last executing test programs:

20.972155701s ago: executing program 0 (id=398):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000300)='mm_collapse_huge_page\x00', r0, 0x0, 0x9}, 0x18)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)

20.971543421s ago: executing program 0 (id=400):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)=@newqdisc={0x48, 0x24, 0x3fe3aa0262d8c783, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_choke={{0xa}, {0x18, 0x2, [@TCA_CHOKE_PARMS={0x14, 0x1, {0x0, 0xfffffffc, 0x0, 0x1c}}]}}]}, 0x48}}, 0x0)

20.89646783s ago: executing program 0 (id=402):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000003e001107000008000000000003"], 0x20}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)

20.816660224s ago: executing program 0 (id=404):
prctl$PR_SCHED_CORE(0x48, 0x2, 0x0, 0x0, &(0x7f0000000000))

20.816423754s ago: executing program 0 (id=405):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x40000, 0x120)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x888000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0, {0x4}}, './file0/file0\x00'})

20.746189275s ago: executing program 0 (id=406):
r0 = socket$netlink(0x10, 0x3, 0x4)
bind$netlink(r0, &(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000000}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x4)
writev(r1, &(0x7f0000000080)=[{&(0x7f0000000000)="580000001400192340834b80043f679a10ff3d425f9cc3f40600000000000000cebecc4b381eaadc28f23457e792945f6400940015cc28925a0000c600000000220000feff6c707f8f00ff5946ef1f05040bf54110ba0000", 0x58}], 0x1)

5.616852854s ago: executing program 32 (id=406):
r0 = socket$netlink(0x10, 0x3, 0x4)
bind$netlink(r0, &(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000000}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x4)
writev(r1, &(0x7f0000000080)=[{&(0x7f0000000000)="580000001400192340834b80043f679a10ff3d425f9cc3f40600000000000000cebecc4b381eaadc28f23457e792945f6400940015cc28925a0000c600000000220000feff6c707f8f00ff5946ef1f05040bf54110ba0000", 0x58}], 0x1)

3.749235694s ago: executing program 2 (id=579):
syz_usb_connect(0x2, 0x3f0, &(0x7f0000000140)=ANY=[@ANYBLOB="1201000072771c40e00500069bf9010203010902de0301000000000904af00100de1130009050900400000b208ab035ac996787ecb440a6cd869ab0f7077064618a072d7bb7916a199dedaf7708866e5233e204dd14444c3ee6b718038526c6bd45123a28131dc5c483de3e462a652473d558e27e67a040b3ce5b78166e74a0f16f9df02be33a9b200b92587ba73bd6c540e25637c4e8e6a381c9d3ee1e8521863c2d3cef0ffffff93fec28c8604a378f65ff31e903b4b79031a4301e0244b2ff9f0b469afb99f40f79a6de21f2f29bc61cf090aa1e112da07250101000300090507080800040406b505bce3"], 0x0)

2.416156681s ago: executing program 2 (id=584):
syz_mount_image$exfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xa1080a, &(0x7f0000000300)=ANY=[@ANYBLOB='dmask=00000000000000000002621,utf8,umask=00000000000000000200000,namecase=1,discard,errors=remount-ro,umask=00000000000000000200004,umask=00000000000000000003377,namecase=1,utf8,iocharset=iso8859-4,allow_utime=00000000000000000000011,dmask=01777777777777777777770,errors=remount-ro,uid=', @ANYRES32=0x0, @ANYRES16, @ANYRESDEC, @ANYRES16=0x0, @ANYRES8=0x0, @ANYRES16=0x0, @ANYRES32=0x0, @ANYRESDEC, @ANYRES8, @ANYRESDEC], 0x21, 0x150d, &(0x7f0000001f80)="$eJzs3AvUTdX6MPDnmXMuXpJ2ksvLfOaz2OnFJElySZJLkiRHktwSkiRJksr9loQk5J7kHpJbSO73W+5JcqQ3SUJCkvkN5zinOud8X//z/5//MMb3Pr8x1tjz2Ws/c8+5nne8a821x97fdhxctX61SnWZGf5H8K8P3QAgBQD6AcA1ABABQKkcpXJc2p9FY7f/2ZuI/6wHp13pEYgrSeqfsUn9Mzapf8Ym9c/YpP4Zm9Q/Y5P6Z2xSfyEysm3T814rW8bd5P5/Ribn//+PpBcb8+WGYtd3+jdSpP4Zm9Q/Y5P6Z2xS/4wp0+VHqX/GJvXP2KT+GZvUX4iM7L9/7/jfzTUAcOXvd8v2++1K//0JIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhMgYzoVfGQD4W/tKj0sIIYQQQgghhBD/OSHzlR6BEEIIIYQQQggh/vchKNBgIIJMkBlSIAtkhasgG1wN2eEaSMC1kAOug5xwPeSC3JAH8kIq5IP8YIHAAUMMBaAgJOEGKAQ3QhoUhiJQFDwUg+JwE5SAm6Ek3AKl4FYoDbdBGSgL5aA83A4V4A6oCHdCJbgLKkMVqArV4G6oDvdADbgXasJ9UAvuh9rwANSBP0FdeBDqwUNQHx6GBvAINIRG0BiaQNP/Vv6L8BK8DF2gK3SD7tADekIv6A19oC/0g1egP6RcPjaDYDC8DkPgDRgKb8IwGA4j4C0YCaNgNIyBsTAOxsPbMAHegYnwLkyCyTAFpsI0mA4z4D2YCbNgNrwPc+ADmAvzYD4sgIXwISyCxbAEPoKl8DEsg+WwAlbCKlgNa2AtrIP1sAE2wibYDFtgK2yDT2A77ICdsAt2wx7YC5/CPvgM9sPncAC++Dfzz/5DficEBFSo0KDBTJgJUzAFs2JWzIbZMDtmxwQmMAfmwJyYE3NhrhvzYB5MxVTMj/mRkJCRsQAWwCQmsRAWwjRMwyJYBD16LI7FsQTejCWxJJbCUlgaS2MZLItlsTyWxwpYAStiRayElbAyVsaqWBXvxrvxHqyBNbAm1sRaWAtrY21Mz1cH62JdrIf1sD7WxwbYABtiQ2yMjbEpNsVm2AybY3NsiS2xFbbC1tga22AbbIttsR22w/bYHjtgB+yIHbETvoAv4Iv4Ir6ML2NXrKy6Yw/sgb2wF/bBvtgXX8H++Cq+iq/hQByEg/F1fB3fwKF4BofhcByBI7CCGoWjcQyyGofjcTxOwAk4ESfiJJyMk3EqTsPpOANn4EychbPwfZyDH+AHOA/n4QJciAtxES7GJbgEl+JZXIbLcQWuxFW4GlfhWlyHa3EDbsQNuBk341bcip/gJ7gDd+Au3IV70ADgp/gZfoYD8QAewIN4EA/hITyMhzEd0/EIHsGjeBSP4TE8jsfxBJ7EU3gST+NpPINn8Ryew/N4Hi/gc6lf19tTeP1AUJcYZVQmlUmlqBSVVWVV2VQ2lV1lVwmVUDlUDpVT5VS5VC6VR+VRqSpV5Vc/KVKkWMWqgCqgkiqpCqlCKk2lqSKqiPLKq+KquCqhSqiSqqQqpW5VpdVtqowqq1r48qq8qqBa+orqTlVJVVKVVRVVVVVT1VR1VV3VUDVUTVVT1VK1VG31gKqjumMffFBdqkx9NQgbqMHYUDVSjVUT9QY+qpqpodhctVAt1eNqOA7D1qqZb6OeUm3VaGynnlFj8FnVQY3Djup51Um9oDqrF9VLqrnvorqqSdhd9VBTsZfqrfqovmomVlGXKlZVvaYGqkFqsHpdLcA31FD1phqmhqsR6i01Uo1So9UYNVaNU+PV22qCekdNVO+qSWqymqKmqmlqupqh3lMz1Sw1W72v5qgP1Fw1T81XC9RC9aFapBarJeojtVR9rJap5WqFWqlWqdVqjVqr1qn1aoPaqDapzWqL2qq2qU/UdrVD7VS71G61R+1Vn6p96jO1X32uDqgv1EH1Z3VIfakOq69UuvpaHVHfqKPqW3VMfaeOq+/VCXVSnVI/qNPqR3VGnVXn1E/qvPpZXVC/qIsqKNColdba6Ehn0pl1is6is+qrdDZ9tc6ur9EJfa3Ooa/TOfX1OpfOrfPovDpV59P5tdWknWYd6wK6oE7qG3QhfaNO04V1EV1Ue11MF9c36RL6Zl1S36JL6Vt1aX2bLqPL6nK6vL5dV9B36Ir6Tl1J36Ur6yq6qq6m79bV9T26hr5X19T36Vr6fl1bP6Dr6D/puvpBXU8/pOvrh3UD/YhuqBvpxrqJbqof1c30Y7q5bqFb6sd1K/2Ebq2f1G30U7qtflq308/o9vpZ3UE/pzvq53Un/YLurH/RF3XQXXRX3U131z10T91L99Z9dF/dT7+i++tX9QD9mh6oB+nB+nU9RL+hh+o39TA9XI/Qb+mRepQercfosXqcHq/f1hP0O3qifldP0pP1FD1VT9PTdZ/LPc3+L+S/8y/yB2QGAL1Vb9Of6O16h96pd+ndeo/eq/fqfXqf3q/36wP6gD6oD+pD+pA+rA/rdJ2uj+gj+qg+qo/pY/q4Pq5P6JP6J/2DPq1/1Gf0WXX5xKYvXD4GYNAoo40xkclkMpsUk8VkNVeZbOZqk91cYxLmWpPDXGdymutNLpPb5DF5TarJZ/Iba8g4wyY2BUxBkzQ34OW+TRFT1HhTzBQ3N/07+aaQudGkmcK/y/+j8TU1TU0z08w0N81NS9PStDKtTGvT2rQxbUxb09a0M+1Me9PedDAdTEfT0XQynUxn09m8ZF4yXUwX0810Mz1MT9PL9DZ9TF/Tz7xi+pv+ZoAZYAaagWawGWyGmCFmqBlqhplhZoQZYUaakWa0GW3GmrFmvBlvJpgJZqKZaCaZSWaKmWKmmWlmhplhZpqZZraZbeaYOWaumWvmm/lmoVloFplFZolZYpaapWaZWW6Wm5VmpVltVpu1Zq1Zb9abjWaj2Ww2m2WZt5ltZrvZbnaanWa32W32mr1mn9ln9pv95oA5YA6ag+aQOWQOm8Mm3aSbI+aIOWqOmmPmmDlujpsT5oQ5ZU6Z0+a0OWPOmHPmnDlvzpsL5oK5aC5euuyLVKQiE5koU5QpSolSoqxR1ihblC3KHmWPElEiyhHliHJG10e5otxRnihvlBrli/JHNqLIRRzFUYGoYJSMbogKRTdGaVHhqEhUNPJRsah4dFNUIro5KhndEpWKbo1KR7dFZaKyUbmofHR7VCG6I6oY3RlViu6KKkdVoqpRtejuqHp0T1QjujeqGd0X1Yruj2pHD0R1oj9FdaMHo3rRQ1H96OGoQfRI1DBqFDWOmkRN/6P9h3Am92O+i+1qu9nutoftaXvZ3raP7Wv72Vdsf/uqHWBfswPtIDvYvm6H2DfsUPumHWaH2xH2LTvSjrKj7Rg71o6z4+3bdoJ9x06079pJdrKdYqfaaXa6nWHfszPtLDvbvm/n2A/sXDvPzrcL7EL7oV1kF9sl9iO71H5sl9nldoVdaVfZ1XaNXWvX2fV2g91oN9nNdovdarfZT+x2u8PutLvsbrvH7rWf2n32M7vffm4P2C/sQftne8h+aQ/br2y6/doesd/Yo/Zbe8x+Z4/b7+0Je9Kesj/Y0/ZHe8aetefsT/a8/dlesL/YizZcuri/dHonQ4YyUSZKoRTKSlkpG2Wj7JSdEpSgHJSDclJOykW5KA/loVRKpfyUny5hYipABShJSSpEhSiN0qgIFSFPnopTcSpBJagklaRSVIpKU2kqQ2WoHJWj2+l2uoPuoDvpTrqL7qIqVIWqUTWqTtWpBtWgmlSTalEtqk21qQ7VobpUl+pRPapP9akBNaCG1JAaU2NqSk2pGTWj5tScWlJLakWtqDW1pjbUhtpSW2pH7ag9tacO1IE6UkfqRJ2oM3Wml+gl6kJdqBt1ox7Ug3pRL+pDfagf9aP+1J8G0AAaSANpMA2mITSEhtJQGkbDaQS9RSNpFI2mMTSWxtF4Gk8TaAJNpIk0iSbRFJpC02gazaAZNJNm0myaTXNoDs2luTSf5tNCWkiLaBEtoSW0lJbSMlpGK2gFraJVtIbW0DpaRxtoA22iTbSFttA22kbbaTvtpJ20m3bTXtpL+2gf7af9dIAO0EE6SIfoEB2mw5RO6XSEjtBROkrH6Bgdp+N0gk7QKTpFp+k0naEzdI7O0Xn6mS7QL3SRAqW4LC6ru8plc1e77O4a949xHpfXpbp8Lr+zLpfL/buYnHNprrAr4oo674q54u4ml3ZpSfWbuIwr68q58u52V8Hd4Sr+U1zd3eNquHtdTXefq+bu/l1cy93varuHXR33iKvrGrl6romr7x52DdwjrqFr5Bq7Jq6Ve8K1dk+6Nu4p19Y9Hf1D7Ba5xW6dW+82uI1un/vMnXM/uaPuW3fe/ey6uK6un3vF9XevugHuNTfQDfqneIR7y410o9xoN8aNdeP+KZ7iprppbrqb4d5zM92sf4oXug/dHLfEzXXz3Hy34C/xpTEtcR+5pe5jt8wtdyvcSrfKrXZr3Nq/j3Wl2+y2uK1ur/vUbXc73E63y+12e/4SX5rHfve5O+C+cEfcN+6Q+9Iddsdcuvv6L/Gl+R1z37nj7nt3wp10p9wP7rT70Z1xZ/8y/0tz/8H94i664ICRFWs2HHEmzswpnIWz8lWcja/m7HwNJ/hazsHXcU6+nnNxbs7DeTmV83F+tkzsmDnmAlyQk3wDF+IbOY0LcxEuyp6LcXG+iUvwzVySb+FSfCuX5tu4DJflclyeb+cKfAdX5Du5Et/FlbkKV+VqfDdX53u4Bt/LNfk+rsX3c21+gOvwn7guP8j1+CGuzw9zA36EG3IjbsxNuCk/ys34MW7OLbglP86t+AluzU9yG36K2/LT3I6f4fb8LHfg57gjP8+d+AXuzC/yS/wyd+Gu3I27cw/uyb24N/fhvtyPX+H+/CoP4Nd4IA/iwfw6D+E3eCi/ycN4OI/gt3gkj+LRPIbH8jgez2/zBH6HJ/K7PIkn8xSeytN4Os/g93gmz+LZ/D7P4Q94Ls/j+byAF/KHvIgX8xL+iJfyx7yMl/MKXsmreDWv4bW8jtfzBt7Im3gzb+GtvI0/4e28g3fyLt7Ne3gvf8r7+DPez5/zAf6CD/Kf+RB/yYf5K07nr/kIf8NH+Vs+xt/xcf6eT/BJPsU/8Gn+kc/wWT7HP/F5/pkv8C98kQNDjLGKdWziKM4UZ45T4ixx1viqOFt8dZw9viZOxNfGOeLr4pzx9XGuOHecJ84bp8b54vyxjSl2McdxXCAuGCfjG+JC8Y1xWlw4LhIXjX1cLC4e3xSXiG+OS8a3xKXiW+PS8W1xmbhs/PB95ePb4wrxHXHF+M64UnxXXDmuEleNq8V3x9Xje+Ia8b1xzfi+uGR8f1w7fiCGy99XqRc/FNePH44bxI/EDeNGceO4Sdw0fjRuFj8WN49bxC3jx+NW8RNx6/jJuE38VNw2fvoP93eLu8c94p5xzziEe/X85ILkwuSHyUXJxcklyY+SS5MfJ5cllydXJFcmVyVXJ9ck1ybXJdcnNyQ3JjclNye3JLcmQ6iWGTx65bU3PvKZfGaf4rP4rP4qn81f7bP7a3zCX+tz+Ot8Tn+9z+Vz+zw+r0/1+Xx+bz1559nHvoAv6JP+Bl/I3+jTfGFfxBf13hfzxX0T39Q39c38Y765b+Fb+sf94/4J/4R/0j/pn/Jt/dO+nX/Gt/fP+g7+Of+cf9538i/4zv5F/5J/2XfxXX0338338D18L9/L9/F9fD/fz/f3/f0AP8AP9AP9YD/YD/FD/FA/1A/zw/wIP8KP9CP9aD/aj/Vj/Xg/3k/wE/xEP9FP8pP8FD/FT/PT/Aw/w8/0M/1sP9vPSZvj5/q5fr6f7xf6hX6RX+SX+CV+qV/ql/llfoVf4Vf5VX6NX+PX+XV+g9/gN/lNfovf4rf5bX673+53+p1+t9/t9/q9fp/f5/f7/f6AP+AP+oP+kD/kD/uvfLr/2h/x3/ij/lt/zH/nj/vv/Ql/0p/yP/jT/kd/xp/15/xP/rz/2V/wv/iLPvjxibcTExLvJCYm3k1MSkxOTElMTUxLTE/MSLyXmJmYlZideD8xJ/FBYm5iXmJ+YkFiYeLDxKLE4sSSxEeJpYmPE8sSyxMrEisTqxKrEyHk2x6HAqFgSIYbQqFwY0gLhUORUDT4UCwUDzeFEuHmUDLcEkqFW0PpcFsoE8qGcuGR0DA0Co1Dk9A0PBqahcdC89AitAyPh1bhidA6PBnahKdC2/B0aBeeCe3Ds6FDeC50DM+HTn9bcYWXQ5fQNXQL3UOP0DP0Cr1Dn9A39AuvhP7h1TAgvBYGhkFhcHg9DAlvhKHhzTAsDA8jwlthZBgVRocxYWwYF8aHt8OE8E6YGN4Nk8LkMCVMDdPC9DAjvBdmhllhdng/zAkfhLlhXpgfFoSF4cOwKCwOS8JHYWn4OCwLy8OKsDKsCqvDmrA2rAvrw4awMWwKm8OWsDVsC5+E7WFH2Bl2hd1hT9gbPg37wmdhf/g8HAhfhIPhz+FQ+DIcDl+F9PB1OBK+CUfDt+FY+C4cD9+HE+FkOBV+CKfDj+FMOBvOhZ/C+fBzuBB+CRflO2tCCCGEEP8lPf9gf/d/8ZwBgL99kNADAK7ekTf9t/s1AGzK9dd2b5XaKgEAT3Xt+ODftsqVu3Xrdvm1yzREBecBQOIf3uByvBxawhPQBlpAiX85vt7qhfP8B/0nbwXI+pucFPg1/nv/+K/n31s9+viIRaXjczn+H/3PA0gr+GtOFvg1Xg4tL80GWkDJ/0v/uZv9wfizfDkeoPlvcrLBr/Gvx6c4PAZPQ5vfvVIIIYQQQgghhPir3qpc+z9aP19an6cC/H2FnBkAUs1f23+0PhdCCCGEEEIIIcSV9+wLnZ98tE2bFu2lIQ1pSOPvjSv9n0kIIYQQQgjxn/brRf+vz2W5kgMSQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCEyoN/86FcWAPhf+TmxKz1HIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQ4kr7PwEAAP//lOcr+A==")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='net_prio.prioidx\x00', 0x275a, 0x0)
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r0, 0x80047210, 0x0)

