey in btree_node btree=inodes level=0: u64s 18 type inode_v3 0:4099:U32_MAX len 0 ver 0: (unpack error)
[   69.019090][ T6590]   invalid variable length fields, deleting
[   69.033654][ T6590] bcachefs (loop0): accounting_read... done
[   69.036103][ T5849] Bluetooth: hci1: command tx timeout
[   69.039521][ T6590] bcachefs (loop0): alloc_read... done
[   69.042118][ T6590] bcachefs (loop0): snapshots_read... done
[   69.044409][ T6590] bcachefs (loop0): check_allocations... done
[   69.059179][ T6590] bcachefs (loop0): going read-write
[   69.106411][ T6590] bcachefs (loop0): Fixed errors, running fsck a second time to verify fs is clean
[   69.110562][ T6590] bcachefs (loop0): done starting filesystem
[   69.114916][ T1091] bcachefs (loop0): bucket incorrectly unset in freespace btree
[   69.114928][ T1091]   u64s 5 type deleted 0:25:0 len 0 ver 0, , continuing
[   69.203474][ T1091] bcachefs (loop0): bucket incorrectly unset in freespace btree
[   69.203918][ T1091]   u64s 5 type deleted 0:28:0 len 0 ver 0, , continuing
[   69.233025][ T1091] bcachefs (loop0): bucket incorrectly unset in freespace btree
[   69.233035][ T1091]   u64s 5 type deleted 0:26:0 len 0 ver 0, , continuing
[   69.252561][ T1091] bcachefs (loop0): bucket incorrectly unset in freespace btree
[   69.252693][ T1091]   u64s 5 type deleted 0:29:0 len 0 ver 0, , continuing
[   69.265138][   T26] bcachefs (loop0): bucket incorrectly unset in freespace btree
[   69.265216][   T26]   u64s 5 type deleted 0:44:0 len 0 ver 0, , continuing
[   69.280245][ T6626] bcachefs (loop0): inode 4098:4294967295 has wrong backpointer:
[   69.280343][ T6626]   got       0:32
[   69.280348][ T6626]   should be 4096:189491840996961599, fixing
[   69.300896][ T1092] bcachefs (loop0): bucket incorrectly unset in freespace btree
[   69.300905][ T1092]   u64s 5 type deleted 0:48:0 len 0 ver 0, , continuing
[   69.325553][ T6590] syz.0.241 (6590) used greatest stack depth: 15536 bytes left
[   69.330833][ T5851] bcachefs (loop0): shutting down
[   69.332772][ T5851] bcachefs (loop0): going read-only
[   69.334718][ T5851] bcachefs (loop0): finished waiting for writes to stop
[   69.338460][ T5851] bcachefs (loop0): flushing journal and stopping allocators, journal seq 12
[   69.351437][ T1092] bcachefs (loop0): bucket incorrectly unset in freespace btree
[   69.351446][ T1092]   u64s 5 type deleted 0:53:0 len 0 ver 0, , continuing
[   69.356863][ T6625] loop1: detected capacity change from 0 to 32768
[   69.372840][ T5851] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 12
[   69.373249][ T6625] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   69.382354][ T5851] bcachefs (loop0): unclean shutdown complete, journal seq 13
[   69.394554][ T5851] bcachefs (loop0): done going read-only, filesystem not clean
[   69.469457][ T6625] XFS (loop1): Ending clean mount
[   69.472737][ T5851] bcachefs (loop0): shutdown complete
[   69.491937][ T6625] XFS (loop1): Quotacheck needed: Please wait.
[   69.534683][ T6625] XFS (loop1): Quotacheck: Done.
[   69.590824][   T33] audit: type=1804 audit(1755835757.133:5): pid=6625 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.250" name="/newroot/104/file0/bus" dev="loop1" ino=9292 res=1 errno=0
[   69.645356][ T5846] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   70.785991][ T5899] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[   70.936016][ T5899] usb 2-1: Using ep0 maxpacket: 8
[   70.943420][ T5899] usb 2-1: config 162 has an invalid interface number: 197 but max is 1
[   70.950158][ T5899] usb 2-1: config 162 has an invalid interface number: 143 but max is 1
[   70.957779][ T1363] ieee802154 phy0 wpan0: encryption failed: -22
[   70.958966][ T5899] usb 2-1: config 162 has no interface number 0
[   70.962649][ T5899] usb 2-1: config 162 has no interface number 1
[   70.964382][ T1363] ieee802154 phy1 wpan1: encryption failed: -22
[   70.964902][ T5899] usb 2-1: config 162 interface 197 altsetting 4 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   71.002439][ T5899] usb 2-1: config 162 interface 143 altsetting 1 has a duplicate endpoint with address 0x9, skipping
[   71.007220][ T5899] usb 2-1: config 162 interface 143 altsetting 1 has an endpoint descriptor with address 0xA6, changing to 0x86
[   71.011690][ T5899] usb 2-1: config 162 interface 143 altsetting 1 endpoint 0x86 has invalid maxpacket 23105, setting to 1024
[   71.023195][ T5899] usb 2-1: config 162 interface 143 altsetting 1 bulk endpoint 0x86 has invalid maxpacket 1024
[   71.029717][ T5899] usb 2-1: config 162 interface 143 altsetting 1 has 5 endpoint descriptors, different from the interface descriptor's value: 4
[   71.034773][ T5899] usb 2-1: config 162 interface 197 has no altsetting 0
[   71.039388][ T5899] usb 2-1: config 162 interface 143 has no altsetting 0
[   71.053722][ T5899] usb 2-1: New USB device found, idVendor=0c10, idProduct=0000, bcdDevice=95.a7
[   71.059375][ T5899] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   71.064865][ T5899] usb 2-1: Product: syz
[   71.072211][ T5899] usb 2-1: Manufacturer: syz
[   71.080585][ T5899] usb 2-1: SerialNumber: syz
[   71.116944][ T5849] Bluetooth: hci1: command 0x041b tx timeout
[   71.133957][ T6687] netlink: 12 bytes leftover after parsing attributes in process `syz.3.265'.
[   71.162706][ T6690] netlink: 20 bytes leftover after parsing attributes in process `syz.3.266'.
[   71.185643][ T6695] loop3: detected capacity change from 0 to 512
[   71.200979][ T6695] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.205305][ T6695] ext4 filesystem being mounted at /18/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.223826][ T6477] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.297332][ T5849] Bluetooth: hci3: HCI Read Local Supported Commands not supported
[   71.301297][ T5899] usb 2-1: USB disconnect, device number 5
[   71.301551][ T5238] Bluetooth: hci3: sending frame failed (-19)
[   71.306332][ T5849] Bluetooth: hci3: Opcode 0x0c03 failed: -19
[   71.868037][ T6771] loop1: detected capacity change from 0 to 128
[   71.871251][ T6771] EXT4-fs: Ignoring removed nobh option
[   71.876938][ T6771] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   71.882021][ T6771] ext4 filesystem being mounted at /114/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   71.907942][ T5846] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   72.046001][ T5899] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[   72.070111][ T6782] program syz.1.276 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   72.197439][ T5899] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   72.201373][ T5899] usb 1-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.00
[   72.204426][ T5899] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   72.208452][ T5899] usb 1-1: config 0 descriptor??
[   72.416170][    T9] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[   72.494736][ T6804] loop3: detected capacity change from 0 to 4096
[   72.502992][ T6804] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found
[   72.506732][ T6804] UDF-fs: Scanning with blocksize 512 failed
[   72.517775][ T6804] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   72.530145][ T6804] UDF-fs: error (device loop3): udf_fiiter_advance_blk: extent after position 0 not allocated in directory (ino 1328)
[   72.576072][    T9] usb 2-1: Using ep0 maxpacket: 32
[   72.583569][    T9] usb 2-1: unable to get BOS descriptor or descriptor too short
[   72.588430][    T9] usb 2-1: config 1 interface 0 has no altsetting 0
[   72.591441][    T9] usb 2-1: string descriptor 0 read error: -22
[   72.593529][    T9] usb 2-1: New USB device found, idVendor=0458, idProduct=0138, bcdDevice= 0.40
[   72.598850][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   72.610193][ T6808] loop3: detected capacity change from 0 to 256
[   72.619122][ T6808] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[   72.627027][ T5899] prodikeys 0003:041E:2801.0002: item fetching failed at offset 3/7
[   72.630430][ T5899] prodikeys 0003:041E:2801.0002: hid parse failed
[   72.632676][ T5899] prodikeys 0003:041E:2801.0002: probe with driver prodikeys failed with error -22
[   72.664146][ T6810] loop3: detected capacity change from 0 to 4096
[   72.668706][ T6810] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[   72.683158][ T6810] ntfs3(loop3): ino=19, mi_enum_attr
[   72.685274][ T6810] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[   72.688903][ T6810] ntfs3(loop3): Failed to initialize $Extend/$Reparse.
[   72.745630][ T6814] ieee802154 phy0 wpan0: encryption failed: -90
[   72.807036][    T9] usbhid 2-1:1.0: can't add hid device: -71
[   72.808458][ T6820] loop3: detected capacity change from 0 to 512
[   72.809318][    T9] usbhid 2-1:1.0: probe with driver usbhid failed with error -71
[   72.823868][    T9] usb 2-1: USB disconnect, device number 6
[   72.830489][ T6820] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.834657][ T6820] ext4 filesystem being mounted at /31/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   72.851783][ T5914] usb 1-1: USB disconnect, device number 5
[   72.975842][ T6477] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.008291][ T6826] openvswitch: netlink: VXLAN extension 11 out of range max 1
[   73.198356][ T5849] Bluetooth: hci1: command 0x041b tx timeout
[   73.300734][ T6844] loop3: detected capacity change from 0 to 4096
[   73.303754][ T6844] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512).
[   73.346968][ T6846] loop1: detected capacity change from 0 to 512
[   73.352119][ T6846] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   73.449778][ T6856] loop3: detected capacity change from 0 to 4096
[   73.497389][ T6856] ntfs3(loop3): ino=1e, "file1" attr_set_size
[   73.564869][ T6855] loop1: detected capacity change from 0 to 32768
[   73.584673][ T6855] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.308 (6855)
[   73.597287][ T6855] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   73.600721][ T6855] BTRFS info (device loop1): using crc32c (crc32c-lib) checksum algorithm
[   73.649234][ T6855] BTRFS info (device loop1): rebuilding free space tree
[   73.672102][ T6887] loop0: detected capacity change from 0 to 128
[   73.676503][ T6855] BTRFS info (device loop1): checking UUID tree
[   73.695988][ T6855] BTRFS info (device loop1): enabling ssd optimizations
[   73.698645][ T6855] BTRFS info (device loop1): turning on async discard
[   73.701417][ T6855] BTRFS info (device loop1): enabling free space tree
[   73.704173][ T6855] BTRFS info (device loop1): force clearing of disk cache
[   73.710447][ T6855] BTRFS info (device loop1): force zstd compression, level 3
[   73.724003][   T33] audit: type=1800 audit(1755835761.263:6): pid=6855 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.308" name="file2" dev="loop1" ino=261 res=0 errno=0
[   73.762191][ T5846] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   73.873316][ T6873] loop3: detected capacity change from 0 to 32768
[   73.894580][ T6873] (syz.3.314,6873,0):ocfs2_load_local_alloc:320 ERROR: Local alloc size is invalid (la_size = 0)
[   73.902584][ T6873] (syz.3.314,6873,0):ocfs2_load_local_alloc:356 ERROR: status = -22
[   73.905779][ T6873] (syz.3.314,6873,0):ocfs2_check_volume:2404 ERROR: status = -22
[   73.934741][ T6873] (syz.3.314,6873,0):ocfs2_check_volume:2432 ERROR: status = -22
[   73.945640][ T6873] (syz.3.314,6873,0):ocfs2_mount_volume:1764 ERROR: status = -22
[   73.963918][ T6873] (syz.3.314,6873,0):ocfs2_fill_super:1177 ERROR: status = -22
[   73.977345][ T6904] netlink: 'syz.0.322': attribute type 1 has an invalid length.