2.274632345s ago: executing program 1 (id=585):
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xef, &(0x7f0000000200)=[{&(0x7f0000000040)="89000000120081ae08060cdc030000017f03e3f7000000006ee2ffca1b1f00ff0f00000000000050375ed08a56331dbf9ed78105001ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120c00010007080c00bdad20409bbc7a46e39a54cbbda812176679df069163ce955fed0009d78f0a947ee2b49e33538afaeb2713f450ebd010a20ff27fff", 0x89}], 0x1, 0x0, 0x0, 0x7}, 0x24002040)

2.274321961s ago: executing program 2 (id=586):
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
r0 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
truncate(&(0x7f0000000180)='./file0\x00', 0x8fff5)
r2 = getpid()
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000300)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000340)=[0x200], 0x0, 0x0, 0x1, 0x1, r2}}, 0x40)
mprotect(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2)

2.089758429s ago: executing program 2 (id=587):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x80000, {0x0, 0x0, 0x0, 0x0, {}, {0xb, 0xb}, {0xa, 0xb}}}, 0x24}, 0x1, 0x0, 0x0, 0x8840}, 0x4008000)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="000086dd0500560008005400000060ec970001983a00fc000018c6ba35000000000000000700ff020000000000000000000000000001000000000000000000000000000000000000000000000000860090780000000000000000000000000000ee3f000000002b036f8c006e75021d683910c3090b3188a7c747eb2278a273c1b80029442911892704"], 0xfdef)

1.706293569s ago: executing program 1 (id=588):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x210000, &(0x7f0000000280)={[{@user_xattr}, {@noquota}, {@dioread_nolock}, {@jqfmt_vfsv1}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x70}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@stripe={'stripe', 0x3d, 0x24}}, {@bsdgroups}, {@max_batch_time={'max_batch_time', 0x3d, 0x3fe}}, {@bh}, {@noinit_itable}]}, 0x3, 0x583, &(0x7f0000000800)="$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")
gettid()
openat$sndseq(0xffffffffffffff9c, 0x0, 0x2000)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000066000000004b64ffec850000006d000000c50000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$MON_IOCX_GET(0xffffffffffffffff, 0x40189206, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
memfd_create(0x0, 0x0)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0xa, 0x101, 0x7fff, 0xcc}, 0x50)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan0\x00'})
r5 = socket$inet(0x2, 0x1, 0x0)
setsockopt$sock_int(r5, 0x1, 0x2, &(0x7f0000000040)=0x7f, 0x4)
listen(r5, 0x0)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x800002, &(0x7f0000000000)={[{@noblock_validity}, {@dioread_nolock}, {@errors_continue}, {@minixdf}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}], [], 0x22}, 0x84, 0x464, &(0x7f0000000f40)="$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")
mount(0x0, &(0x7f0000000240)='.\x00', 0x0, 0x2390024, &(0x7f0000000000))

772.0592ms ago: executing program 1 (id=589):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00'}, 0x10)
r1 = fsopen(&(0x7f00000001c0)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f00000000c0)='test_dummy_encryption', &(0x7f0000000180)='v1to_da_alloc', 0x0)

629.695711ms ago: executing program 1 (id=590):
syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x2000844, &(0x7f0000000080)={[{@fat=@time_offset={'time_offset', 0x3d, 0x4f7}}, {@fat=@uid}, {@nodots}, {@dots}, {@fat=@allow_utime={'allow_utime', 0x3d, 0x8}}, {@fat=@discard}, {}, {@dots}, {@nodots}, {@fat=@fmask={'fmask', 0x3d, 0x1fe}}, {@fat=@nfs_stale_rw}, {@fat=@nfs_stale_rw}, {@dots}, {@fat=@sys_immutable}, {}, {@fat=@nocase}]}, 0x21, 0x23d, &(0x7f0000000a40)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x200)

541.964226ms ago: executing program 1 (id=591):
syz_mount_image$ext4(&(0x7f0000000380)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000500)={[{@data_err_abort}, {@nojournal_checksum}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@init_itable_val={'init_itable', 0x3d, 0x1}}, {@data_err_ignore}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x4}}, {@data_err_ignore}, {@journal_dev={'journal_dev', 0x3d, 0x800}}, {@nobh}, {@inlinecrypt}, {@data_err_ignore}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")

399.591127ms ago: executing program 1 (id=592):
r0 = socket$igmp(0x2, 0x3, 0x2)
io_setup(0x19, &(0x7f0000000100)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000004500)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x11, r0, 0x0}])
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000001400), 0x2, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
syz_open_dev$evdev(&(0x7f00000001c0), 0x2, 0x862b01)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x10, 0x3, 0x0)
pselect6(0x40, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0xc3ac}, 0x0, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x4, &(0x7f0000001080)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x33}}, 0x10)

150.913591ms ago: executing program 2 (id=593):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x6)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000400)=@newqdisc={0x48, 0x24, 0x5820a61ca228651, 0x0, 0x2, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x7fffffff, 0x1}}]}}]}, 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000001280)=@newtfilter={0x134, 0x28, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x4}, {0xfffb}, {0xfff1, 0x3d}}, [@filter_kind_options=@f_bpf={{0x8}, {0x108, 0x2, [@TCA_BPF_ACT={0x104, 0x1, [@m_ife={0x100, 0x4, 0x0, 0x0, {{0x8}, {0x40, 0x2, 0x0, 0x1, [@TCA_IFE_TYPE={0x6, 0x5, 0x7fff}, @TCA_IFE_TYPE={0x6, 0x5, 0x3}, @TCA_IFE_SMAC={0xa, 0x4, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}}, @TCA_IFE_DMAC={0xa, 0x3, @multicast}, @TCA_IFE_METALST={0x10, 0x6, [@IFE_META_SKBMARK={0x4, 0x1, @void}, @IFE_META_SKBMARK={0x8, 0x1, @val=0x1000}]}, @TCA_IFE_METALST={0x4}]}, {0x99, 0x6, "64dacf76519526fa0827781733a17fa85a0f1b3c889b01ee9ab44b7eb45ececf792ccdb1d63c3731a9838bdaead1b73721d38d21a3eaf4da5a8f956c2c4a4171419b2e3c864ee2e74a4a9a28b6f5d1c504de5a6177becb6e0a6f57e9b3b04539b460d4955bafb3e26a6eec0260b642240d33b79e03ac4a5ce82bc939abb0f7ec6c1889cbbcb6a76e3cd4371ad7155e9f9534c20b6b"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}]}, 0x134}}, 0x0)