[   73.980514][ T6904] netlink: 244 bytes leftover after parsing attributes in process `syz.0.322'.
[   74.124764][ T6899] loop1: detected capacity change from 0 to 32768
[   74.128002][ T6899] XFS: attr2 mount option is deprecated.
[   74.164788][ T6899] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[   74.168354][ T6899] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   74.184281][ T6899] XFS (loop1): Ending clean mount
[   74.187889][ T6899] XFS (loop1): Quotacheck needed: Please wait.
[   74.191883][ T6899] XFS (loop1): Quotacheck: Done.
[   74.200104][ T6908] loop3: detected capacity change from 0 to 32768
[   74.208414][ T5846] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   74.217040][ T6908] JBD2: Ignoring recovery information on journal
[   74.233642][ T6908] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[   74.271146][ T6477] ocfs2: Unmounting device (7,3) on (node local)
[   74.382871][ T6930] netlink: 8 bytes leftover after parsing attributes in process `syz.1.330'.
[   74.597381][ T6949] netlink: 20 bytes leftover after parsing attributes in process `syz.1.338'.
[   74.667576][   T13] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   75.276269][ T5849] Bluetooth: hci1: command 0x041b tx timeout
[   75.312816][ T6977] autofs4:pid:6977:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(4294966781.1), cmd(0xc018937e)
[   75.318261][ T6977] autofs4:pid:6977:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc018937e)
[   75.427595][ T6991] loop0: detected capacity change from 0 to 1024
[   75.436955][ T4285] wlan1: Trigger new scan to find an IBSS to join
[   75.454297][ T6991] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.459910][ T6995] iommufd_mock iommufd_mock0: Adding to iommu group 0
[   75.469145][   T33] audit: type=1800 audit(1755835763.013:7): pid=6991 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.355" name="file1" dev="loop0" ino=15 res=0 errno=0
[   75.480483][ T6988] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.355: bg 0: block 494: padding at end of block bitmap is not set
[   75.493504][ T6988] EXT4-fs (loop0): Remounting filesystem read-only
[   75.496396][ T6988] EXT4-fs (loop0): error restoring inline_data for inode -- potential data loss! (inode 15, error -30)
[   75.497095][ T6997] loop3: detected capacity change from 0 to 128
[   75.508905][ T6997] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; going on - but anything won't be destroyed because it's read-only
[   75.520423][ T5851] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.523823][ T6997] hpfs: filesystem error: improperly stopped
[   75.526187][ T6997] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[   75.529006][ T6997] hpfs: Proceeding, but your filesystem could be corrupted if you delete files or directories
[   75.532566][ T6997] hpfs: filesystem error: sector(s) 'dir_band' badly placed at 7b318cc2
[   75.596480][ T6999] netlink: 'syz.0.358': attribute type 11 has an invalid length.
[   75.721431][ T7013] loop3: detected capacity change from 0 to 512
[   75.739873][ T7013] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.365: casefold flag without casefold feature
[   75.747169][ T7013] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.365: couldn't read orphan inode 15 (err -117)
[   75.751520][ T7013] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.768609][ T6477] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.830606][ T7022] loop0: detected capacity change from 0 to 1024
[   75.836833][ T7022] EXT4-fs: Ignoring removed nomblk_io_submit option
[   75.841350][ T7024] loop3: detected capacity change from 0 to 1024
[   75.847400][ T7022] EXT4-fs: Mount option(s) incompatible with ext3
[   75.942497][ T7029] loop3: detected capacity change from 0 to 512
[   75.963193][ T7029] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.970474][ T7029] ext4 filesystem being mounted at /65/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   75.979281][   T33] audit: type=1800 audit(1755835763.523:8): pid=7029 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.371" name="file1" dev="loop3" ino=15 res=0 errno=0
[   75.987035][   T33] audit: type=1800 audit(1755835763.523:9): pid=7029 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.371" name="file2" dev="loop3" ino=16 res=0 errno=0
[   75.994499][   T33] audit: type=1800 audit(1755835763.523:10): pid=7029 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.371" name="file1" dev="loop3" ino=15 res=0 errno=0
[   76.136892][ T6477] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.396076][ T5899] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   76.547407][ T5899] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[   76.553318][ T5899] usb 4-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[   76.557258][ T5899] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   76.560573][ T5899] usb 4-1: Product: syz
[   76.566023][ T5899] usb 4-1: Manufacturer: syz
[   76.568064][ T5899] usb 4-1: SerialNumber: syz
[   76.572923][ T5899] usb 4-1: config 0 descriptor??
[   76.890609][ T7042] loop1: detected capacity change from 0 to 32768
[   76.990479][  T791] usb 4-1: USB disconnect, device number 2
[   77.066837][ T7056] netlink: 'syz.0.381': attribute type 1 has an invalid length.
[   77.069624][ T7056] netlink: 630 bytes leftover after parsing attributes in process `syz.0.381'.
[   77.107882][ T7060] netlink: 52 bytes leftover after parsing attributes in process `syz.0.383'.
[   77.396041][ T5849] Bluetooth: hci1: command 0x041b tx timeout
[   77.475661][ T7062] loop0: detected capacity change from 0 to 32768
[   77.513283][ T7062] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   77.547601][ T7062] XFS (loop0): Ending clean mount
[   77.550538][ T7062] XFS (loop0): Quotacheck needed: Please wait.
[   77.561560][ T7062] XFS (loop0): Quotacheck: Done.
[   77.590087][ T5851] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   77.692625][ T7080] netlink: 20 bytes leftover after parsing attributes in process `syz.0.386'.
[   78.166253][ T7097] loop0: detected capacity change from 0 to 32768
[   78.179837][ T7097] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   78.200122][ T7097] XFS (loop0): Ending clean mount
[   78.203596][ T7097] XFS (loop0): Quotacheck needed: Please wait.
[   78.212748][ T7097] XFS (loop0): Quotacheck: Done.
[   78.249284][ T5851] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   78.405247][ T7110] loop0: detected capacity change from 0 to 4096
[   78.414576][ T7110] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[   78.475996][ T6758] wlan1: Trigger new scan to find an IBSS to join
[   78.565416][ T7112] loop0: detected capacity change from 0 to 32768
[   78.580359][ T7112] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,wide_macs,nochanges,recovery_pass_last=initialize_subvolumes,nojournal_transaction_names,noexcl,read_only
[   78.580372][ T7112]   allowing incompatible features above 0.0: (unknown version)
[   78.580377][ T7112]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   78.597502][ T7112] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0
[   78.605997][ T7112] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[   78.608708][ T7112] bcachefs (loop0): Version upgrade required:
[   78.608708][ T7112] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   78.608708][ T7112] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[   78.608708][ T7112]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[   78.636792][    C0] vkms_vblank_simulate: vblank timer overrun
[   78.650550][ T7112] bcachefs (loop0): accounting_read... done
[   78.653545][ T7112] bcachefs (loop0): alloc_read... done
[   78.656691][ T7112] bcachefs (loop0): done starting filesystem
[   78.717485][ T5851] bcachefs (loop0): shutting down
[   78.730823][ T5851] bcachefs (loop0): shutdown complete
[   78.900391][ T7127] loop1: detected capacity change from 0 to 1024
[   78.906442][ T7127] EXT4-fs: Invalid want_extra_isize 5
[   78.916482][ T7123] loop3: detected capacity change from 0 to 32768
[   79.410386][ T7123] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io
[   79.410459][ T7123]   allowing incompatible features above 0.0: (unknown version)
[   79.410465][ T7123]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   79.458825][ T7123] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0
[   79.462486][ T7123] bcachefs (loop3): recovering from clean shutdown, journal seq 10
[   79.471770][ T7123] bcachefs (loop3): Version upgrade required:
[   79.471770][ T7123] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[   79.471770][ T7123] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[   79.471770][ T7123]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[   79.504087][ T7123] bcachefs (loop3): dropping and reconstructing all alloc info
[   79.548373][ T7123] bcachefs (loop3): accounting_read... done
[   79.553396][ T7123] bcachefs (loop3): alloc_read... done
[   79.564536][ T7123] bcachefs (loop3): snapshots_read... done
[   79.577661][ T7123] bcachefs (loop3): check_allocations...
[   79.578652][ T7146] infiniband syz1: set active
[   79.582664][ T7146] infiniband syz1: added veth0_vlan
[   79.621568][ T7146] RDS/IB: syz1: added
[   79.623074][ T7146] smc: adding ib device syz1 with port count 1
[   79.624146][ T7123]  done
[   79.625342][ T7146] smc:    ib device syz1 port 1 has pnetid 
[   79.641507][ T7123] bcachefs (loop3): going read-write
[   79.658714][ T7123] bcachefs (loop3): done starting filesystem
[   79.841534][ T6477] bcachefs (loop3): shutting down
[   79.848088][ T6477] bcachefs (loop3): going read-only
[   79.853634][ T6477] bcachefs (loop3): finished waiting for writes to stop
[   79.859701][ T6477] bcachefs (loop3): flushing journal and stopping allocators, journal seq 10
[   79.864920][ T6477] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 10
[   79.874003][ T6477] bcachefs (loop3): unclean shutdown complete, journal seq 11
[   79.884238][ T6477] bcachefs (loop3): done going read-only, filesystem not clean
[   79.912090][ T6477] bcachefs (loop3): shutdown complete
[   80.160627][ T7162] loop1: detected capacity change from 0 to 16
[   80.167446][ T7162] erofs (device loop1): mounted with root inode @ nid 36.
[   80.408281][ T7166] loop0: detected capacity change from 0 to 32768
[   80.442750][ T7166] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   80.453089][ T7166] XFS (loop0): Ending clean mount
[   80.463286][ T7166] XFS (loop0): syz.0.410 should use fallocate; XFS_IOC_{ALLOC,FREE}SP ioctl unsupported
[   80.471227][ T7168] loop1: detected capacity change from 0 to 40427
[   80.474631][ T7168] F2FS-fs (loop1): Invalid Fs Meta Ino: node(0) meta(2) root(0)
[   80.477279][ T7168] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[   80.481131][ T7168] F2FS-fs (loop1): invalid crc value
[   80.499654][ T5851] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   80.503329][ T7168] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   80.509847][ T7168] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[   80.512520][ T7168] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[   80.529643][ T7168] syz.1.411: attempt to access beyond end of device
[   80.529643][ T7168] loop1: rw=2051, sector=36912, nr_sectors = 8144 limit=40427
[   80.534510][ T7168] syz.1.411: attempt to access beyond end of device
[   80.534510][ T7168] loop1: rw=2051, sector=45096, nr_sectors = 20440 limit=40427
[   80.543995][ T7168] F2FS-fs (loop1): Issue discard(4614, 4614, 1018) failed, ret: -5
[   80.547019][ T7168] F2FS-fs (loop1): Issue discard(5637, 5637, 2555) failed, ret: -5
[   80.671087][ T7184] IPVS: persistence engine module ip_vs_pe_s not found
[   80.903728][ T7209] loop0: detected capacity change from 0 to 16
[   80.914060][ T7209] erofs (device loop0): mounted with root inode @ nid 36.