0s ago: executing program 2 (id=594):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x8, 0x2, 0x4, 0x5}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r3, <r4=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x10000002}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
socket$can_bcm(0x1d, 0x2, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r6, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r6, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r6, 0x6, 0x16, 0x0, 0x0)
sendto$inet(r6, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x11)
recvfrom$inet(r6, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25)
shutdown(r6, 0x1)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:22698' (ED25519) to the list of known hosts.
syzkaller login: [   56.452584][ T5735] cgroup: Unknown subsys name 'net'
[   56.594205][ T5735] cgroup: Unknown subsys name 'cpuset'
[   56.600300][ T5735] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   59.034378][ T5735] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   64.567399][ T5200] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   64.570977][ T5200] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   64.574152][ T5200] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   64.577837][ T5200] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   64.580581][ T5200] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   64.615216][ T5200] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   64.619192][ T5200] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   64.624632][ T5200] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   64.628274][ T5200] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   64.631565][ T5200] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   64.647970][ T5200] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   64.651961][ T5200] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   64.655715][ T5200] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   64.665626][ T5200] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   64.669080][ T5200] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   64.951973][ T5809] chnl_net:caif_netlink_parms(): no params data found
[   64.967661][ T5813] chnl_net:caif_netlink_parms(): no params data found
[   65.161215][ T5813] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.164058][ T5813] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.168911][ T5813] bridge_slave_0: entered allmulticast mode
[   65.172726][ T5813] bridge_slave_0: entered promiscuous mode
[   65.179769][ T5813] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.182639][ T5813] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.185655][ T5813] bridge_slave_1: entered allmulticast mode
[   65.189487][ T5813] bridge_slave_1: entered promiscuous mode
[   65.193662][ T5809] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.197246][ T5809] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.200192][ T5809] bridge_slave_0: entered allmulticast mode
[   65.204070][ T5809] bridge_slave_0: entered promiscuous mode
[   65.239314][ T5809] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.242341][ T5809] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.246817][ T5809] bridge_slave_1: entered allmulticast mode
[   65.250664][ T5809] bridge_slave_1: entered promiscuous mode
[   65.254032][ T5816] chnl_net:caif_netlink_parms(): no params data found
[   65.265974][ T5813] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   65.305580][ T5813] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   65.311473][ T5809] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   65.319539][ T5809] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   65.401606][ T5809] team0: Port device team_slave_0 added
[   65.405803][ T5813] team0: Port device team_slave_0 added
[   65.415944][ T5809] team0: Port device team_slave_1 added
[   65.426472][ T5813] team0: Port device team_slave_1 added
[   65.497755][ T5809] batman_adv: batadv0: Adding interface: batadv_slave_0
[   65.500602][ T5809] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   65.511762][ T5809] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   65.518784][ T5813] batman_adv: batadv0: Adding interface: batadv_slave_0
[   65.521628][ T5813] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   65.532940][ T5813] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   65.538034][ T5816] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.540297][ T5816] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.542811][ T5816] bridge_slave_0: entered allmulticast mode
[   65.546292][ T5816] bridge_slave_0: entered promiscuous mode
[   65.550614][ T5809] batman_adv: batadv0: Adding interface: batadv_slave_1
[   65.553157][ T5809] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   65.561685][ T5809] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   65.570698][ T5813] batman_adv: batadv0: Adding interface: batadv_slave_1
[   65.572990][ T5813] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   65.582450][ T5813] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   65.587307][ T5816] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.589632][ T5816] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.591950][ T5816] bridge_slave_1: entered allmulticast mode
[   65.595380][ T5816] bridge_slave_1: entered promiscuous mode
[   65.659999][ T5813] hsr_slave_0: entered promiscuous mode
[   65.662412][ T5813] hsr_slave_1: entered promiscuous mode
[   65.667298][ T5816] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   65.683643][ T5816] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   65.700209][ T5809] hsr_slave_0: entered promiscuous mode
[   65.703046][ T5809] hsr_slave_1: entered promiscuous mode
[   65.706159][ T5809] debugfs: 'hsr0' already exists in 'hsr'
[   65.708008][ T5809] Cannot create hsr debugfs directory
[   65.722971][ T5816] team0: Port device team_slave_0 added
[   65.727248][ T5816] team0: Port device team_slave_1 added
[   65.789695][ T5816] batman_adv: batadv0: Adding interface: batadv_slave_0
[   65.792309][ T5816] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   65.802932][ T5816] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   65.829362][ T5816] batman_adv: batadv0: Adding interface: batadv_slave_1
[   65.832183][ T5816] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   65.842082][ T5816] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   65.981474][ T5816] hsr_slave_0: entered promiscuous mode
[   65.984080][ T5816] hsr_slave_1: entered promiscuous mode
[   65.986655][ T5816] debugfs: 'hsr0' already exists in 'hsr'
[   65.988479][ T5816] Cannot create hsr debugfs directory
[   66.134739][ T5813] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   66.145132][ T5813] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   66.156431][ T5813] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   66.181356][ T5813] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   66.222448][ T5809] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   66.233291][ T5809] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   66.246375][ T5809] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   66.251389][ T5809] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   66.307574][ T5816] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   66.322681][ T5816] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   66.331126][ T5816] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   66.342643][ T5816] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   66.438055][ T5813] 8021q: adding VLAN 0 to HW filter on device bond0
[   66.453716][ T5809] 8021q: adding VLAN 0 to HW filter on device bond0
[   66.481369][ T5809] 8021q: adding VLAN 0 to HW filter on device team0
[   66.485370][ T5813] 8021q: adding VLAN 0 to HW filter on device team0
[   66.497552][  T148] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.499975][  T148] bridge0: port 1(bridge_slave_0) entered forwarding state
[   66.520233][  T148] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.523027][  T148] bridge0: port 1(bridge_slave_0) entered forwarding state
[   66.530537][  T148] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.533213][  T148] bridge0: port 2(bridge_slave_1) entered forwarding state
[   66.540909][  T148] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.543593][  T148] bridge0: port 2(bridge_slave_1) entered forwarding state
[   66.566622][ T5816] 8021q: adding VLAN 0 to HW filter on device bond0
[   66.615344][ T5816] 8021q: adding VLAN 0 to HW filter on device team0
[   66.630692][ T3991] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.633490][ T3991] bridge0: port 1(bridge_slave_0) entered forwarding state
[   66.636105][ T5200] Bluetooth: hci0: command tx timeout
[   66.651352][ T3991] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.653898][ T3991] bridge0: port 2(bridge_slave_1) entered forwarding state
[   66.704816][ T5200] Bluetooth: hci1: command tx timeout
[   66.707430][   T56] Bluetooth: hci2: command tx timeout
[   66.712361][ T5809] 8021q: adding VLAN 0 to HW filter on device batadv0
[   66.806946][ T5809] veth0_vlan: entered promiscuous mode
[   66.822319][ T5809] veth1_vlan: entered promiscuous mode
[   66.872843][ T5809] veth0_macvtap: entered promiscuous mode
[   66.881011][ T5809] veth1_macvtap: entered promiscuous mode
[   66.911159][ T5813] 8021q: adding VLAN 0 to HW filter on device batadv0
[   66.917220][ T5809] batman_adv: batadv0: Interface activated: batadv_slave_0
[   66.929917][ T5809] batman_adv: batadv0: Interface activated: batadv_slave_1
[   66.947199][   T13] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   66.950946][   T13] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   66.980267][   T13] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   66.999901][   T13] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.008499][ T5816] 8021q: adding VLAN 0 to HW filter on device batadv0
[   67.036899][ T5813] veth0_vlan: entered promiscuous mode
[   67.085977][ T5813] veth1_vlan: entered promiscuous mode
[   67.135561][ T1092] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.138300][ T1092] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.141783][ T5813] veth0_macvtap: entered promiscuous mode
[   67.147878][ T5816] veth0_vlan: entered promiscuous mode
[   67.158874][ T5813] veth1_macvtap: entered promiscuous mode
[   67.173783][ T5816] veth1_vlan: entered promiscuous mode
[   67.187130][  T148] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.190180][  T148] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.195884][ T5813] batman_adv: batadv0: Interface activated: batadv_slave_0
[   67.211798][ T5813] batman_adv: batadv0: Interface activated: batadv_slave_1
[   67.227848][ T5839] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.232123][ T5816] veth0_macvtap: entered promiscuous mode
[   67.249166][ T5839] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   67.256365][ T5816] veth1_macvtap: entered promiscuous mode
[   67.272258][ T5809] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   67.279293][ T5839] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.286777][ T5839] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.318630][ T5816] batman_adv: batadv0: Interface activated: batadv_slave_0
[   67.340707][ T5816] batman_adv: batadv0: Interface activated: batadv_slave_1
[   67.369857][ T5839] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.389324][ T5839] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   67.405324][ T5839] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.408192][ T5839] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.450816][ T1092] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.453342][ T1092] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.499349][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.502375][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.524962][ T1092] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.527522][ T1092] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.565093][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.567472][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.591236][ T5881] loop2: detected capacity change from 0 to 4096
[   67.604986][ T5881] EXT4-fs: Ignoring removed mblk_io_submit option
[   67.636354][ T5881] EXT4-fs (loop2): Test dummy encryption mode enabled
[   67.649747][ T5881] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.696071][ T5809] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.794411][ T5891] capability: warning: `syz.2.7' uses deprecated v2 capabilities in a way that may be insecure
[   67.850293][ T5894] netlink: 'syz.2.9': attribute type 1 has an invalid length.
[   67.871171][ T5886] infiniband syz0: set active
[   67.873242][ T5886] infiniband syz0: added bond_slave_0
[   67.953033][ T5886] RDS/IB: syz0: added
[   67.955914][ T5886] smc: adding ib device syz0 with port count 1
[   67.958518][ T5886] smc:    ib device syz0 port 1 has no pnetid
[   68.165017][   T24] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   68.317982][   T24] usb 3-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[   68.321247][   T24] usb 3-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[   68.324047][   T24] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   68.338282][   T24] gspca_main: stv0680-2.14.0 probing 041e:4007
[   68.448407][ T5886] syz.0.1 (5886) used greatest stack depth: 19400 bytes left
[   68.705737][ T5200] Bluetooth: hci0: command tx timeout
[   68.786160][   T56] Bluetooth: hci2: command tx timeout
[   68.788021][ T5200] Bluetooth: hci1: command tx timeout
[   68.842486][ T5923] geneve2: entered promiscuous mode
[   69.348721][   T24] stv0680 3-1:4.0: STV(e): camera ping failed!!
[   69.551606][   T24] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71
[   69.555785][   T24] stv0680 3-1:4.0: last error: 0,  command = 0x0
[   69.563158][   T24] usb 3-1: USB disconnect, device number 2
[   70.163453][ T5961] loop2: detected capacity change from 0 to 128
[   70.188196][ T5961] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   70.245931][ T5961] ext4 filesystem being mounted at /8/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   70.276106][ T5963] EXT4-fs error (device loop2): ext4_validate_block_bitmap:423: comm ext4lazyinit: bg 0: bad block bitmap checksum
[   70.345525][ T5809] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   70.582061][ T5965] loop1: detected capacity change from 0 to 40427
[   70.598596][ T5965] F2FS-fs (loop1): build fault injection rate: 771
[   70.609109][ T5965] F2FS-fs (loop1): invalid crc value
[   70.633885][ T5972] loop2: detected capacity change from 0 to 32768
[   70.639047][ T5972] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.39 (5972)
[   70.653301][ T5965] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   70.660058][ T5965] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   70.663224][ T5972] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[   70.670855][ T5972] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm
[   70.678594][ T5965] F2FS-fs (loop1): Unexpected flush for atomic writes: ino=10, npages=2
[   70.682048][ T5965] syz.1.36: attempt to access beyond end of device
[   70.682048][ T5965] loop1: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[   70.709154][ T5816] syz-executor: attempt to access beyond end of device
[   70.709154][ T5816] loop1: rw=2049, sector=45112, nr_sectors = 8 limit=40427
[   70.714117][ T5816] CPU: 1 UID: 0 PID: 5816 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[   70.714136][ T5816] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   70.714145][ T5816] Call Trace:
[   70.714164][ T5816]  <TASK>
[   70.714170][ T5816]  dump_stack_lvl+0x189/0x250
[   70.714194][ T5816]  ? __pfx_dump_stack_lvl+0x10/0x10
[   70.714203][ T5816]  ? __pfx_queue_work_on+0x10/0x10
[   70.714216][ T5816]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   70.714248][ T5816]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   70.714266][ T5816]  f2fs_handle_critical_error+0x37c/0x540
[   70.714280][ T5816]  f2fs_write_end_io+0x886/0xb60
[   70.714300][ T5816]  __submit_merged_bio+0x27a/0x6a0
[   70.714313][ T5816]  __submit_merged_write_cond+0x255/0x530
[   70.714325][ T5816]  f2fs_write_data_pages+0x261d/0x3000
[   70.714334][ T5816]  ? rcu_is_watching+0x15/0xb0
[   70.714363][ T5816]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   70.714396][ T5816]  ? check_path+0x21/0x40
[   70.714408][ T5816]  ? check_noncircular+0xe0/0x160
[   70.714444][ T5816]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   70.714474][ T5816]  do_writepages+0x32e/0x550
[   70.714490][ T5816]  ? do_raw_spin_unlock+0x4d/0x240
[   70.714501][ T5816]  filemap_fdatawrite+0x199/0x240
[   70.714510][ T5816]  ? __pfx_filemap_fdatawrite+0x10/0x10
[   70.714542][ T5816]  ? do_raw_spin_unlock+0x4d/0x240
[   70.714553][ T5816]  f2fs_sync_dirty_inodes+0x31f/0x830
[   70.714571][ T5816]  f2fs_write_checkpoint+0x93e/0x2440
[   70.714580][ T5816]  ? stack_depot_save_flags+0x41b/0x860
[   70.714603][ T5816]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[   70.714634][ T5816]  ? f2fs_stop_gc_thread+0x7f/0xb0
[   70.714643][ T5816]  ? kfree+0x19a/0x6d0
[   70.714657][ T5816]  kill_f2fs_super+0x2cc/0x6d0
[   70.714672][ T5816]  ? __pfx_kill_f2fs_super+0x10/0x10
[   70.714691][ T5816]  ? shrinker_free+0x2ce/0x3e0
[   70.714704][ T5816]  deactivate_locked_super+0xbc/0x130
[   70.714719][ T5816]  cleanup_mnt+0x425/0x4c0
[   70.714732][ T5816]  ? lockdep_hardirqs_on+0x9c/0x150
[   70.714746][ T5816]  task_work_run+0x1d4/0x260
[   70.714758][ T5816]  ? __pfx_task_work_run+0x10/0x10
[   70.714765][ T5816]  ? __x64_sys_umount+0x122/0x160
[   70.714776][ T5816]  ? exit_to_user_mode_loop+0x40/0x130
[   70.714789][ T5816]  exit_to_user_mode_loop+0xe9/0x130
[   70.714798][ T5816]  do_syscall_64+0x2bd/0xfa0
[   70.714806][ T5816]  ? lockdep_hardirqs_on+0x9c/0x150
[   70.714813][ T5816]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.714822][ T5816]  ? exc_page_fault+0xab/0x100
[   70.714831][ T5816]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.714838][ T5816] RIP: 0033:0x7f3eadd901f7
[   70.714848][ T5816] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   70.714855][ T5816] RSP: 002b:00007fffdc3b5258 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   70.714865][ T5816] RAX: 0000000000000000 RBX: 00007f3eade11d7d RCX: 00007f3eadd901f7
[   70.714871][ T5816] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fffdc3b5310
[   70.714876][ T5816] RBP: 00007fffdc3b5310 R08: 0000000000000000 R09: 0000000000000000
[   70.714880][ T5816] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fffdc3b63a0
[   70.714885][ T5816] R13: 00007f3eade11d7d R14: 00000000000113ac R15: 00007fffdc3b63e0
[   70.714901][ T5816]  </TASK>
[   70.822052][ T5200] Bluetooth: hci0: command tx timeout
[   70.828081][ T5816] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[   70.847522][ T5972] BTRFS info (device loop2): rebuilding free space tree
[   70.863616][ T5972] BTRFS info (device loop2): enabling ssd optimizations
[   70.866810][ T5200] Bluetooth: hci1: command tx timeout
[   70.867089][   T56] Bluetooth: hci2: command tx timeout
[   70.869095][ T5972] BTRFS info (device loop2): turning on sync discard
[   70.874636][ T5972] BTRFS info (device loop2): enabling free space tree
[   70.877202][ T5972] BTRFS info (device loop2): force clearing of disk cache
[   70.879917][ T5972] BTRFS info (device loop2): enabling auto defrag
[   70.882470][ T5972] BTRFS info (device loop2): max_inline set to 0
[   70.966465][ T5809] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[   71.228497][ T5998] loop2: detected capacity change from 0 to 4096
[   71.237747][ T5998] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[   71.267472][ T5998] ntfs3(loop2): failed to convert "c46c" to cp861
[   71.278260][ T5998] ntfs3(loop2): ino=20, mi_enum_attr
[   71.280294][ T5998] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[   71.364392][    T9] usb 1-1: new full-speed USB device number 2 using dummy_hcd
[   71.466452][ T6008] loop2: detected capacity change from 0 to 256
[   71.469377][ T6008] =======================================================
[   71.469377][ T6008] WARNING: The mand mount option has been deprecated and
[   71.469377][ T6008]          and is ignored by this kernel. Remove the mand
[   71.469377][ T6008]          option from the mount to silence this warning.
[   71.469377][ T6008] =======================================================
[   71.497429][ T6008] exFAT-fs (loop2): failed to load upcase table (idx : 0x0001e4a3, chksum : 0xe65db40a, utbl_chksum : 0x7319d30d)
[   71.536785][    T9] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   71.543186][    T9] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   71.554182][    T9] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   71.564626][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   71.601643][ T1362] ieee802154 phy0 wpan0: encryption failed: -22
[   71.606182][ T1362] ieee802154 phy1 wpan1: encryption failed: -22
[   71.765968][ T5859] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   71.788551][    T9] usb 1-1: usb_control_msg returned -32
[   71.792147][    T9] usbtmc 1-1:16.0: can't read capabilities
[   71.898468][ T6022] netlink: 'syz.2.54': attribute type 1 has an invalid length.
[   71.924573][ T5859] usb 2-1: Using ep0 maxpacket: 16
[   71.929806][ T5859] usb 2-1: config 254 has an invalid interface number: 235 but max is 0
[   71.941145][ T5859] usb 2-1: config 254 has no interface number 0
[   71.943996][ T5859] usb 2-1: config 254 interface 235 altsetting 2 endpoint 0x6 has an invalid bInterval 237, changing to 7
[   71.948600][ T5859] usb 2-1: config 254 interface 235 altsetting 2 endpoint 0x6 has invalid maxpacket 42803, setting to 1024
[   71.953139][ T5859] usb 2-1: config 254 interface 235 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0
[   71.957599][ T5859] usb 2-1: config 254 interface 235 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 0
[   71.961760][ T5859] usb 2-1: config 254 interface 235 has no altsetting 0
[   71.969908][ T5859] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a0, bcdDevice=2b.f1
[   71.973536][ T5859] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   71.977530][ T5859] usb 2-1: Product: syz
[   71.979979][ T5859] usb 2-1: Manufacturer: syz
[   71.984573][ T5859] usb 2-1: SerialNumber: syz
[   72.152739][ T6031] netlink: 'syz.2.58': attribute type 1 has an invalid length.
[   72.156497][ T6031] netlink: 4 bytes leftover after parsing attributes in process `syz.2.58'.
[   72.212091][ T5859] usbtest 2-1:254.235: Linux gadget zero
[   72.214495][ T5859] usbtest 2-1:254.235: high-speed {control in/out bulk-in iso-out} tests (+alt)
[   72.321925][ T6037] loop2: detected capacity change from 0 to 2048
[   72.336226][ T6037] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[   72.337112][ T5810] udevd[5810]: incorrect nilfs2 checksum on /dev/loop2
[   72.341255][ T6037] NILFS (loop2): mounting unchecked fs
[   72.363974][ T6037] NILFS (loop2): recovery complete
[   72.369950][ T6038] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   72.409606][ T5859] usb 1-1: USB disconnect, device number 2
[   72.414453][ T6039] usbtmc 1-1:16.0: usbtmc_ioctl_request failed -71
[   72.430092][    T9] usb 2-1: USB disconnect, device number 2
[   72.591801][ T6043] netlink: 276 bytes leftover after parsing attributes in process `syz.2.62'.
[   72.598644][ T6043] netlink: 276 bytes leftover after parsing attributes in process `syz.2.62'.
[   72.865742][   T56] Bluetooth: hci0: command tx timeout
[   72.944537][   T56] Bluetooth: hci2: command tx timeout
[   72.955175][   T56] Bluetooth: hci1: command tx timeout
[   73.396668][ T6054] loop1: detected capacity change from 0 to 128
[   73.481736][ T6052] loop2: detected capacity change from 0 to 32768
[   73.484677][ T6052] btrfs: Deprecated parameter 'usebackuproot'
[   73.486699][ T6052] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[   73.496558][ T6052] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.65 (6052)
[   73.506494][ T6052] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   73.510572][ T6052] BTRFS info (device loop2): using crc32c (crc32c-lib) checksum algorithm
[   73.567132][ T6052] BTRFS info (device loop2): rebuilding free space tree
[   73.580278][ T6052] BTRFS info (device loop2): allowing degraded mounts
[   73.582824][ T6052] BTRFS info (device loop2): enabling ssd optimizations
[   73.585751][ T6052] BTRFS info (device loop2): enabling free space tree
[   73.588308][ T6052] BTRFS info (device loop2): force clearing of disk cache
[   73.590991][ T6052] BTRFS info (device loop2): trying to use backup root at mount time
[   73.618299][ T6075] loop1: detected capacity change from 0 to 2048
[   73.638162][ T6075] EXT4-fs (loop1): unsupported inode size: 0
[   73.640421][ T6075] EXT4-fs (loop1): blocksize: 2048
[   73.814415][   T24] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   73.819267][ T5809] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   73.974637][   T24] usb 1-1: Using ep0 maxpacket: 8
[   73.981893][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   73.992909][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   74.007550][   T24] usb 1-1: New USB device found, idVendor=046d, idProduct=c20e, bcdDevice= 0.00
[   74.011115][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   74.026740][   T24] usb 1-1: config 0 descriptor??
[   74.157947][ T6093] netlink: 'syz.2.76': attribute type 29 has an invalid length.
[   74.162367][ T6093] netlink: 'syz.2.76': attribute type 29 has an invalid length.
[   74.168441][ T6093] netlink: 500 bytes leftover after parsing attributes in process `syz.2.76'.
[   74.174022][ T6093] unsupported nla_type 58
[   74.269142][ T6097] syz.2.78 uses obsolete (PF_INET,SOCK_PACKET)
[   74.374485][ T5862] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   74.457520][   T24] logitech 0003:046D:C20E.0001: rdesc size test failed for formula gp
[   74.462235][   T24] logitech 0003:046D:C20E.0001: unbalanced collection at end of report description
[   74.468127][   T24] logitech 0003:046D:C20E.0001: parse failed
[   74.470719][   T24] logitech 0003:046D:C20E.0001: probe with driver logitech failed with error -22
[   74.536195][ T5862] usb 2-1: Using ep0 maxpacket: 16
[   74.545588][ T5862] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   74.550137][ T5862] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2dbe, bcdDevice= 0.00
[   74.562426][ T5862] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   74.568960][ T5862] usb 2-1: config 0 descriptor??
[   74.665033][  T794] usb 1-1: USB disconnect, device number 3
[   75.037586][ T5862] konepure 0003:1E7D:2DBE.0002: unbalanced delimiter at end of report description
[   75.040680][ T5862] konepure 0003:1E7D:2DBE.0002: parse failed
[   75.046322][ T5862] konepure 0003:1E7D:2DBE.0002: probe with driver konepure failed with error -22
[   75.236547][ T5862] usb 2-1: USB disconnect, device number 3
[   75.529433][ T6115] Zero length message leads to an empty skb
[   75.836492][ T6135] loop1: detected capacity change from 0 to 1024
[   75.843019][ T6135] EXT4-fs (loop1): invalid inodes per group: 67108896
[   75.843019][ T6135] 
[   75.874566][    T9] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   76.046868][    T9] usb 1-1: config 1 has an invalid descriptor of length 102, skipping remainder of the config
[   76.050730][    T9] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[   76.069070][    T9] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   76.073020][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   76.087865][    T9] usb 1-1: Product: syz
[   76.089264][    T9] usb 1-1: Manufacturer: syz
[   76.090710][    T9] usb 1-1: SerialNumber: syz
[   76.117666][ T6148] loop2: detected capacity change from 0 to 2048
[   76.141661][ T6148] hpfs: filesystem error: dir band size mismatch: dir_band_start==7b318cc2, dir_band_end==7b318cc3, n_dir_band==00000000; already mounted read-only