[   80.929293][ T7209] erofs (device loop0): readahead error at folio 26 @ nid 36
[   80.932090][ T7209] erofs (device loop0): readahead error at folio 25 @ nid 36
[   80.934840][ T7209] erofs (device loop0): readahead error at folio 24 @ nid 36
[   80.938098][ T7209] erofs (device loop0): readahead error at folio 23 @ nid 36
[   80.942682][ T7209] erofs (device loop0): readahead error at folio 22 @ nid 36
[   80.945424][ T7209] erofs (device loop0): readahead error at folio 21 @ nid 36
[   80.957052][ T7209] erofs (device loop0): readahead error at folio 20 @ nid 36
[   80.959853][ T7209] erofs (device loop0): readahead error at folio 18 @ nid 36
[   80.962608][ T7209] erofs (device loop0): readahead error at folio 16 @ nid 36
[   80.965475][ T7209] erofs (device loop0): readahead error at folio 12 @ nid 36
[   80.971118][ T7209] syz.0.422: attempt to access beyond end of device
[   80.971118][ T7209] loop0: rw=524288, sector=720, nr_sectors = 16 limit=16
[   80.976663][ T7209] syz.0.422: attempt to access beyond end of device
[   80.976663][ T7209] loop0: rw=524288, sector=525144, nr_sectors = 16 limit=16
[   80.981974][ T7209] syz.0.422: attempt to access beyond end of device
[   80.981974][ T7209] loop0: rw=524288, sector=8, nr_sectors = 16 limit=16
[   80.987158][ T7209] syz.0.422: attempt to access beyond end of device
[   80.987158][ T7209] loop0: rw=524288, sector=13716630376, nr_sectors = 8 limit=16
[   81.069347][ T7213] loop0: detected capacity change from 0 to 1024
[   81.104362][ T7213] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.133236][ T7219] bridge0: port 2(bridge_slave_1) entered disabled state
[   81.136179][ T7219] bridge0: port 1(bridge_slave_0) entered disabled state
[   81.146466][ T7213] loop0: detected capacity change from 1024 to 0
[   81.156113][ T7213] syz.0.424: attempt to access beyond end of device
[   81.156113][ T7213] loop0: rw=145409, sector=2, nr_sectors = 2 limit=0
[   81.162608][ T7213] Buffer I/O error on dev loop0, logical block 1, lost sync page write
[   81.167494][ T7213] EXT4-fs (loop0): I/O error while writing superblock
[   81.182029][ T5851] syz-executor: attempt to access beyond end of device
[   81.182029][ T5851] loop0: rw=12288, sector=32, nr_sectors = 2 limit=0
[   81.196496][ T5851] syz-executor: attempt to access beyond end of device
[   81.196496][ T5851] loop0: rw=524288, sector=12, nr_sectors = 2 limit=0
[   81.200861][ T5851] syz-executor: attempt to access beyond end of device
[   81.200861][ T5851] loop0: rw=524288, sector=14, nr_sectors = 2 limit=0
[   81.205581][ T5851] EXT4-fs error (device loop0): ext4_get_inode_loc:4999: inode #2: block 5: comm syz-executor: unable to read itable block
[   81.207943][   T10] cfg80211: failed to load regulatory.db
[   81.210335][ T5851] Buffer I/O error on dev loop0, logical block 1, lost sync page write
[   81.214555][ T5851] EXT4-fs (loop0): I/O error while writing superblock
[   81.217289][ T5851] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6334: IO failure
[   81.221318][ T5851] Buffer I/O error on dev loop0, logical block 1, lost sync page write
[   81.224245][ T5851] EXT4-fs (loop0): I/O error while writing superblock
[   81.225381][ T7219] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   81.236328][ T5851] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #2: comm syz-executor: mark_inode_dirty error
[   81.245168][ T7219] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   81.247113][ T5851] Buffer I/O error on dev loop0, logical block 1, lost sync page write
[   81.251254][ T5851] EXT4-fs (loop0): I/O error while writing superblock
[   81.267731][ T1087] EXT4-fs error (device loop0): __ext4_get_inode_loc_noinmem:4984: inode #2: block 5: comm kworker/u10:3: unable to read itable block
[   81.275996][ T1087] Buffer I/O error on dev loop0, logical block 1, lost sync page write
[   81.282918][ T1087] EXT4-fs (loop0): I/O error while writing superblock
[   81.289399][ T5851] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.294256][ T5851] Buffer I/O error on dev loop0, logical block 1, lost sync page write
[   81.299968][ T5851] EXT4-fs (loop0): I/O error while writing superblock
[   81.306641][ T7217] Buffer I/O error on dev loop0, logical block 64, lost sync page write
[   81.332465][   T13] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   81.348085][   T13] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   81.351534][   T13] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   81.431039][ T7239] loop1: detected capacity change from 0 to 512
[   81.445951][ T7239] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   81.460572][ T7239] EXT4-fs (loop1): 1 truncate cleaned up
[   81.462722][ T7239] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.491916][ T7237] loop3: detected capacity change from 0 to 32768
[   81.495138][ T7237] XFS (loop3): invalid log iosize: 1 [not 12-30]
[   81.501650][ T7239] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.434: bg 0: block 256: padding at end of block bitmap is not set
[   81.514665][ T7239] EXT4-fs (loop1): Remounting filesystem read-only
[   81.547638][ T5846] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.578101][   T13] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.692962][   T13] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.880331][   T13] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.943283][   T13] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.955236][ T5238] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   81.959832][ T5238] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   81.962575][ T5238] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   81.965096][ T5238] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   81.968138][ T5238] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   82.023677][   T13] bridge_slave_1: left allmulticast mode
[   82.027856][   T13] bridge_slave_1: left promiscuous mode
[   82.031521][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.035057][   T13] bridge_slave_0: left allmulticast mode
[   82.037781][   T13] bridge_slave_0: left promiscuous mode
[   82.039966][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.110260][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   82.114856][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   82.119540][   T13] bond0 (unregistering): Released all slaves
[   82.211942][ T7257] chnl_net:caif_netlink_parms(): no params data found
[   82.278382][ T7257] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.281215][ T7257] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.283709][ T7257] bridge_slave_0: entered allmulticast mode
[   82.286609][ T7257] bridge_slave_0: entered promiscuous mode
[   82.290073][ T7257] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.293245][ T7257] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.296212][ T7257] bridge_slave_1: entered allmulticast mode
[   82.298842][ T7257] bridge_slave_1: entered promiscuous mode
[   82.313305][ T7257] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   82.323812][ T7257] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   82.336363][ T7257] team0: Port device team_slave_0 added
[   82.341117][ T7257] team0: Port device team_slave_1 added
[   82.351867][ T7257] batman_adv: batadv0: Adding interface: batadv_slave_0
[   82.354443][ T7257] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   82.363347][ T7257] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   82.368515][ T7257] batman_adv: batadv0: Adding interface: batadv_slave_1
[   82.370970][ T7257] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   82.389638][ T7257] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   82.502365][ T7257] hsr_slave_0: entered promiscuous mode
[   82.504813][ T7257] hsr_slave_1: entered promiscuous mode
[   82.520151][ T7257] debugfs: 'hsr0' already exists in 'hsr'
[   82.522275][ T7257] Cannot create hsr debugfs directory
[   82.527018][   T13] hsr_slave_0: left promiscuous mode
[   82.529663][   T13] hsr_slave_1: left promiscuous mode
[   82.532036][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   82.534862][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[   82.540051][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   82.542927][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[   82.557825][   T13] veth1_macvtap: left promiscuous mode
[   82.562243][   T13] veth0_macvtap: left promiscuous mode
[   82.566689][   T13] veth1_vlan: left promiscuous mode
[   82.570533][   T13] veth0_vlan: left promiscuous mode
[   82.597216][ T7277] loop3: detected capacity change from 0 to 32768
[   82.609926][ T7277] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.445 (7277)
[   82.618990][ T7277] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   82.622701][ T7277] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm
[   82.650370][ T7277] BTRFS info (device loop3): enabling ssd optimizations
[   82.652808][ T7277] BTRFS info (device loop3): enabling free space tree
[   82.672095][   T35] smc: removing ib device syz1
[   82.697673][ T6477] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   82.741661][   T13] team0 (unregistering): Port device team_slave_1 removed
[   82.750876][   T13] team0 (unregistering): Port device team_slave_0 removed
[   82.844133][ T5899] syz1: Port: 1 Link DOWN
[   82.914316][ T7301] loop3: detected capacity change from 0 to 32768
[   83.041632][ T7301] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,metadata_target=invalid label 246,noinodes_use_key_cache,journal_flush_delay=3,journal_reclaim_delay=1000,nocow
[   83.041654][ T7301]   allowing incompatible features above 0.0: (unknown version)
[   83.041662][ T7301]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   83.076050][ T7301] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0
[   83.078883][ T7301] bcachefs (loop3): initializing new filesystem
[   83.084319][ T7301] bcachefs (loop3): going read-write
[   83.097454][ T7301] bcachefs (loop3): marking superblocks
[   83.110852][ T7301] bcachefs (loop3): initializing freespace
[   83.119856][ T7301] bcachefs (loop3): done initializing freespace
[   83.124122][ T7301] bcachefs (loop3): reading snapshots table
[   83.127770][ T7301] bcachefs (loop3): reading snapshots done
[   83.141982][ T7301] bcachefs (loop3): done starting filesystem
[   83.179407][ T7257] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   83.192390][ T7323] loop1: detected capacity change from 0 to 4096
[   83.199904][ T7257] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   83.209336][ T7301] bcachefs (loop3): going read-only
[   83.214696][ T7257] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   83.217404][ T7301] bcachefs (loop3): finished waiting for writes to stop
[   83.223603][ T7257] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   83.229342][ T7301] bcachefs (loop3): flushing journal and stopping allocators, journal seq 3
[   83.241620][ T7323] ntfs3(loop1): ino=19, mi_enum_attr
[   83.243470][ T7323] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[   83.250681][ T7301] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 4
[   83.255461][ T7301] bcachefs (loop3): clean shutdown complete, journal seq 5
[   83.259293][ T7301] bcachefs (loop3): marking filesystem clean
[   83.293968][ T6477] bcachefs (loop3): shutting down
[   83.302681][ T6477] bcachefs (loop3): shutdown complete
[   83.347944][ T7257] 8021q: adding VLAN 0 to HW filter on device bond0
[   83.373792][ T7257] 8021q: adding VLAN 0 to HW filter on device team0
[   83.385121][ T6758] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.388026][ T6758] bridge0: port 1(bridge_slave_0) entered forwarding state
[   83.394394][ T6758] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.396806][ T6758] bridge0: port 2(bridge_slave_1) entered forwarding state
[   83.494367][ T7257] 8021q: adding VLAN 0 to HW filter on device batadv0
[   83.628905][ T7257] veth0_vlan: entered promiscuous mode
[   83.637339][ T7257] veth1_vlan: entered promiscuous mode
[   83.653522][ T7257] veth0_macvtap: entered promiscuous mode
[   83.658697][ T7257] veth1_macvtap: entered promiscuous mode
[   83.676824][ T7257] batman_adv: batadv0: Interface activated: batadv_slave_0
[   83.682635][ T7257] batman_adv: batadv0: Interface activated: batadv_slave_1
[   83.689677][   T13] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   83.692852][   T13] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   83.695769][   T13] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   83.721266][   T13] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   83.733264][ T4285] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.740300][ T4285] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.749658][ T6758] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.752185][ T6758] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.759199][ T7371] loop1: detected capacity change from 0 to 32768
[   83.762671][ T7371] XFS: attr2 mount option is deprecated.