[   76.271194][ T6154] loop2: detected capacity change from 0 to 4096
[   76.291896][ T6155] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   76.317318][    T9] usb 1-1: 0:2 : does not exist
[   76.328801][    T9] usb 1-1: Audio class v2/v3 interfaces need an interface association
[   76.336639][ T6154] NILFS error (device loop2): nilfs_dotdot: directory #12 missing '.'
[   76.342088][ T6154] Remounting filesystem read-only
[   76.346920][ T6154] NILFS (loop2): mounting fs with errors
[   76.357888][    T9] snd-usb-audio 1-1:1.1: probe with driver snd-usb-audio failed with error -22
[   76.375969][    T9] usb 1-1: USB disconnect, device number 4
[   76.459871][ T5810] udevd[5810]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   76.495146][ T6150] loop1: detected capacity change from 0 to 32768
[   76.687274][ T6163] syz.2.110 (6163): /proc/6162/oom_adj is deprecated, please use /proc/6162/oom_score_adj instead.
[   76.777456][ T6169] warning: `syz.1.112' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   76.922271][ T6181] loop1: detected capacity change from 0 to 256
[   76.923577][ T6180] mkiss: ax0: crc mode is auto.
[   77.121567][ T6190] loop1: detected capacity change from 0 to 256
[   77.155814][ T6190] FAT-fs (loop1): Directory bread(block 64) failed
[   77.160940][ T6190] FAT-fs (loop1): Directory bread(block 65) failed
[   77.166557][ T6192] openvswitch: netlink: ct_state flags 010000e0 unsupported
[   77.169422][ T6190] FAT-fs (loop1): Directory bread(block 66) failed
[   77.172208][ T6190] FAT-fs (loop1): Directory bread(block 67) failed
[   77.190567][ T6190] FAT-fs (loop1): Directory bread(block 68) failed
[   77.200693][ T6190] FAT-fs (loop1): Directory bread(block 69) failed
[   77.222893][ T6190] FAT-fs (loop1): Directory bread(block 70) failed
[   77.237672][ T6190] FAT-fs (loop1): Directory bread(block 71) failed
[   77.257856][ T6190] FAT-fs (loop1): Directory bread(block 72) failed
[   77.260485][ T6190] FAT-fs (loop1): Directory bread(block 73) failed
[   77.407016][ T6203] loop1: detected capacity change from 0 to 16
[   77.614338][   T33] audit: type=1326 audit(1760620479.255:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6210 comm="syz.0.129" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3264d8eec9 code=0x0
[   77.615265][ T6194] loop2: detected capacity change from 0 to 32768
[   77.630849][ T6194] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.124 (6194)
[   77.653860][ T6194] BTRFS info (device loop2): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[   77.660897][ T6194] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[   77.741722][ T6194] BTRFS info (device loop2): enabling ssd optimizations
[   77.750360][ T6194] BTRFS info (device loop2): enabling free space tree
[   77.802270][ T5809] BTRFS info (device loop2): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[   77.840172][ T6233] loop1: detected capacity change from 0 to 512
[   77.882010][ T6233] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[   77.901460][ T6233] EXT4-fs (loop1): orphan cleanup on readonly fs
[   77.907956][ T6237] netlink: 12 bytes leftover after parsing attributes in process `syz.2.133'.
[   77.913278][ T6233] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:517: comm syz.1.132: Block bitmap for bg 0 marked uninitialized
[   77.929996][ T6233] EXT4-fs (loop1): Remounting filesystem read-only
[   77.939015][ T6233] EXT4-fs (loop1): 1 orphan inode deleted
[   77.961924][ T6233] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   78.071788][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.095679][ T6239] loop2: detected capacity change from 0 to 128
[   78.102745][ T6239] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[   78.113558][ T6239] hpfs: filesystem error: improperly stopped
[   78.120465][ T6239] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[   78.123282][ T6239] hpfs: You really don't want any checks? You are crazy...
[   78.127515][ T6239] hpfs: hpfs_map_sector(): read error
[   78.133155][ T6239] hpfs: code page support is disabled
[   78.139524][ T6239] hpfs: hpfs_map_4sectors(): unaligned read
[   78.143638][ T6239] hpfs: hpfs_map_4sectors(): unaligned read
[   78.151267][ T6239] hpfs: filesystem error: unable to find root dir
[   78.363705][ T6250] loop1: detected capacity change from 0 to 1024
[   78.369473][ T6250] EXT4-fs: Ignoring removed oldalloc option
[   78.371901][ T6250] EXT4-fs: Ignoring removed bh option
[   78.399645][ T6250] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.436846][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.550108][ T6258] loop2: detected capacity change from 0 to 4096
[   78.556219][ T6258] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[   78.580272][ T6258] ntfs3(loop2): Failed to initialize $Extend/$Reparse.
[   78.592099][ T6263] sctp: [Deprecated]: syz.0.144 (pid 6263) Use of int in maxseg socket option.
[   78.592099][ T6263] Use struct sctp_assoc_value instead
[   78.628899][ T6265] netlink: 'syz.1.145': attribute type 6 has an invalid length.
[   78.635142][ T6265] netlink: 'syz.1.145': attribute type 6 has an invalid length.
[   78.955278][ T6272] loop1: detected capacity change from 0 to 32768
[   78.984606][ T6272] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   79.002672][ T6272] XFS (loop1): Ending clean mount
[   79.035613][ T5816] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   79.334781][ T6288] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   79.412615][ T6290] loop1: detected capacity change from 0 to 16
[   79.437061][ T6290] erofs (device loop1): mounted with root inode @ nid 36.
[   79.499250][ T6294] syzkaller1: entered promiscuous mode
[   79.501068][ T6294] syzkaller1: entered allmulticast mode
[   79.778496][ T6304] bond1: option lacp_rate: invalid value (255)
[   79.788242][ T6304] bond1 (unregistering): Released all slaves
[   80.020822][ T6309] process 'syz.1.158' launched './file0' with NULL argv: empty string added
[   80.424331][ T6315] netlink: 12 bytes leftover after parsing attributes in process `syz.0.163'.
[   81.134507][ T5862] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[   81.285919][ T5862] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   81.289545][ T5862] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   81.292606][ T5862] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   81.296867][ T5862] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   81.299932][ T5862] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   81.304874][ T5862] usb 1-1: config 0 descriptor??
[   81.719758][ T5862] plantronics 0003:047F:FFFF.0003: unbalanced delimiter at end of report description
[   81.727914][ T6344] loop1: detected capacity change from 0 to 256
[   81.731392][ T5862] plantronics 0003:047F:FFFF.0003: parse failed
[   81.733556][ T5862] plantronics 0003:047F:FFFF.0003: probe with driver plantronics failed with error -22
[   81.789963][ T6346] ieee802154 phy0 wpan0: encryption failed: -22
[   81.822911][ T6349] IPVS: sync thread started: state = BACKUP, mcast_ifn = hsr0, syncid = 4, id = 0
[   81.889979][ T6351] netlink: 12 bytes leftover after parsing attributes in process `syz.1.179'.
[   81.938394][ T5859] usb 1-1: USB disconnect, device number 5
[   82.083059][   T33] audit: type=1326 audit(1760620483.715:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6356 comm="syz.1.182" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3eadd8eec9 code=0x0
[   82.232971][ T6364] loop2: detected capacity change from 0 to 1024
[   82.250378][ T6364] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.265959][ T6364] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   82.273176][ T6364] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 44 with max blocks 1 with error 28
[   82.279486][ T6364] EXT4-fs (loop2): This should not happen!! Data will be lost
[   82.279486][ T6364] 
[   82.283382][ T6364] EXT4-fs (loop2): Total free blocks count 0
[   82.287227][ T6364] EXT4-fs (loop2): Free/Dirty block details
[   82.291443][ T6364] EXT4-fs (loop2): free_blocks=68451041280
[   82.294082][ T6364] EXT4-fs (loop2): dirty_blocks=32
[   82.296601][ T6364] EXT4-fs (loop2): Block reservation details
[   82.299133][ T6364] EXT4-fs (loop2): i_reserved_data_blocks=2
[   82.323274][   T27] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[   82.416830][ T6370] loop2: detected capacity change from 0 to 128
[   82.437449][ T6370] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   82.442393][ T6370] ext4 filesystem being mounted at /78/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   82.509991][ T5809] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   82.653178][ T6377] loop0: detected capacity change from 0 to 2048
[   82.657489][ T6377] udf: Bad value for 'session'
[   82.679955][ T6379] veth1_to_bond: entered allmulticast mode
[   82.693264][ T6379] veth1_to_bond: left allmulticast mode
[   82.973146][ T6387] loop1: detected capacity change from 0 to 8
[   82.977108][ T6387] MTD: Attempt to mount non-MTD device "/dev/loop1"
[   82.999838][ T6387] cramfs: Error -5 while decompressing!
[   83.001947][ T6387] cramfs: ffffffff99afff28(26)->ffff8881aff05000(4096)
[   83.004215][ T6387] cramfs: Error -3 while decompressing!
[   83.009040][ T6390] ptrace attach of "/syz-executor exec"[5809] was attempted by ""[6390]
[   83.024888][ T6387] cramfs: ffffffff99afff42(26)->ffff8881aff04000(4096)
[   83.027221][ T6387] cramfs: Error -3 while decompressing!
[   83.028953][ T6387] cramfs: ffffffff99afff5c(16)->ffff8881aff03000(4096)
[   83.031084][ T6387] cramfs: Error -5 while decompressing!
[   83.032773][ T6387] cramfs: ffffffff99afff28(26)->ffff8881aff05000(4096)
[   83.040299][   T33] audit: type=1800 audit(1760620484.685:4): pid=6387 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.194" name="file2" dev="loop1" ino=348 res=0 errno=0
[   83.241907][ T6399] loop1: detected capacity change from 0 to 16
[   83.248205][ T6399] MTD: Attempt to mount non-MTD device "/dev/loop1"
[   83.381659][ T6404] loop2: detected capacity change from 0 to 256
[   83.384424][ T6404] exfat: Deprecated parameter 'namecase'
[   83.386708][ T6404] exfat: Deprecated parameter 'namecase'
[   83.394188][ T6404] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[   84.069734][ T6423] netlink: 'syz.0.210': attribute type 1 has an invalid length.
[   84.072488][ T6423] netlink: 4 bytes leftover after parsing attributes in process `syz.0.210'.
[   84.307124][ T6429] loop0: detected capacity change from 0 to 512
[   84.353799][ T6429] EXT4-fs (loop0): orphan cleanup on readonly fs
[   84.359888][ T6429] EXT4-fs error (device loop0): ext4_orphan_get:1418: comm syz.0.213: bad orphan inode 13
[   84.369152][ T6429] ext4_test_bit(bit=12, block=18) = 1
[   84.371351][ T6429] is_bad_inode(inode)=0
[   84.373117][ T6429] NEXT_ORPHAN(inode)=2130706432
[   84.377103][ T6429] max_ino=32
[   84.378629][ T6429] i_nlink=1
[   84.395661][ T6429] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   84.435152][ T6429] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[   84.453158][ T6429] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[   84.469197][ T6429] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.213: bg 0: block 248: padding at end of block bitmap is not set
[   84.478256][ T6429] Quota error (device loop0): write_blk: dquota write failed
[   84.481748][ T6429] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[   84.487340][ T6429] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.213: Failed to acquire dquot type 1
[   84.762819][   T33] audit: type=1326 audit(1760620486.405:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6433 comm="syz.2.214" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2e0d8eec9 code=0x7ffc0000
[   84.771082][   T33] audit: type=1326 audit(1760620486.405:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6433 comm="syz.2.214" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2e0d8eec9 code=0x7ffc0000
[   84.781299][   T33] audit: type=1326 audit(1760620486.405:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6433 comm="syz.2.214" exe="/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7ff2e0d8eec9 code=0x7ffc0000
[   84.793020][   T33] audit: type=1326 audit(1760620486.405:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6433 comm="syz.2.214" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2e0d8eec9 code=0x7ffc0000
[   84.801605][   T33] audit: type=1326 audit(1760620486.405:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6433 comm="syz.2.214" exe="/syz-executor" sig=0 arch=c000003e syscall=128 compat=0 ip=0x7ff2e0d8eec9 code=0x7ffc0000
[   84.816418][   T33] audit: type=1326 audit(1760620486.465:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6433 comm="syz.2.214" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2e0d8eec9 code=0x7ffc0000
[   84.824806][   T33] audit: type=1326 audit(1760620486.465:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6433 comm="syz.2.214" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2e0d8eec9 code=0x7ffc0000
[   84.864896][ T6437] loop2: detected capacity change from 0 to 512
[   84.868671][ T6437] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   84.873747][ T6437] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   84.881101][ T6437] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2853: Unable to expand inode 11. Delete some EAs or run e2fsck.
[   84.887263][ T6437] EXT4-fs (loop2): 1 truncate cleaned up
[   84.890935][ T6437] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.912146][ T5809] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.037216][ T5813] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.183409][ T6456] loop0: detected capacity change from 0 to 8
[   85.203862][ T6456] cramfs: Error -5 while decompressing!
[   85.208479][ T6456] cramfs: ffffffff99afff28(26)->ffff8881b0408000(4096)
[   85.210977][ T6456] cramfs: Error -5 while decompressing!
[   85.212968][ T6456] cramfs: ffffffff99afff42(26)->ffff8881b0420000(4096)
[   85.215984][ T6456] cramfs: Error -3 while decompressing!
[   85.217873][ T6456] cramfs: ffffffff99afff5c(16)->ffff8881b047f000(4096)
[   85.220937][ T6456] cramfs: Error -5 while decompressing!
[   85.224989][ T6456] cramfs: ffffffff99afff28(26)->ffff8881b0408000(4096)
[   85.293790][ T6462] netlink: 8 bytes leftover after parsing attributes in process `syz.1.227'.
[   85.381875][ T5859] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   85.744540][ T5859] usb 3-1: Using ep0 maxpacket: 16
[   85.750109][ T5859] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   85.754156][ T5859] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   85.758568][ T5859] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[   85.762522][ T5859] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[   85.766670][ T5859] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   85.772974][ T5859] usb 3-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[   85.777869][ T5859] usb 3-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[   85.781154][ T5859] usb 3-1: Manufacturer: syz
[   85.791374][ T5859] usb 3-1: config 0 descriptor??
[   86.065136][ T5859] rc_core: IR keymap rc-hauppauge not found
[   86.067303][ T5859] Registered IR keymap rc-empty
[   86.069114][ T5859] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   86.084606][ T5859] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   86.106879][ T5859] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0
[   86.117199][ T5859] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0/input4
[   86.126437][ T5859] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   86.146039][ T5859] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   86.164654][ T5859] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   86.194448][ T5859] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   86.217421][ T5859] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   86.234741][ T5859] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   86.264752][ T5859] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   86.284474][ T5859] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   86.314639][ T5859] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   86.334947][ T5859] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   86.366886][ T5859] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   86.397317][ T5859] mceusb 3-1:0.0: Registered 424242424242 with mce emulator interface version 90
[   86.400863][ T5859] mceusb 3-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[   86.493113][   T24] usb 3-1: USB disconnect, device number 3
[   86.585451][ T6477] loop0: detected capacity change from 0 to 40427
[   86.590170][ T6477] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[   86.593483][ T6477] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[   86.602279][ T6477] F2FS-fs (loop0): invalid crc value
[   86.652954][ T6477] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   86.661490][ T6477] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[   86.664025][ T6477] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   86.955972][   T10] cfg80211: failed to load regulatory.db
[   87.363289][ T6501] loop1: detected capacity change from 0 to 16
[   87.373599][ T6501] erofs (device loop1): mounted with root inode @ nid 36.
[   88.385006][  T794] usb 1-1: new full-speed USB device number 6 using dummy_hcd
[   88.816025][  T794] usb 1-1: not running at top speed; connect to a high speed hub
[   88.820509][  T794] usb 1-1: config 2 has an invalid interface number: 33 but max is 0
[   88.823813][  T794] usb 1-1: config 2 has no interface number 0
[   88.824943][   T33] audit: type=1800 audit(1760620490.465:12): pid=6532 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.253" name="file2" dev="overlay" ino=551 res=0 errno=0
[   88.826950][  T794] usb 1-1: config 2 interface 33 has no altsetting 0
[   88.840740][  T794] usb 1-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.02
[   88.845637][  T794] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   88.849084][  T794] usb 1-1: Product: syz
[   88.850791][  T794] usb 1-1: Manufacturer: syz
[   88.852602][  T794] usb 1-1: SerialNumber: syz
[   89.058569][ T6538] loop2: detected capacity change from 0 to 1024
[   89.065772][ T6538] EXT4-fs: Ignoring removed bh option
[   89.069851][ T6538] EXT4-fs: inline encryption not supported
[   89.078006][ T6538] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   89.085858][ T6538] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[   89.089455][  T794] go7007 1-1:2.33: probe with driver go7007 failed with error -12
[   89.103548][  T794] usb 1-1: USB disconnect, device number 6
[   89.111528][ T6538] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 2: comm syz.2.256: lblock 2 mapped to illegal pblock 2 (length 1)
[   89.125506][ T6538] Quota error (device loop2): qtree_write_dquot: dquota write failed
[   89.128785][ T6538] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 48: comm syz.2.256: lblock 0 mapped to illegal pblock 48 (length 1)
[   89.133566][ T6538] Quota error (device loop2): v2_write_file_info: Can't write info structure
[   89.138273][ T6538] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.256: Failed to acquire dquot type 0
[   89.142403][ T6538] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6305: Corrupt filesystem
[   89.149674][ T6538] EXT4-fs error (device loop2): ext4_evict_inode:254: inode #11: comm syz.2.256: mark_inode_dirty error
[   89.195643][ T6538] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   89.199777][ T6538] EXT4-fs (loop2): 1 orphan inode deleted
[   89.206092][ T6538] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.216305][ T6538] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm syz.2.256: lblock 1 mapped to illegal pblock 1 (length 1)
[   89.226290][ T6538] Quota error (device loop2): find_next_id: Can't read quota tree block 1
[   89.231188][ T1095] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u9:5: lblock 1 mapped to illegal pblock 1 (length 1)
[   89.254550][ T1095] Quota error (device loop2): remove_tree: Can't read quota data block 1
[   89.258108][ T1095] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u9:5: Failed to release dquot type 0
[   89.280680][ T5809] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.287085][ T5809] EXT4-fs error (device loop2): __ext4_get_inode_loc:4832: comm syz-executor: Invalid inode table block 1 in block_group 0
[   89.293187][ T5809] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6305: Corrupt filesystem
[   89.298835][ T5809] EXT4-fs error (device loop2): ext4_quota_off:7229: inode #3: comm syz-executor: mark_inode_dirty error
[   89.482342][ T6552] loop1: detected capacity change from 0 to 512
[   89.515127][ T6552] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.519468][ T6552] ext4 filesystem being mounted at /100/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   89.566317][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.690806][ T6579] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   90.693988][ T6579] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   90.714642][ T6579] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   90.726578][ T6579] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   90.729352][ T6579] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   90.752256][ T6579] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   90.759784][ T6583] fuse: Bad value for 'fd'
[   91.328767][ T6598] loop1: detected capacity change from 0 to 128
[   91.331266][  T794] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[   91.346946][ T6598] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   91.362232][ T6598] ext4 filesystem being mounted at /104/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   91.374709][ T6598] syz.1.280 (pid 6598) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[   91.451510][ T6598] fscrypt: Adiantum using implementation "adiantum(xchacha12-lib,aes-fixed-time,nhpoly1305-sse2)"
[   91.485965][  T794] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[   91.488511][  T794] usb 3-1: config 0 has no interface number 0
[   91.490419][  T794] usb 3-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   91.495221][  T794] usb 3-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   91.498511][  T794] usb 3-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.00
[   91.503004][  T794] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   91.513377][  T794] usb 3-1: config 0 descriptor??
[   91.534017][ T5816] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   91.940372][  T794] prodikeys 0003:041E:2801.0004: unknown main item tag 0x0
[   91.943417][  T794] prodikeys 0003:041E:2801.0004: unknown main item tag 0x0
[   91.950286][ T6621] sctp: [Deprecated]: syz.0.289 (pid 6621) Use of struct sctp_assoc_value in delayed_ack socket option.
[   91.950286][ T6621] Use struct sctp_sack_info instead
[   91.974175][  T794] prodikeys 0003:041E:2801.0004: hidraw0: USB HID v0.00 Device [HID 041e:2801] on usb-dummy_hcd.2-1/input1
[   91.980700][  T794] hid_prodikeys: hid-prodikeys: failed to find output report
[   91.980700][  T794] 
[   92.147684][  T794] usb 3-1: USB disconnect, device number 4
[   92.226845][ T6633] loop1: detected capacity change from 0 to 1024
[   92.230576][ T6633] EXT4-fs: Ignoring removed nobh option
[   92.232935][ T6633] EXT4-fs: Ignoring removed bh option
[   92.249024][ T6633] EXT4-fs (loop1): stripe (8) is not aligned with cluster size (16), stripe is disabled
[   92.286670][ T6633] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   92.342508][ T6633] EXT4-fs (loop1): shut down requested (2)
[   92.368146][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.717973][   T56] Bluetooth: hci1: command 0x0c1a tx timeout
[   92.784597][   T56] Bluetooth: hci2: command 0x0c1a tx timeout
[   93.116865][ T6678] loop2: detected capacity change from 0 to 256
[   93.124443][   T10] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[   93.276960][   T10] usb 2-1: Using ep0 maxpacket: 8
[   93.281676][   T10] usb 2-1: config 1 interface 0 altsetting 97 bulk endpoint 0x82 has invalid maxpacket 64
[   93.287159][   T10] usb 2-1: config 1 interface 0 altsetting 97 bulk endpoint 0x3 has invalid maxpacket 8
[   93.290853][   T10] usb 2-1: config 1 interface 0 altsetting 97 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   93.299785][   T10] usb 2-1: config 1 interface 0 has no altsetting 0
[   93.303741][   T10] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   93.307787][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[   93.317653][   T10] usb 2-1: SerialNumber: syz
[   93.322803][ T6657] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   93.327439][ T6657] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   93.553740][   T10] cdc_ether 2-1:1.0: probe with driver cdc_ether failed with error -71
[   93.574940][   T10] usb 2-1: USB disconnect, device number 4
[   93.814472][   T24] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[   93.964368][   T24] usb 3-1: Using ep0 maxpacket: 8
[   93.969274][   T24] usb 3-1: config index 0 descriptor too short (expected 30, got 18)
[   93.975776][   T24] usb 3-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[   93.979580][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   93.982988][   T24] usb 3-1: Product: syz
[   93.987338][   T24] usb 3-1: Manufacturer: syz
[   93.989178][   T24] usb 3-1: SerialNumber: syz
[   93.992973][   T24] usb 3-1: config 0 descriptor??
[   93.998571][   T24] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state.
[   94.003899][   T24] usb 3-1: setting power ON
[   94.005927][   T24] dvb-usb: bulk message failed: -22 (2/0)
[   94.011831][   T24] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[   94.016492][   T24] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID))
[   94.019319][   T24] usb 3-1: media controller created
[   94.033083][   T24] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[   94.045252][   T24] usb 3-1: selecting invalid altsetting 6
[   94.047448][   T24] usb 3-1: digital interface selection failed (-22)
[   94.050607][   T24] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)'
[   94.054406][   T24] usb 3-1: setting power OFF
[   94.056110][   T24] dvb-usb: bulk message failed: -22 (2/0)
[   94.058171][   T24] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected.
[   94.062278][   T24] (NULL device *): no alternate interface
[   94.121694][   T24] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected.
[   94.186217][ T6703] loop0: detected capacity change from 0 to 256
[   94.188881][ T6703] exfat: Deprecated parameter 'utf8'
[   94.204551][ T6703] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d)
[   94.228156][   T24] usb 3-1: USB disconnect, device number 5
[   94.235302][ T6705] overlayfs: empty lowerdir
[   94.542235][ T6709] loop0: detected capacity change from 0 to 40427
[   94.546587][ T6709] F2FS-fs (loop0): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288)
[   94.549709][ T6709] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[   94.552556][ T6709] F2FS-fs (loop0): Image doesn't support compression
[   94.555216][ T6709] F2FS-fs (loop0): build fault injection rate: 690
[   94.557798][ T6709] F2FS-fs (loop0): build fault injection type: 0x35f7
[   94.566009][ T6709] F2FS-fs (loop0): invalid crc value
[   94.621364][ T6709] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   94.631875][ T6709] F2FS-fs (loop0): Start checkpoint disabled!
[   94.654666][ T6709] F2FS-fs (loop0): f2fs_disable_checkpoint() finish, err:0
[   94.662016][ T6709] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[   94.670059][ T6709] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[   94.740831][ T3991] kworker/u10:5: attempt to access beyond end of device
[   94.740831][ T3991] loop0: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[   94.770641][ T3991] CPU: 0 UID: 0 PID: 3991 Comm: kworker/u10:5 Not tainted syzkaller #0 PREEMPT(full) 