[   83.769678][ T7371] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[   83.778383][ T7371] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   83.809368][ T7371] XFS (loop1): Ending clean mount
[   83.817244][ T7371] XFS (loop1): Quotacheck needed: Please wait.
[   83.825653][ T7371] XFS (loop1): Quotacheck: Done.
[   83.850758][ T5846] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   84.006789][ T5849] Bluetooth: hci2: command tx timeout
[   84.063764][ T7394] loop1: detected capacity change from 0 to 32768
[   84.095439][ T7404] binder: 7403:7404 ioctl c0306201 200000000080 returned -14
[   84.115237][ T7394] ERROR: (device loop1): dbAlloc: unable to allocate blocks
[   84.115237][ T7394] 
[   84.119477][ T7394] jfs_rename: dtInsert returned -EIO
[   84.466431][   T10] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[   84.586015][ T5914] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   84.616233][   T10] usb 2-1: Using ep0 maxpacket: 8
[   84.621697][   T10] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   84.625216][   T10] usb 2-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[   84.630870][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   84.636435][   T10] usb 2-1: config 0 descriptor??
[   84.642904][   T10] gspca_main: vc032x-2.14.0 probing 046d:0892
[   84.746468][ T5914] usb 5-1: Using ep0 maxpacket: 8
[   84.751406][ T5914] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   84.755726][ T5914] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[   84.763780][ T5914] usb 5-1: New USB device found, idVendor=077d, idProduct=627a, bcdDevice= 0.01
[   84.768569][ T5914] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   84.771956][ T5914] usb 5-1: Product: syz
[   84.773875][ T5914] usb 5-1: Manufacturer: syz
[   84.776427][ T5914] usb 5-1: SerialNumber: syz
[   84.781132][ T5914] usb 5-1: config 0 descriptor??
[   84.785792][ T5914] radioshark 5-1:0.0: Invalid radioSHARK device
[   84.789850][ T5914] radioshark 5-1:0.0: probe with driver radioshark failed with error -22
[   84.793764][ T5914] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[   84.988119][   T61] usb 5-1: USB disconnect, device number 2
[   85.447142][   T10] gspca_vc032x: reg_w err -71
[   85.459427][   T10] vc032x 2-1:0.0: probe with driver vc032x failed with error -71
[   85.466718][   T10] usb 2-1: USB disconnect, device number 7
[   85.488590][ T7430] netlink: 8 bytes leftover after parsing attributes in process `syz.3.478'.
[   85.609943][ T7432] netlink: 512 bytes leftover after parsing attributes in process `syz.4.479'.
[   86.076036][ T5849] Bluetooth: hci2: command tx timeout
[   86.232795][ T7448] openvswitch: netlink: ct_state flags 0000ffff unsupported
[   86.344724][ T7451] program syz.4.488 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   86.474722][ T7452] loop1: detected capacity change from 0 to 1024
[   86.845706][ T7456] veth2: entered promiscuous mode
[   86.848892][ T7456] veth2: entered allmulticast mode
[   86.918641][ T7458] loop4: detected capacity change from 0 to 512
[   86.931951][ T7458] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   86.969943][ T7458] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ee018, mo2=0002]
[   86.975467][ T7458] System zones: 1-12
[   86.977625][ T1092] hfsplus: b-tree write err: -5, ino 4
[   86.979646][ T7458] EXT4-fs (loop4): 1 truncate cleaned up
[   86.982511][ T7458] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.008010][ T7458] EXT4-fs warning (device loop4): ext4_group_extend:1862: can't shrink FS - resize aborted
[   87.026429][ T7257] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.047384][ T7468] loop4: detected capacity change from 0 to 16
[   87.059526][ T7468] erofs (device loop4): mounted with root inode @ nid 36.
[   87.354827][ T7489] loop1: detected capacity change from 0 to 2048
[   87.358449][ T7489] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[   87.366024][   T24] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   87.366416][ T7490] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   87.429068][ T7492] binder_alloc: 7491: binder_alloc_buf, no vma
[   87.529867][   T24] usb 5-1: New USB device found, idVendor=1645, idProduct=0008, bcdDevice=cf.36
[   87.533230][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   87.538064][   T24] usb 5-1: config 0 descriptor??
[   87.558751][ T7502] loop1: detected capacity change from 0 to 4096
[   87.566483][ T7502] ntfs3: Unknown parameter 'nohide_dot_files'
[   87.758329][   T24] kaweth 5-1:0.0: Firmware present in device.
[   87.944605][   T24] kaweth 5-1:0.0: Statistics collection: 0
[   87.947080][   T24] kaweth 5-1:0.0: Multicast filter limit: 0
[   87.949601][   T24] kaweth 5-1:0.0: MTU: 0
[   87.951458][   T24] kaweth 5-1:0.0: Read MAC address 00:00:00:00:00:00
[   88.152649][ T7516] loop1: detected capacity change from 0 to 32768
[   88.165981][ T5849] Bluetooth: hci2: command tx timeout
[   88.187066][ T5859]  loop1: p9 p11 p16
[   88.196667][ T7516]  loop1: p9 p11 p16
[   88.278991][ T6025] udevd[6025]: inotify_add_watch(7, /dev/loop1p16, 10) failed: No such file or directory
[   88.280062][ T5860] udevd[5860]: inotify_add_watch(7, /dev/loop1p11, 10) failed: No such file or directory
[   88.285569][ T5859] udevd[5859]: inotify_add_watch(7, /dev/loop1p9, 10) failed: No such file or directory
[   88.299049][ T5859] udevd[5859]: inotify_add_watch(7, /dev/loop1p9, 10) failed: No such file or directory
[   88.303376][ T5860] udevd[5860]: inotify_add_watch(7, /dev/loop1p11, 10) failed: No such file or directory
[   88.303720][ T6025] udevd[6025]: inotify_add_watch(7, /dev/loop1p16, 10) failed: No such file or directory
[   88.347401][   T24] kaweth 5-1:0.0: Error setting SOFS wait
[   88.352605][   T24] kaweth 5-1:0.0: probe with driver kaweth failed with error -5
[   88.360869][   T24] usb 5-1: USB disconnect, device number 3
[   88.588100][ T7527] loop3: detected capacity change from 0 to 256
[   88.597662][ T7527] FAT-fs (loop3): Directory bread(block 64) failed
[   88.600299][ T7527] FAT-fs (loop3): Directory bread(block 65) failed
[   88.602968][ T7527] FAT-fs (loop3): Directory bread(block 66) failed
[   88.605601][ T7527] FAT-fs (loop3): Directory bread(block 67) failed
[   88.609289][  T791] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[   88.611402][ T7527] FAT-fs (loop3): Directory bread(block 68) failed
[   88.614996][ T7527] FAT-fs (loop3): Directory bread(block 69) failed
[   88.617667][ T7527] FAT-fs (loop3): Directory bread(block 70) failed
[   88.620052][ T7527] FAT-fs (loop3): Directory bread(block 71) failed
[   88.622634][ T7527] FAT-fs (loop3): Directory bread(block 72) failed
[   88.625257][ T7527] FAT-fs (loop3): Directory bread(block 73) failed
[   88.768527][  T791] usb 2-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[   88.771709][  T791] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   88.775656][  T791] usb 2-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[   88.779219][  T791] usb 2-1: config 1 has no interface number 1
[   88.781350][  T791] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[   88.786284][  T791] usb 2-1: config 1 interface 2 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[   88.797157][  T791] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   88.800619][  T791] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   88.803532][  T791] usb 2-1: Product: syz
[   88.805024][  T791] usb 2-1: Manufacturer: syz
[   88.813963][  T791] usb 2-1: SerialNumber: syz
[   88.901722][ T7542] Bluetooth: MGMT ver 1.23
[   89.025782][  T791] usb 2-1: No MIDI 2.0 at altset 1, falling back to MIDI 1.0
[   89.029189][  T791] usb 2-1: MIDIStreaming interface descriptor not found
[   89.068417][  T791] usb 2-1: USB disconnect, device number 8
[   89.106661][ T7555] udevd[7555]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   89.120079][ T7557] loop4: detected capacity change from 0 to 1024
[   89.171812][   T26] hfsplus: b-tree write err: -5, ino 4
[   89.233765][ T7565] loop4: detected capacity change from 0 to 1024
[   89.236987][ T7565] EXT4-fs: Ignoring removed nobh option
[   89.238840][ T7565] EXT4-fs: Ignoring removed bh option
[   89.259902][ T7565] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.290526][ T7257] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.881180][ T5849] Bluetooth: hci1: unexpected event for opcode 0x2062
[   90.156017][   T10] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[   90.252704][ T5849] Bluetooth: hci2: command tx timeout
[   90.316019][   T10] usb 2-1: Using ep0 maxpacket: 8
[   90.322227][   T10] usb 2-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52
[   90.325422][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   90.329202][   T10] usb 2-1: Product: syz
[   90.330804][   T10] usb 2-1: Manufacturer: syz
[   90.332547][   T10] usb 2-1: SerialNumber: syz
[   90.335165][   T10] usb 2-1: config 0 descriptor??
[   90.543319][  T791] usb 2-1: USB disconnect, device number 9
[   90.551649][ T7623] netlink: 24 bytes leftover after parsing attributes in process `syz.3.558'.
[   90.560288][ T7623] loop3: detected capacity change from 0 to 1024
[   90.565341][ T7623] bio_check_eod: 22 callbacks suppressed
[   90.565351][ T7623] syz.3.558: attempt to access beyond end of device
[   90.565351][ T7623] loop3: rw=2057, sector=262, nr_sectors = 65274 limit=1024
[   90.578766][ T7623] netlink: 24 bytes leftover after parsing attributes in process `syz.3.558'.
[   90.581776][ T7623] netlink: 24 bytes leftover after parsing attributes in process `syz.3.558'.
[   90.599830][ T7625] netlink: 4 bytes leftover after parsing attributes in process `syz.3.559'.
[   90.620700][ T7627] loop3: detected capacity change from 0 to 128
[   90.625582][ T7627] syz.3.560: attempt to access beyond end of device
[   90.625582][ T7627] loop3: rw=2049, sector=138, nr_sectors = 8 limit=128
[   90.630694][ T7627] syz.3.560: attempt to access beyond end of device
[   90.630694][ T7627] loop3: rw=2049, sector=146, nr_sectors = 8 limit=128
[   90.635732][ T7627] syz.3.560: attempt to access beyond end of device
[   90.635732][ T7627] loop3: rw=2049, sector=170, nr_sectors = 8 limit=128
[   90.641512][ T7627] syz.3.560: attempt to access beyond end of device
[   90.641512][ T7627] loop3: rw=2049, sector=178, nr_sectors = 8 limit=128
[   90.647397][ T7627] syz.3.560: attempt to access beyond end of device
[   90.647397][ T7627] loop3: rw=2049, sector=202, nr_sectors = 8 limit=128
[   90.652435][ T7627] syz.3.560: attempt to access beyond end of device
[   90.652435][ T7627] loop3: rw=2049, sector=210, nr_sectors = 8 limit=128
[   90.657767][ T7627] syz.3.560: attempt to access beyond end of device
[   90.657767][ T7627] loop3: rw=2049, sector=234, nr_sectors = 8 limit=128
[   90.662664][ T7627] syz.3.560: attempt to access beyond end of device
[   90.662664][ T7627] loop3: rw=2049, sector=242, nr_sectors = 8 limit=128
[   90.667658][ T7627] syz.3.560: attempt to access beyond end of device
[   90.667658][ T7627] loop3: rw=2049, sector=154, nr_sectors = 8 limit=128
[   90.897726][   T13] tipc: Subscription rejected, illegal request
[   91.016659][ T7631] loop3: detected capacity change from 0 to 40427
[   91.020270][ T7631] F2FS-fs (loop3): build fault injection rate: 7
[   91.022724][ T7631] F2FS-fs (loop3): build fault injection type: 0x7698c
[   91.027032][ T7631] F2FS-fs (loop3): inject page alloc in f2fs_grab_cache_folio of __get_meta_folio+0x157/0x4f0
[   91.031371][ T7631] F2FS-fs (loop3): invalid crc value
[   91.034389][ T7631] F2FS-fs (loop3): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_ra_meta_pages+0x1cb/0x970
[   91.040938][ T7631] F2FS-fs (loop3): inject page alloc in f2fs_grab_cache_folio of __get_meta_folio+0x157/0x4f0
[   91.045128][ T7631] F2FS-fs (loop3): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_ra_meta_pages+0x1cb/0x970
[   91.051048][ T7631] F2FS-fs (loop3): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_bio+0x18f/0xaa0
[   91.059072][ T7631] F2FS-fs (loop3): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_ra_meta_pages+0x1cb/0x970
[   91.074612][ T7631] F2FS-fs (loop3): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_bio+0x18f/0xaa0
[   91.079339][ T7631] CPU: 0 UID: 0 PID: 7631 Comm: syz.3.562 Not tainted syzkaller #0 PREEMPT(full) 
[   91.079353][ T7631] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   91.079360][ T7631] Call Trace:
[   91.079365][ T7631]  <TASK>
[   91.079370][ T7631]  dump_stack_lvl+0x189/0x250
[   91.079388][ T7631]  ? __pfx_dump_stack_lvl+0x10/0x10
[   91.079400][ T7631]  ? __pfx_queue_work_on+0x10/0x10
[   91.079413][ T7631]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   91.079429][ T7631]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   91.079445][ T7631]  ? __pfx_down_write+0x10/0x10
[   91.079457][ T7631]  f2fs_handle_critical_error+0x37c/0x540
[   91.079474][ T7631]  f2fs_get_meta_folio_retry+0x84/0xa0
[   91.079491][ T7631]  f2fs_build_free_nids+0x896/0x11c0
[   91.079512][ T7631]  ? __pfx_f2fs_build_free_nids+0x10/0x10
[   91.079524][ T7631]  ? f2fs_build_node_manager+0x1bc7/0x2db0
[   91.079544][ T7631]  ? f2fs_fill_super+0x4462/0x6ff0
[   91.079556][ T7631]  f2fs_fill_super+0x4462/0x6ff0
[   91.079581][ T7631]  get_tree_bdev_flags+0x40e/0x4d0
[   91.079597][ T7631]  ? __pfx_f2fs_fill_super+0x10/0x10
[   91.079608][ T7631]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[   91.079628][ T7631]  vfs_get_tree+0x92/0x2b0
[   91.079641][ T7631]  do_new_mount+0x2a2/0x9e0
[   91.079654][ T7631]  ? ns_capable+0x8a/0xf0
[   91.079662][ T7631]  ? __pfx_do_new_mount+0x10/0x10
[   91.079672][ T7631]  ? path_mount+0x61c/0xfe0
[   91.079681][ T7631]  ? user_path_at+0x44/0x60
[   91.079691][ T7631]  __se_sys_mount+0x317/0x410
[   91.079702][ T7631]  ? __pfx___se_sys_mount+0x10/0x10
[   91.079713][ T7631]  ? rcu_is_watching+0x15/0xb0
[   91.079720][ T7631]  ? __x64_sys_mount+0x20/0xc0
[   91.079731][ T7631]  do_syscall_64+0xfa/0x3b0
[   91.079761][ T7631]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.079772][ T7631]  ? exc_page_fault+0x9f/0xf0
[   91.079783][ T7631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.079791][ T7631] RIP: 0033:0x7faff8b9038a
[   91.079802][ T7631] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.079812][ T7631] RSP: 002b:00007faff9a39e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   91.079824][ T7631] RAX: ffffffffffffffda RBX: 00007faff9a39ef0 RCX: 00007faff8b9038a
[   91.079832][ T7631] RDX: 0000200000000000 RSI: 0000200000000040 RDI: 00007faff9a39eb0
[   91.079841][ T7631] RBP: 0000200000000000 R08: 00007faff9a39ef0 R09: 0000000000000008
[   91.079849][ T7631] R10: 0000000000000008 R11: 0000000000000246 R12: 0000200000000040
[   91.079855][ T7631] R13: 00007faff9a39eb0 R14: 0000000000005530 R15: 0000200000000100
[   91.079867][ T7631]  </TASK>
[   91.080616][ T7631] F2FS-fs (loop3): Stopped filesystem due to reason: 2
[   91.081902][ T7636] warning: `syz.1.563' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   91.084626][ T7631] F2FS-fs (loop3): NAT is corrupt, run fsck to fix it
[   91.187230][ T7631] F2FS-fs (loop3): Failed to initialize F2FS node manager (-117)
[   91.512800][ T7659] netdevsim netdevsim4: Direct firmware load for .. failed with error -2
[   91.520752][ T7659] netdevsim netdevsim4: Falling back to sysfs fallback for: ..
[   91.771910][ T7670] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[   91.775732][ T7670] overlayfs: missing 'lowerdir'
[   91.801851][ T7672] netlink: 12 bytes leftover after parsing attributes in process `syz.3.580'.
[   91.829620][ T7672] bridge1: port 1(veth3) entered blocking state
[   91.832485][ T7672] bridge1: port 1(veth3) entered disabled state
[   91.835296][ T7672] veth3: entered allmulticast mode
[   91.839392][ T7672] veth3: entered promiscuous mode
[   91.850809][ T7672] bridge1: port 2(veth0_to_bond) entered blocking state
[   91.853870][ T7672] bridge1: port 2(veth0_to_bond) entered disabled state
[   91.858057][ T7672] veth0_to_bond: entered allmulticast mode
[   91.862259][ T7672] veth0_to_bond: entered promiscuous mode
[   91.903047][ T7674] loop3: detected capacity change from 0 to 512
[   91.909887][ T7674] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.581: invalid block
[   91.915335][ T7674] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.581: invalid indirect mapped block 4294967295 (level 1)
[   91.921239][ T5849] Bluetooth: hci1: command 0x041b tx timeout
[   91.929640][ T7674] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.581: invalid indirect mapped block 4294967295 (level 1)
[   91.937581][ T7674] EXT4-fs (loop3): 2 truncates cleaned up
[   91.940745][ T7674] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   91.950025][ T7674] EXT4-fs error (device loop3): ext4_get_parent:1834: inode #11: comm syz.3.581: bad parent inode number: 3
[   91.971184][ T6477] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.032138][ T7681] loop1: detected capacity change from 0 to 2048
[   92.039336][ T7681] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[   92.043127][ T7681] NILFS (loop1): mounting unchecked fs
[   92.043144][ T5859] udevd[5859]: incorrect nilfs2 checksum on /dev/loop1
[   92.052172][ T7679] loop3: detected capacity change from 0 to 1764
[   92.055160][ T7681] NILFS (loop1): recovery complete
[   92.058412][ T7682] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   92.220795][ T7693] loop1: detected capacity change from 0 to 2048
[   92.227121][ T7693] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[   92.230678][ T7693] NILFS (loop1): too large filesystem blocksize: 2 ^ 347668480 KiB
[   92.231648][ T7555] udevd[7555]: incorrect nilfs2 checksum on /dev/loop1
[   92.363241][ T7698] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   92.381612][ T7696] loop1: detected capacity change from 0 to 32768
[   92.409292][ T7696] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[   92.453411][ T5846] ocfs2: Unmounting device (7,1) on (node local)
[   92.540037][ T7712] loop1: detected capacity change from 0 to 128
[   92.544173][ T7712] EXT4-fs: Ignoring removed nomblk_io_submit option
[   92.547723][ T7712] EXT4-fs: Ignoring removed nomblk_io_submit option
[   92.550254][ T7712] EXT4-fs (loop1): Test dummy encryption mode enabled
[   92.553780][ T7712] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   92.558174][ T7712] ext4 filesystem being mounted at /217/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   92.582250][ T7712] fscrypt: AES-256-CBC-CTS using implementation "cts(cbc(ecb(aes-fixed-time)))"
[   92.595003][ T5846] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   92.776052][   T24] usb 5-1: new full-speed USB device number 4 using dummy_hcd
[   92.866462][  T791] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[   92.927395][   T24] usb 5-1: config 0 has an invalid interface number: 251 but max is 0
[   92.930902][   T24] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   92.935251][   T24] usb 5-1: config 0 has no interface number 0
[   92.938852][   T24] usb 5-1: config 0 interface 251 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   92.946384][   T24] usb 5-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[   92.950081][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   92.953381][   T24] usb 5-1: Product: syz
[   92.955315][   T24] usb 5-1: Manufacturer: syz
[   92.957455][   T24] usb 5-1: SerialNumber: syz
[   92.960801][   T24] usb 5-1: config 0 descriptor??
[   92.965265][   T24] asix 5-1:0.251: probe with driver asix failed with error -22
[   93.015966][  T791] usb 2-1: Using ep0 maxpacket: 32
[   93.019701][  T791] usb 2-1: config 0 has an invalid interface number: 172 but max is 0
[   93.023206][  T791] usb 2-1: config 0 has no interface number 0
[   93.026208][  T791] usb 2-1: config 0 interface 172 altsetting 0 bulk endpoint 0xF has invalid maxpacket 8
[   93.032512][  T791] usb 2-1: New USB device found, idVendor=06f8, idProduct=301b, bcdDevice=bb.39
[   93.036556][  T791] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   93.039950][  T791] usb 2-1: Product: syz
[   93.041858][  T791] usb 2-1: Manufacturer: syz
[   93.043932][  T791] usb 2-1: SerialNumber: syz
[   93.047983][  T791] usb 2-1: config 0 descriptor??
[   93.054821][ T7718] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[   93.059655][  T791] gspca_main: gspca_pac7302-2.14.0 probing 06f8:301b
[   93.170718][   T10] usb 5-1: USB disconnect, device number 4
[   93.870300][  T791] input: gspca_pac7302 as /devices/platform/dummy_hcd.1/usb2/2-1/input/input6
[   93.915986][ T5849] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[   93.919583][ T5849] Bluetooth: hci1: Injecting HCI hardware error event
[   93.922480][ T5849] Bluetooth: hci1: hardware error 0x00
[   94.009683][ T7728] loop4: detected capacity change from 0 to 32768
[   94.030025][ T7728] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   94.050439][ T7744] loop3: detected capacity change from 0 to 128
[   94.056432][ T7744] EXT4-fs: Ignoring removed nobh option
[   94.058324][ T7728] XFS (loop4): Metadata corruption detected at xfs_agf_verify+0x1af/0x8f0, xfs_agf block 0x1 
[   94.068681][ T7728] XFS (loop4): Unmount and run xfs_repair
[   94.071057][ T7728] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[   94.074939][ T7728] 00000000: 58 41 47 46 00 00 00 00 00 00 00 00 00 00 20 00  XAGF.......... .
[   94.075740][    T9] usb 2-1: USB disconnect, device number 10
[   94.079150][ T7728] 00000010: 00 00 00 01 00 00 00 02 00 00 00 05 00 00 00 01  ................
[   94.087725][ T7728] 00000020: 00 00 00 01 00 00 00 01 00 00 00 01 00 00 00 06  ................
[   94.091899][ T7728] 00000030: 00 00 00 06 00 00 0d cb 00 00 0d b8 00 00 00 00  ................
[   94.098851][ T7744] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   94.104759][ T7728] 00000040: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91  ..G...N..b..1...
[   94.108270][ T7744] ext4 filesystem being mounted at /134/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   94.110666][ T7728] 00000050: 00 00 00 01 00 00 00 01 00 00 00 06 00 00 00 01  ................
[   94.116846][ T7728] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   94.120505][ T7728] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[   94.124104][ T7728] XFS (loop4): metadata I/O error in "xfs_read_agf+0x281/0x5c0" at daddr 0x1 len 1 error 117
[   94.131303][ T7728] XFS (loop4): Error -117 reserving per-AG metadata reserve pool.
[   94.135098][ T7728] XFS (loop4): Corruption of in-memory data (0x8) detected at xfs_fs_reserve_ag_blocks+0x1f0/0x240 (fs/xfs/xfs_fsops.c:566).  Shutting down filesystem.
[   94.143185][ T7728] XFS (loop4): Please unmount the filesystem and rectify the problem(s)
[   94.147053][ T7728] XFS (loop4): Ending clean mount
[   94.173852][ T6477] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   94.189883][ T7257] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   94.351743][ T7754] netlink: 4 bytes leftover after parsing attributes in process `syz.4.606'.
[   94.952286][ T7772] netlink: 12 bytes leftover after parsing attributes in process `syz.1.614'.
[   95.188008][ T7785] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   95.382886][ T7793] loop1: detected capacity change from 0 to 32768
[   95.389096][ T7793] bcachefs: bch2_fs_parse_param() Error parsing option move_bytes_in_flight: option_value
[   95.420208][ T7797] netlink: 16 bytes leftover after parsing attributes in process `syz.1.622'.
[   95.785027][ T7808] loop1: detected capacity change from 0 to 2048
[   95.792899][ T7808] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[   95.796859][ T7808] NILFS (loop1): mounting unchecked fs
[   95.849849][ T7808] NILFS (loop1): recovery complete
[   95.858942][ T7809] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   95.977391][ T7814] loop4: detected capacity change from 0 to 16
[   95.980514][ T7814] MTD: Attempt to mount non-MTD device "/dev/loop4"
[   95.996029][ T5849] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[   95.998897][ T7750] Bluetooth: hci1: Opcode 0x0401 failed: -4
[   96.060601][ T7822] netlink: 8 bytes leftover after parsing attributes in process `syz.4.631'.
[   96.066023][ T7822] netlink: 20 bytes leftover after parsing attributes in process `syz.4.631'.
[   96.114886][ T7829] loop4: detected capacity change from 0 to 8
[   96.130230][ T7829] SQUASHFS error: Failed to read block 0x6de: -5
[   96.132911][ T7829] SQUASHFS error: Unable to read metadata cache entry [6dc]
[   96.139130][ T7829] SQUASHFS error: Failed to read block 0x63a: -5
[   96.141676][ T7829] SQUASHFS error: Unable to read metadata cache entry [638]
[   96.144446][ T7829] SQUASHFS error: Unable to read directory block [26067d:ffff]
[   96.215289][ T7833] ipvlan2: entered promiscuous mode
[   96.219909][ T7833] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[   96.222710][ T7833] bond0: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[   97.214102][ T7837] loop3: detected capacity change from 0 to 32768
[   97.219713][ T7837] XFS: ikeep mount option is deprecated.
[   97.327303][ T7837] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   97.345208][ T7837] XFS (loop3): Ending clean mount
[   97.348969][ T7837] XFS (loop3): Quotacheck needed: Please wait.
[   97.394340][ T7837] XFS (loop3): Quotacheck: Done.
[   97.642237][ T6477] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   97.690971][ T7849] loop1: detected capacity change from 0 to 32768
[   97.703532][ T7849] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.643 (7849)
[   97.721084][ T7849] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   97.732111][ T7849] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[   97.774617][ T7849] BTRFS info (device loop1): enabling ssd optimizations
[   97.782475][ T7849] BTRFS info (device loop1): enabling free space tree
[   97.822653][ T7881] loop3: detected capacity change from 0 to 1024
[   97.847940][ T5846] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   97.853676][ T7881] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.885002][ T6477] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.975496][ T7889] loop1: detected capacity change from 0 to 128
[   97.981103][ T7889] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   97.989839][ T7889] ext4 filesystem being mounted at /241/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.035432][ T7894] netlink: 'syz.3.651': attribute type 15 has an invalid length.
[   98.040159][ T7894] netlink: 4 bytes leftover after parsing attributes in process `syz.3.651'.
[   98.048027][ T7894] bond0: option resend_igmp: invalid value (65535)
[   98.053430][ T7894] bond0: option resend_igmp: allowed values 0 - 255
[   98.122306][ T5846] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   98.159374][ T7901] loop1: detected capacity change from 0 to 512
[   98.198717][ T7901] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.204320][ T7901] ext4 filesystem being mounted at /242/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.228930][ T7901] capability: warning: `syz.1.654' uses deprecated v2 capabilities in a way that may be insecure
[   98.250834][ T5846] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.848816][ T5899] usb 5-1: new full-speed USB device number 5 using dummy_hcd
[   99.059842][ T5899] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   99.065462][ T5899] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   99.069925][ T5899] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[   99.072961][ T5899] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   99.079076][ T5899] usb 5-1: config 0 descriptor??
[   99.532887][ T5899] savu 0003:1E7D:2D5A.0003: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.4-1/input0
[   99.678856][ T7942] gtp0: entered promiscuous mode
[   99.684800][ T7942] gtp0: entered allmulticast mode
[   99.782089][   T24] usb 5-1: USB disconnect, device number 5
[  100.016189][ T5899] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  100.166246][ T5899] usb 2-1: Using ep0 maxpacket: 32
[  100.169131][ T5899] usb 2-1: config 0 has an invalid interface number: 184 but max is 0
[  100.172043][ T5899] usb 2-1: config 0 has no interface number 0
[  100.174182][ T5899] usb 2-1: config 0 interface 184 has no altsetting 0
[  100.179062][ T5899] usb 2-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  100.182649][ T5899] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  100.185773][ T5899] usb 2-1: Product: syz
[  100.187919][ T5899] usb 2-1: Manufacturer: syz
[  100.189409][ T5899] usb 2-1: SerialNumber: syz
[  100.191822][ T5899] usb 2-1: config 0 descriptor??
[  100.194722][ T5899] smsc75xx v1.0.0
[  100.537311][ T7958] loop3: detected capacity change from 0 to 16
[  100.540698][ T7958] erofs (device loop3): EXPERIMENTAL EROFS subpage compressed block support in use. Use at your own risk!
[  100.544291][ T7958] erofs (device loop3): mounted with root inode @ nid 36.
[  100.589778][ T7960] macvlan2: entered promiscuous mode
[  100.595070][ T7960] bond0: (slave macvlan2): Enslaving as an active interface with a down link
[  100.636660][ T7954] loop4: detected capacity change from 0 to 32768
[  100.684943][ T7954] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=data_checksum=none,compression=lz4,background_compression=lz4,recovery_pass_last=initialize_subvolumes,nojournal_transaction_names,noexcl,read_only
[  100.684963][ T7954]   allowing incompatible features above 0.0: (unknown version)
[  100.684970][ T7954]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  100.714250][ T7954] bcachefs (loop4): Using encoding defined by superblock: utf8-12.1.0
[  100.717817][ T7954] bcachefs (loop4): recovering from clean shutdown, journal seq 10
[  100.721632][ T7954] bcachefs (loop4): Version upgrade required:
[  100.721632][ T7954] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  100.721632][ T7954] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[  100.721632][ T7954]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  100.768764][ T7954] bcachefs (loop4): accounting_read... done
[  100.771726][ T7954] bcachefs (loop4): alloc_read... done
[  100.776303][ T7954] bcachefs (loop4): done starting filesystem
[  100.800112][ T7967] loop3: detected capacity change from 0 to 32768
[  100.837788][ T7257] bcachefs (loop4): shutting down
[  100.844275][ T7967] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io
[  100.844287][ T7967]   allowing incompatible features above 0.0: (unknown version)
[  100.844291][ T7967]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  100.860345][ T7967] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0
[  100.863516][ T7967] bcachefs (loop3): recovering from clean shutdown, journal seq 10
[  100.863954][ T7257] bcachefs (loop4): shutdown complete
[  100.868810][ T7967] bcachefs (loop3): Version upgrade required:
[  100.868810][ T7967] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  100.868810][ T7967] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[  100.868810][ T7967]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  100.897412][ T7967] bcachefs (loop3): dropping and reconstructing all alloc info
[  100.923576][ T7967] bcachefs (loop3): accounting_read... done
[  100.927559][ T7967] bcachefs (loop3): alloc_read... done
[  100.930331][ T7967] bcachefs (loop3): snapshots_read... done
[  100.933408][ T7967] bcachefs (loop3): check_allocations... done
[  100.945371][ T7967] bcachefs (loop3): going read-write
[  100.948455][ T7967] bcachefs (loop3): insufficient writeable journal devices available: have 0, need 1
[  100.948455][ T7967] rw journal devs:
[  100.959286][ T7967] bcachefs (loop3): done starting filesystem
[  100.964648][ T7979] binder: 7976:7979 ioctl c0306201 0 returned -14
[  100.990635][ T6477] bcachefs (loop3): shutting down
[  100.992368][ T6477] bcachefs (loop3): going read-only
[  100.994112][ T6477] bcachefs (loop3): finished waiting for writes to stop
[  100.997483][ T6477] bcachefs (loop3): flushing journal and stopping allocators, journal seq 10
[  101.000832][ T6477] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 10
[  101.004677][ T6477] bcachefs (loop3): unclean shutdown complete, journal seq 10
[  101.012210][ T6477] bcachefs (loop3): done going read-only, filesystem not clean
[  101.032458][ T6477] bcachefs (loop3): shutdown complete
[  101.251556][ T7987] loop4: detected capacity change from 0 to 32768
[  101.259616][ T7987] XFS: ikeep mount option is deprecated.
[  101.261931][ T7987] XFS: ikeep mount option is deprecated.
[  101.264064][ T7987] XFS: noikeep mount option is deprecated.
[  101.280499][ T7987] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  101.305313][ T7987] XFS (loop4): Ending clean mount
[  101.330278][ T7257] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  101.410208][ T5899] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -71
[  101.413857][ T5899] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  101.418201][ T5899] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  101.421558][ T5899] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[  101.424549][ T5899] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_reset
[  101.428200][ T5899] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[  101.431221][ T5899] smsc75xx 2-1:0.184: probe with driver smsc75xx failed with error -71
[  101.434910][ T5899] usb 2-1: USB disconnect, device number 11
[  101.623285][ T8001] loop4: detected capacity change from 0 to 8
[  101.627506][ T8001] MTD: Attempt to mount non-MTD device "/dev/loop4"
[  101.632266][ T8001] cramfs: Error -3 while decompressing!
[  101.634265][ T8001] cramfs: ffffffff99bec628(26)->ffff8880358f6000(4096)
[  101.637816][ T8001] cramfs: Error -3 while decompressing!
[  101.639637][ T8001] cramfs: ffffffff99bec642(26)->ffff8880358f5000(4096)
[  101.641862][ T8001] cramfs: Error -3 while decompressing!
[  101.643963][ T8001] cramfs: ffffffff99bec65c(16)->ffff8880358f4000(4096)
[  101.646921][ T8001] cramfs: Error -3 while decompressing!
[  101.649183][ T8001] cramfs: ffffffff99bec628(26)->ffff8880358f6000(4096)
[  101.651846][   T33] audit: type=1800 audit(1755835789.193:11): pid=8001 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.690" name="file2" dev="loop4" ino=348 res=0 errno=0
[  101.679912][ T8003] loop4: detected capacity change from 0 to 512
[  102.131248][ T8031] loop1: detected capacity change from 0 to 32768
[  102.142165][ T8031] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  102.151255][ T8031] XFS (loop1): Ending clean mount
[  102.165467][ T5846] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  102.310473][ T8049] loop1: detected capacity change from 0 to 2048
[  102.319871][ T7555] udevd[7555]: incorrect nilfs2 checksum on /dev/loop1
[  102.323341][ T8049] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  102.331770][ T8050] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  102.333857][ T8049] NILFS (loop1): corrupt root inode
[  102.632570][ T8064] loop1: detected capacity change from 0 to 32768
[  102.676536][ T8064] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,erasure_code,degraded=yes,no_splitbrain_check,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow
[  102.676556][ T8064]   allowing incompatible features above 0.0: (unknown version)
[  102.676564][ T8064]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  102.697209][ T8064] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0
[  102.701060][ T8064] bcachefs (loop1): recovering from clean shutdown, journal seq 10
[  102.704295][ T8064] bcachefs (loop1): Version upgrade required:
[  102.704295][ T8064] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  102.704295][ T8064] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[  102.704295][ T8064]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  102.732297][ T8064] bcachefs (loop1): dropping and reconstructing all alloc info
[  102.749317][ T8064] bcachefs (loop1): accounting_read... done
[  102.752246][ T8064] bcachefs (loop1): alloc_read... done
[  102.798729][ T8064] bcachefs (loop1): snapshots_read... done
[  102.809046][ T8064] bcachefs (loop1): done starting filesystem
[  103.069849][ T5846] bcachefs (loop1): shutting down
[  103.084931][ T5846] bcachefs (loop1): shutdown complete
[  103.425405][ T8102] loop3: detected capacity change from 0 to 4096
[  103.430280][ T8102] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  103.444444][ T8102] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  103.447229][ T8102] ntfs3(loop3): Failed to load $Extend (-22).
[  103.449298][ T8102] ntfs3(loop3): Failed to initialize $Extend.
[  103.590159][ T8108] loop3: detected capacity change from 0 to 32768
[  103.604080][ T8108] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  103.635147][ T8108] XFS (loop3): Ending clean mount
[  103.637707][ T8108] XFS (loop3): Quotacheck needed: Please wait.
[  103.643084][ T8108] XFS (loop3): Quotacheck: Done.
[  103.665432][ T6477] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  103.847938][ T8126] loop4: detected capacity change from 0 to 32768
[  103.894619][ T8126] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 255,nocow
[  103.894631][ T8126]   allowing incompatible features above 0.0: (unknown version)
[  103.894637][ T8126]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  103.914080][ T8126] bcachefs (loop4): Using encoding defined by superblock: utf8-12.1.0
[  103.919875][ T8126] bcachefs (loop4): initializing new filesystem
[  103.925305][ T8126] bcachefs (loop4): going read-write
[  103.936473][ T8126] bcachefs (loop4): marking superblocks
[  103.941185][ T8126] bcachefs (loop4): initializing freespace
[  103.944319][ T8126] bcachefs (loop4): done initializing freespace
[  103.954653][ T8126] bcachefs (loop4): reading snapshots table
[  103.957632][ T8126] bcachefs (loop4): reading snapshots done
[  103.964451][ T8126] bcachefs (loop4):  loop4: Superblock write was silently dropped! (seq 0 expected 42)
[  103.968638][ T8126] bcachefs (loop4): done starting filesystem
[  104.026917][ T7257] bcachefs (loop4): shutting down
[  104.028987][ T7257] bcachefs (loop4): going read-only
[  104.031324][ T7257] bcachefs (loop4): finished waiting for writes to stop
[  104.034209][ T7257] bcachefs (loop4): flushing journal and stopping allocators, journal seq 1
[  104.043253][ T7257] bcachefs (loop4): flushing journal and stopping allocators complete, journal seq 2
[  104.047407][ T7257] bcachefs (loop4): clean shutdown complete, journal seq 3
[  104.050274][ T7257] bcachefs (loop4): marking filesystem clean
[  104.058867][ T7257] bcachefs (loop4): shutdown complete
[  104.097676][    T9] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  104.247296][    T9] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  104.255946][    T9] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  104.260142][    T9] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  104.262985][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  104.265496][    T9] usb 4-1: SerialNumber: syz
[  104.508851][    T9] usb 4-1: 0:2 : does not exist
[  104.515593][    T9] usb 4-1: USB disconnect, device number 3
[  104.525669][ T7555] udevd[7555]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  105.169617][ T8180] loop3: detected capacity change from 0 to 256
[  105.172533][ T8180] exfat: Deprecated parameter 'namecase'
[  105.174525][ T8180] exfat: Deprecated parameter 'utf8'
[  105.176954][ T8180] exfat: Deprecated parameter 'namecase'
[  105.179192][ T8180] exfat: Bad value for 'time_offset'
[  105.696043][    T9] usb 4-1: new full-speed USB device number 4 using dummy_hcd
[  105.848606][    T9] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  105.852285][    T9] usb 4-1: too many endpoints for config 1 interface 0 altsetting 7: 255, using maximum allowed: 30
[  105.856625][    T9] usb 4-1: config 1 interface 0 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  105.861847][    T9] usb 4-1: config 1 interface 0 has no altsetting 0
[  105.867766][    T9] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  105.870828][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  105.873520][    T9] usb 4-1: SerialNumber: syz
[  105.884623][    T9] cdc_acm 4-1:1.0: invalid descriptor buffer length
[  105.887243][    T9] cdc_acm 4-1:1.0: Control and data interfaces are not separated!
[  105.889870][    T9] cdc_acm 4-1:1.0: This needs exactly 3 endpoints
[  105.892020][    T9] cdc_acm 4-1:1.0: probe with driver cdc_acm failed with error -22
[  106.103278][ T5912] usb 4-1: USB disconnect, device number 4
[  106.621683][   T33] audit: type=1326 audit(1755835794.163:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8191 comm="syz.3.759" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faff8b8ebe9 code=0x7ffc0000
[  106.629020][   T33] audit: type=1326 audit(1755835794.163:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8191 comm="syz.3.759" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faff8b8ebe9 code=0x7ffc0000
[  106.635779][ T8194] netlink: 12 bytes leftover after parsing attributes in process `syz.3.760'.
[  106.639466][   T33] audit: type=1326 audit(1755835794.163:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8191 comm="syz.3.759" exe="/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7faff8b8ebe9 code=0x7ffc0000
[  106.648326][   T33] audit: type=1326 audit(1755835794.163:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8191 comm="syz.3.759" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faff8b8ebe9 code=0x7ffc0000
[  106.665838][   T33] audit: type=1326 audit(1755835794.163:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8191 comm="syz.3.759" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faff8b8ebe9 code=0x7ffc0000
[  106.678815][   T33] audit: type=1326 audit(1755835794.163:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8191 comm="syz.3.759" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7faff8b8ebe9 code=0x7ffc0000
[  106.687075][   T33] audit: type=1326 audit(1755835794.163:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8191 comm="syz.3.759" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faff8b8ebe9 code=0x7ffc0000
[  106.694361][   T33] audit: type=1326 audit(1755835794.163:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8191 comm="syz.3.759" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faff8b8ebe9 code=0x7ffc0000
[  106.701763][   T33] audit: type=1326 audit(1755835794.163:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8191 comm="syz.3.759" exe="/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7faff8b8ebe9 code=0x7ffc0000
[  106.709524][   T33] audit: type=1326 audit(1755835794.163:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8191 comm="syz.3.759" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faff8b8ebe9 code=0x7ffc0000
[  106.717414][   T33] audit: type=1326 audit(1755835794.163:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8191 comm="syz.3.759" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faff8b8ebe9 code=0x7ffc0000
[  106.729808][   T33] audit: type=1326 audit(1755835794.163:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8191 comm="syz.3.759" exe="/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7faff8b8ebe9 code=0x7ffc0000
[  106.739013][   T33] audit: type=1326 audit(1755835794.163:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8191 comm="syz.3.759" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faff8b8ebe9 code=0x7ffc0000
[  106.747929][   T33] audit: type=1326 audit(1755835794.163:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8191 comm="syz.3.759" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faff8b8ebe9 code=0x7ffc0000
[  106.877664][ T8198] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.881832][ T8198] 8021q: adding VLAN 0 to HW filter on device team0
[  107.057321][ T8198] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  107.076892][   T12] ------------[ cut here ]------------
[  107.078901][   T12] RTNL: assertion failed at ./include/net/netdev_lock.h (72)
[  107.081786][   T12] WARNING: CPU: 0 PID: 12 at ./include/net/netdev_lock.h:72 __linkwatch_sync_dev+0x303/0x350
[  107.085461][   T12] Modules linked in:
[  107.087245][   T12] CPU: 0 UID: 0 PID: 12 Comm: kworker/u8:0 Not tainted syzkaller #0 PREEMPT(full) 
[  107.091871][   T12] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  107.095660][   T12] Workqueue: bond0 bond_mii_monitor
[  107.097930][   T12] RIP: 0010:__linkwatch_sync_dev+0x303/0x350
[  107.099947][   T12] Code: 7c fe ff ff e8 de 49 54 f8 c6 05 ee 1b 22 06 01 90 48 c7 c7 a0 b8 94 8c 48 c7 c6 81 e6 9f 8d ba 48 00 00 00 e8 be e8 17 f8 90 <0f> 0b 90 90 e9 4d fe ff ff 44 89 f1 80 e1 07 38 c1 0f 8c 22 fd ff
[  107.106745][   T12] RSP: 0018:ffffc900000f7670 EFLAGS: 00010246
[  107.108744][   T12] RAX: 7dfa739a720b0200 RBX: ffff888031af2000 RCX: ffff88801c2f5640
[  107.111402][   T12] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[  107.114135][   T12] RBP: 0000000000000000 R08: ffff88804b024253 R09: 1ffff1100960484a
[  107.117461][   T12] R10: dffffc0000000000 R11: ffffed100960484b R12: 1ffff1100635e45d
[  107.120741][   T12] R13: dffffc0000000000 R14: ffffffff8c1be8e8 R15: 0000000000000000
[  107.124090][   T12] FS:  0000000000000000(0000) GS:ffff8880b861b000(0000) knlGS:0000000000000000
[  107.127859][   T12] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  107.130511][   T12] CR2: 000000110c465f70 CR3: 00000000227a2000 CR4: 00000000000006f0
[  107.133242][   T12] Call Trace:
[  107.134404][   T12]  <TASK>
[  107.135453][   T12]  ? ethtool_op_get_link+0xd/0x70
[  107.137551][   T12]  ethtool_op_get_link+0x15/0x70
[  107.139656][   T12]  bond_check_dev_link+0x447/0x6c0
[  107.141639][   T12]  ? __pfx_bond_check_dev_link+0x10/0x10
[  107.143542][   T12]  ? rcu_is_watching+0x15/0xb0
[  107.145147][   T12]  ? lock_acquire+0x5f/0x360
[  107.146870][   T12]  ? mod_delayed_work_on+0x1ac/0x200
[  107.149110][   T12]  ? rcu_read_lock_held+0xa/0x50
[  107.150829][   T12]  ? netdev_lower_get_next_private_rcu+0x9f/0x100
[  107.152935][   T12]  bond_mii_monitor+0x428/0x2e00
[  107.154558][   T12]  ? bond_mii_monitor+0x153/0x2e00
[  107.156326][   T12]  ? __pfx_bond_mii_monitor+0x10/0x10
[  107.158495][   T12]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  107.160385][   T12]  ? do_raw_spin_lock+0x121/0x290
[  107.162429][   T12]  ? rcu_is_watching+0x15/0xb0
[  107.164416][   T12]  ? process_scheduled_works+0x9ef/0x17b0
[  107.167077][   T12]  ? rcu_is_watching+0x15/0xb0
[  107.169139][   T12]  ? lock_acquire+0x5f/0x360
[  107.171086][   T12]  ? rcu_is_watching+0x15/0xb0
[  107.173130][   T12]  ? process_scheduled_works+0x9ef/0x17b0
[  107.175547][   T12]  ? process_scheduled_works+0x9ef/0x17b0
[  107.178053][   T12]  process_scheduled_works+0xae1/0x17b0
[  107.180395][   T12]  ? __pfx_process_scheduled_works+0x10/0x10
[  107.182600][   T12]  worker_thread+0x8a0/0xda0
[  107.184128][   T12]  kthread+0x711/0x8a0
[  107.185461][   T12]  ? __pfx_worker_thread+0x10/0x10
[  107.187285][   T12]  ? __pfx_kthread+0x10/0x10
[  107.189002][   T12]  ? _raw_spin_unlock_irq+0x23/0x50
[  107.191144][   T12]  ? lockdep_hardirqs_on+0x9c/0x150
[  107.192852][   T12]  ? __pfx_kthread+0x10/0x10
[  107.194349][   T12]  ret_from_fork+0x3fc/0x770
[  107.196362][   T12]  ? __pfx_ret_from_fork+0x10/0x10
[  107.198258][   T12]  ? __switch_to_asm+0x39/0x70
[  107.199987][   T12]  ? __switch_to_asm+0x33/0x70
[  107.201550][   T12]  ? __pfx_kthread+0x10/0x10
[  107.203110][   T12]  ret_from_fork_asm+0x1a/0x30
[  107.204724][   T12]  </TASK>
[  107.205785][   T12] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  107.208200][   T12] CPU: 0 UID: 0 PID: 12 Comm: kworker/u8:0 Not tainted syzkaller #0 PREEMPT(full) 
[  107.211438][   T12] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  107.215010][   T12] Workqueue: bond0 bond_mii_monitor
[  107.216793][   T12] Call Trace:
[  107.218154][   T12]  <TASK>
[  107.219387][   T12]  dump_stack_lvl+0x99/0x250
[  107.221255][   T12]  ? __asan_memcpy+0x40/0x70
[  107.223148][   T12]  ? __pfx_dump_stack_lvl+0x10/0x10
[  107.225249][   T12]  ? __pfx__printk+0x10/0x10
[  107.227165][   T12]  vpanic+0x281/0x750
[  107.228833][   T12]  ? __pfx__printk+0x10/0x10
[  107.230764][   T12]  ? __pfx_vpanic+0x10/0x10
[  107.232712][   T12]  ? is_bpf_text_address+0x292/0x2b0
[  107.234854][   T12]  panic+0xb9/0xc0
[  107.236624][   T12]  ? __pfx_panic+0x10/0x10
[  107.238431][   T12]  __warn+0x31b/0x4b0
[  107.239790][   T12]  ? __linkwatch_sync_dev+0x303/0x350
[  107.241930][   T12]  ? __linkwatch_sync_dev+0x303/0x350
[  107.243736][   T12]  report_bug+0x2be/0x4f0
[  107.245350][   T12]  ? __linkwatch_sync_dev+0x303/0x350
[  107.247505][   T12]  ? __linkwatch_sync_dev+0x303/0x350
[  107.249711][   T12]  ? __linkwatch_sync_dev+0x305/0x350
[  107.251906][   T12]  handle_bug+0x84/0x160
[  107.253666][   T12]  exc_invalid_op+0x1a/0x50
[  107.255544][   T12]  asm_exc_invalid_op+0x1a/0x20
[  107.257523][   T12] RIP: 0010:__linkwatch_sync_dev+0x303/0x350
[  107.260007][   T12] Code: 7c fe ff ff e8 de 49 54 f8 c6 05 ee 1b 22 06 01 90 48 c7 c7 a0 b8 94 8c 48 c7 c6 81 e6 9f 8d ba 48 00 00 00 e8 be e8 17 f8 90 <0f> 0b 90 90 e9 4d fe ff ff 44 89 f1 80 e1 07 38 c1 0f 8c 22 fd ff
[  107.266687][   T12] RSP: 0018:ffffc900000f7670 EFLAGS: 00010246
[  107.269015][   T12] RAX: 7dfa739a720b0200 RBX: ffff888031af2000 RCX: ffff88801c2f5640
[  107.272026][   T12] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[  107.275060][   T12] RBP: 0000000000000000 R08: ffff88804b024253 R09: 1ffff1100960484a
[  107.278291][   T12] R10: dffffc0000000000 R11: ffffed100960484b R12: 1ffff1100635e45d
[  107.281174][   T12] R13: dffffc0000000000 R14: ffffffff8c1be8e8 R15: 0000000000000000
[  107.283810][   T12]  ? ethtool_op_get_link+0xd/0x70
[  107.285606][   T12]  ethtool_op_get_link+0x15/0x70
[  107.287252][   T12]  bond_check_dev_link+0x447/0x6c0
[  107.289193][   T12]  ? __pfx_bond_check_dev_link+0x10/0x10
[  107.291290][   T12]  ? rcu_is_watching+0x15/0xb0
[  107.293172][   T12]  ? lock_acquire+0x5f/0x360
[  107.295183][   T12]  ? mod_delayed_work_on+0x1ac/0x200
[  107.297447][   T12]  ? rcu_read_lock_held+0xa/0x50
[  107.299556][   T12]  ? netdev_lower_get_next_private_rcu+0x9f/0x100
[  107.301844][   T12]  bond_mii_monitor+0x428/0x2e00
[  107.303482][   T12]  ? bond_mii_monitor+0x153/0x2e00
[  107.305368][   T12]  ? __pfx_bond_mii_monitor+0x10/0x10
[  107.307143][   T12]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  107.309259][   T12]  ? do_raw_spin_lock+0x121/0x290
[  107.311360][   T12]  ? rcu_is_watching+0x15/0xb0
[  107.313438][   T12]  ? process_scheduled_works+0x9ef/0x17b0
[  107.315810][   T12]  ? rcu_is_watching+0x15/0xb0
[  107.317797][   T12]  ? lock_acquire+0x5f/0x360
[  107.319719][   T12]  ? rcu_is_watching+0x15/0xb0
[  107.321702][   T12]  ? process_scheduled_works+0x9ef/0x17b0
[  107.323767][   T12]  ? process_scheduled_works+0x9ef/0x17b0
[  107.325784][   T12]  process_scheduled_works+0xae1/0x17b0
[  107.327611][   T12]  ? __pfx_process_scheduled_works+0x10/0x10
[  107.329608][   T12]  worker_thread+0x8a0/0xda0
[  107.331174][   T12]  kthread+0x711/0x8a0
[  107.332556][   T12]  ? __pfx_worker_thread+0x10/0x10
[  107.334250][   T12]  ? __pfx_kthread+0x10/0x10
[  107.335942][   T12]  ? _raw_spin_unlock_irq+0x23/0x50
[  107.337622][   T12]  ? lockdep_hardirqs_on+0x9c/0x150
[  107.339331][   T12]  ? __pfx_kthread+0x10/0x10
[  107.340895][   T12]  ret_from_fork+0x3fc/0x770
[  107.342456][   T12]  ? __pfx_ret_from_fork+0x10/0x10
[  107.344385][   T12]  ? __switch_to_asm+0x39/0x70
[  107.346312][   T12]  ? __switch_to_asm+0x33/0x70
[  107.348127][   T12]  ? __pfx_kthread+0x10/0x10
[  107.349667][   T12]  ret_from_fork_asm+0x1a/0x30
[  107.351289][   T12]  </TASK>
[  107.352998][   T12] Kernel Offset: disabled
[  107.354407][   T12] Rebooting in 86400 seconds..

VM DIAGNOSIS:
04:09:54  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000020 RBX=0000000000000020 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc900000f6e10
R8 =ffff88801fdc0237 R9 =1ffff11003fb8046 R10=dffffc0000000000 R11=ffffffff854f1d00
R12=dffffc0000000000 R13=ffffffff99afa8e5 R14=ffffffff99def3e0 R15=0000000000000000
RIP=ffffffff854f1d7c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880b861b000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000110c465f70 CR3=00000000227a2000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 00000000000000ff XMM01=2525252525252525 2525252525252525
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 00000000000000ff XMM05=0000000000000031 0000000000003010
XMM06=0000000000000000 0000000000000000 XMM07=0000000000000000 0000000000000000
XMM08=ffffffffffffff00 ffffffffffff0000 XMM09=0000000000000031 000000000000302e
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffffffff820a8ff7 RBX=ffffc900046c7ce0 RCX=ffff8880220c9cc0 RDX=0000000000000000
RSI=0000000000000001 RDI=0000000000000003 RBP=ffffc900046c7bf0 RSP=ffffc900046c7a38
R8 =ffff888025dd4783 R9 =1ffff11004bba8f0 R10=dffffc0000000000 R11=ffffed1004bba8f1
R12=1ffff920008d8fa6 R13=dffffc0000000000 R14=0000000000000001 R15=ffffc900046c7d30
RIP=ffffffff81bfab30 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055556beb6500 ffffffff 00c00000
GS =0000 ffff8881a3c1b000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fbe732e5690 CR3=0000000124702000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=ffff000000000000 000000ff00000000 XMM05=0000000000000000 00007fbe72612e53
XMM06=0000000000000000 00007fbe72612e4d XMM07=0000000000000000 00007fbe72612e61
XMM08=0000000000000000 00007fbe72612ee7 XMM09=0000000000000000 00007fbe72612fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