[   94.770663][ T3991] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   94.770671][ T3991] Workqueue: writeback wb_workfn (flush-7:0)
[   94.770702][ T3991] Call Trace:
[   94.770706][ T3991]  <TASK>
[   94.770711][ T3991]  dump_stack_lvl+0x189/0x250
[   94.770731][ T3991]  ? __pfx_dump_stack_lvl+0x10/0x10
[   94.770746][ T3991]  ? __pfx_queue_work_on+0x10/0x10
[   94.770768][ T3991]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   94.770790][ T3991]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   94.770819][ T3991]  f2fs_handle_critical_error+0x37c/0x540
[   94.770842][ T3991]  f2fs_write_end_io+0x886/0xb60
[   94.770863][ T3991]  __submit_merged_bio+0x27a/0x6a0
[   94.770881][ T3991]  __submit_merged_write_cond+0x255/0x530
[   94.770902][ T3991]  f2fs_write_data_pages+0x261d/0x3000
[   94.770944][ T3991]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   94.770971][ T3991]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[   94.771009][ T3991]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[   94.771024][ T3991]  ? trace_f2fs_writepages+0x7f/0x200
[   94.771033][ T3991]  ? f2fs_write_node_pages+0x478/0x6e0
[   94.771044][ T3991]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[   94.771051][ T3991]  ? lock_list_lru_of_memcg+0x238/0x4c0
[   94.771066][ T3991]  ? __lock_acquire+0xab9/0xd20
[   94.771089][ T3991]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   94.771106][ T3991]  do_writepages+0x32e/0x550
[   94.771130][ T3991]  ? reacquire_held_locks+0x127/0x1d0
[   94.771150][ T3991]  ? writeback_sb_inodes+0x384/0x1010
[   94.771172][ T3991]  __writeback_single_inode+0x145/0xff0
[   94.771186][ T3991]  ? do_raw_spin_unlock+0x4d/0x240
[   94.771203][ T3991]  writeback_sb_inodes+0x6c7/0x1010
[   94.771238][ T3991]  ? __pfx_writeback_sb_inodes+0x10/0x10
[   94.771281][ T3991]  ? rcu_is_watching+0x15/0xb0
[   94.771309][ T3991]  wb_writeback+0x43b/0xaf0
[   94.771329][ T3991]  ? queue_io+0x2f1/0x590
[   94.771346][ T3991]  ? __pfx_wb_writeback+0x10/0x10
[   94.771367][ T3991]  ? _raw_spin_unlock_irq+0x23/0x50
[   94.771390][ T3991]  wb_workfn+0x409/0xef0
[   94.771422][ T3991]  ? __pfx_wb_workfn+0x10/0x10
[   94.771444][ T3991]  ? __lock_acquire+0xab9/0xd20
[   94.771458][ T3991]  ? process_scheduled_works+0x9ef/0x17b0
[   94.771480][ T3991]  ? _raw_spin_unlock_irq+0x23/0x50
[   94.771498][ T3991]  ? process_scheduled_works+0x9ef/0x17b0
[   94.771515][ T3991]  ? process_scheduled_works+0x9ef/0x17b0
[   94.771535][ T3991]  process_scheduled_works+0xae1/0x17b0
[   94.771570][ T3991]  ? __pfx_process_scheduled_works+0x10/0x10
[   94.771588][ T3991]  worker_thread+0x8a0/0xda0
[   94.771635][ T3991]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   94.771660][ T3991]  ? __kthread_parkme+0x7b/0x200
[   94.771688][ T3991]  kthread+0x711/0x8a0
[   94.771706][ T3991]  ? __pfx_worker_thread+0x10/0x10
[   94.771723][ T3991]  ? __pfx_kthread+0x10/0x10
[   94.771738][ T3991]  ? _raw_spin_unlock_irq+0x23/0x50
[   94.771750][ T3991]  ? lockdep_hardirqs_on+0x9c/0x150
[   94.771757][ T3991]  ? __pfx_kthread+0x10/0x10
[   94.771767][ T3991]  ret_from_fork+0x4bc/0x870
[   94.771787][ T3991]  ? __pfx_ret_from_fork+0x10/0x10
[   94.771811][ T3991]  ? __switch_to_asm+0x39/0x70
[   94.771828][ T3991]  ? __switch_to_asm+0x33/0x70
[   94.771841][ T3991]  ? __pfx_kthread+0x10/0x10
[   94.771856][ T3991]  ret_from_fork_asm+0x1a/0x30
[   94.771881][ T3991]  </TASK>
[   94.771888][ T3991] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[   94.814799][ T5200] Bluetooth: hci1: command 0x0c1a tx timeout
[   94.818501][ T3991] CPU: 0 UID: 0 PID: 3991 Comm: kworker/u10:5 Not tainted syzkaller #0 PREEMPT(full) 
[   94.818524][ T3991] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   94.818534][ T3991] Workqueue: writeback wb_workfn (flush-7:0)
[   94.818564][ T3991] Call Trace:
[   94.818570][ T3991]  <TASK>
[   94.818578][ T3991]  dump_stack_lvl+0x189/0x250
[   94.818632][ T3991]  ? __pfx_dump_stack_lvl+0x10/0x10
[   94.818647][ T3991]  ? __pfx_queue_work_on+0x10/0x10
[   94.818667][ T3991]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   94.818689][ T3991]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   94.818720][ T3991]  f2fs_handle_critical_error+0x37c/0x540
[   94.818738][ T3991]  f2fs_write_end_io+0x886/0xb60
[   94.818770][ T3991]  __submit_merged_bio+0x27a/0x6a0
[   94.818792][ T3991]  __submit_merged_write_cond+0x255/0x530
[   94.818814][ T3991]  f2fs_write_data_pages+0x261d/0x3000
[   94.818862][ T3991]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   94.818893][ T3991]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[   94.818934][ T3991]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[   94.818958][ T3991]  ? trace_f2fs_writepages+0x7f/0x200
[   94.818972][ T3991]  ? f2fs_write_node_pages+0x478/0x6e0
[   94.818989][ T3991]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[   94.819000][ T3991]  ? lock_list_lru_of_memcg+0x238/0x4c0
[   94.819021][ T3991]  ? __lock_acquire+0xab9/0xd20
[   94.819045][ T3991]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   94.819061][ T3991]  do_writepages+0x32e/0x550
[   94.819081][ T3991]  ? reacquire_held_locks+0x127/0x1d0
[   94.819100][ T3991]  ? writeback_sb_inodes+0x384/0x1010
[   94.819123][ T3991]  __writeback_single_inode+0x145/0xff0
[   94.819137][ T3991]  ? do_raw_spin_unlock+0x4d/0x240
[   94.819155][ T3991]  writeback_sb_inodes+0x6c7/0x1010
[   94.819196][ T3991]  ? __pfx_writeback_sb_inodes+0x10/0x10
[   94.819241][ T3991]  ? rcu_is_watching+0x15/0xb0
[   94.819270][ T3991]  wb_writeback+0x43b/0xaf0
[   94.819290][ T3991]  ? queue_io+0x2f1/0x590
[   94.819303][ T3991]  ? __pfx_wb_writeback+0x10/0x10
[   94.819325][ T3991]  ? _raw_spin_unlock_irq+0x23/0x50
[   94.819351][ T3991]  wb_workfn+0x409/0xef0
[   94.819381][ T3991]  ? __pfx_wb_workfn+0x10/0x10
[   94.819401][ T3991]  ? __lock_acquire+0xab9/0xd20
[   94.819429][ T3991]  ? process_scheduled_works+0x9ef/0x17b0
[   94.819453][ T3991]  ? _raw_spin_unlock_irq+0x23/0x50
[   94.819467][ T3991]  ? process_scheduled_works+0x9ef/0x17b0
[   94.819481][ T3991]  ? process_scheduled_works+0x9ef/0x17b0
[   94.819500][ T3991]  process_scheduled_works+0xae1/0x17b0
[   94.819547][ T3991]  ? __pfx_process_scheduled_works+0x10/0x10
[   94.819578][ T3991]  worker_thread+0x8a0/0xda0
[   94.819627][ T3991]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   94.819654][ T3991]  ? __kthread_parkme+0x7b/0x200
[   94.819683][ T3991]  kthread+0x711/0x8a0
[   94.819701][ T3991]  ? __pfx_worker_thread+0x10/0x10
[   94.819719][ T3991]  ? __pfx_kthread+0x10/0x10
[   94.819728][ T3991]  ? _raw_spin_unlock_irq+0x23/0x50
[   94.819746][ T3991]  ? lockdep_hardirqs_on+0x9c/0x150
[   94.819756][ T3991]  ? __pfx_kthread+0x10/0x10
[   94.819768][ T3991]  ret_from_fork+0x4bc/0x870
[   94.819786][ T3991]  ? __pfx_ret_from_fork+0x10/0x10
[   94.819806][ T3991]  ? __switch_to_asm+0x39/0x70
[   94.819821][ T3991]  ? __switch_to_asm+0x33/0x70
[   94.819834][ T3991]  ? __pfx_kthread+0x10/0x10
[   94.819847][ T3991]  ret_from_fork_asm+0x1a/0x30
[   94.819883][ T3991]  </TASK>
[   94.819889][ T3991] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[   94.865942][ T5200] Bluetooth: hci2: command 0x0c1a tx timeout
[   95.101918][ T6730] loop2: detected capacity change from 0 to 32768
[   95.128100][ T6730] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   95.178958][ T6730] XFS (loop2): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[   95.187801][ T6730] XFS (loop2): Starting recovery (logdev: internal)
[   95.199224][ T6730] XFS (loop2): Ending recovery (logdev: internal)
[   95.213946][ T5809] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   95.606404][ T6754] loop8: detected capacity change from 0 to 1
[   95.612597][ T5810] Dev loop8: unable to read RDB block 1
[   95.615053][ T5810]  loop8: unable to read partition table
[   95.617229][ T5810] loop8: partition table beyond EOD, truncated
[   95.624857][ T6754] Dev loop8: unable to read RDB block 1
[   95.627355][ T6754]  loop8: unable to read partition table
[   95.629839][ T6754] loop8: partition table beyond EOD, truncated
[   95.632331][ T6754] loop_reread_partitions: partition scan of loop8 (被x^> ) failed (rc=-5)
[   95.823038][ T6764] tipc: Started in network mode
[   95.824980][ T6764] tipc: Node identity ac14140f, cluster identity 4711
[   95.827566][ T6764] tipc: New replicast peer: 255.255.255.255
[   95.830501][ T6764] tipc: Enabled bearer <udp:syz2>, priority 10
[   95.923559][ T6768] loop0: detected capacity change from 0 to 4096
[   95.927851][ T6768] ntfs3(loop0): Different NTFS sector size (2048) and media sector size (512).
[   95.994592][ T5873] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[   96.156781][ T5873] usb 3-1: Using ep0 maxpacket: 32
[   96.196418][ T5873] usb 3-1: config 0 has an invalid interface number: 210 but max is 0
[   96.199747][ T5873] usb 3-1: config 0 has no interface number 0
[   96.202242][ T5873] usb 3-1: config 0 interface 210 has no altsetting 0
[   96.227186][ T5873] usb 3-1: New USB device found, idVendor=0711, idProduct=0210, bcdDevice=3b.9f
[   96.230385][ T5873] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   96.233714][ T5873] usb 3-1: Product: syz
[   96.236856][ T5873] usb 3-1: Manufacturer: syz
[   96.238560][ T5873] usb 3-1: SerialNumber: syz
[   96.245951][ T5873] usb 3-1: config 0 descriptor??
[   96.258173][ T5873] mct_u232 3-1:0.210: MCT U232 converter detected
[   96.263161][ T5873] mct_u232 ttyUSB0: expected endpoint missing
[   96.488747][ T5873] usb 3-1: USB disconnect, device number 6
[   96.489371][ T6779] netlink: 24 bytes leftover after parsing attributes in process `syz.0.354'.
[   96.521360][ T5873] mct_u232 3-1:0.210: device disconnected
[   96.627228][ T6779] netlink: 4 bytes leftover after parsing attributes in process `syz.0.354'.
[   96.865561][   T56] Bluetooth: hci1: command 0x0c1a tx timeout
[   96.952222][   T24] tipc: Node number set to 2886997007
[   96.977400][ T6784] netlink: 4 bytes leftover after parsing attributes in process `syz.0.356'.
[   97.024544][   T56] Bluetooth: hci2: command 0x0c1a tx timeout
[   97.329054][ T6789] Bluetooth: MGMT ver 1.23
[   97.665787][ T6795] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   97.793176][ T6793] loop0: detected capacity change from 0 to 32768
[   97.800580][ T6793] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.359 (6793)
[   97.857466][ T6793] BTRFS info (device loop0): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[   97.860773][ T6793] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm
[   98.105658][ T6811] binder: 6801:6811 ioctl 4018620d 0 returned -22
[   98.151933][ T6793] BTRFS info (device loop0): enabling ssd optimizations
[   98.162449][ T6793] BTRFS info (device loop0): enabling free space tree
[   98.179284][ T6793] BTRFS info (device loop0): use zstd compression, level 3
[   98.461196][ T5813] BTRFS info (device loop0): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[   99.031625][ T6821] netlink: 8 bytes leftover after parsing attributes in process `syz.0.363'.
[   99.123694][   T56] Bluetooth: hci2: command 0x0c1a tx timeout
[   99.638056][ T6826] loop1: detected capacity change from 0 to 1764
[   99.712966][ T6830] vim2m vim2m.0: vidioc_s_fmt queue busy
[   99.733339][ T6826] iso9660: Corrupted directory entry in block 2 of inode 1920
[   99.988476][ T6848] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  100.139490][ T6854] netlink: 8 bytes leftover after parsing attributes in process `syz.0.380'.
[  100.242902][ T6858] netlink: 4 bytes leftover after parsing attributes in process `syz.0.382'.
[  100.404952][ T6862] netlink: 4 bytes leftover after parsing attributes in process `syz.0.384'.
[  100.411683][ T6862] veth0_macvtap: left promiscuous mode
[  100.789432][ T6877] netlink: 8 bytes leftover after parsing attributes in process `syz.0.391'.
[  100.926329][ T5873] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  101.096600][ T5873] usb 3-1: Using ep0 maxpacket: 8
[  101.109307][ T5873] usb 3-1: unable to get BOS descriptor or descriptor too short
[  101.117047][ T5873] usb 3-1: config 8 has an invalid interface number: 255 but max is 0
[  101.120286][ T5873] usb 3-1: config 8 has no interface number 0
[  101.122770][ T5873] usb 3-1: config 8 interface 255 has no altsetting 0
[  101.151831][ T5873] usb 3-1: string descriptor 0 read error: -22
[  101.156763][ T5873] usb 3-1: New USB device found, idVendor=0423, idProduct=000c, bcdDevice=2e.bf
[  101.164807][ T5873] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  101.402697][ T5873] catc 3-1:8.255: Can't set altsetting 1.
[  101.406174][ T6911] netlink: 4 bytes leftover after parsing attributes in process `syz.1.408'.
[  101.407163][ T5873] catc 3-1:8.255: probe with driver catc failed with error -5
[  101.413879][ T6911] veth1_macvtap: left promiscuous mode
[  101.422929][ T5873] usb 3-1: USB disconnect, device number 7
[  102.427622][ T6952] loop2: detected capacity change from 0 to 128
[  102.444990][ T6952] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  102.457797][ T6952] ext4 filesystem being mounted at /155/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  102.489378][ T5809] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  102.620014][ T6959] netlink: 36 bytes leftover after parsing attributes in process `syz.2.431'.
[  102.645889][ T6959] netlink: 4 bytes leftover after parsing attributes in process `syz.2.431'.
[  102.652463][ T6959] veth1_macvtap: left promiscuous mode
[  102.678187][ T6962] loop1: detected capacity change from 0 to 512
[  102.682903][ T6962] EXT4-fs: Ignoring removed bh option
[  102.713503][ T6962] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  102.723572][ T6962] EXT4-fs (loop1): 1 truncate cleaned up
[  102.727845][ T6962] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.772240][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.914838][ T6965] loop2: detected capacity change from 0 to 4096
[  102.924532][ T6965] ntfs3(loop2): Primary boot: invalid sectors per cluster 4294967274.
[  102.934646][ T6965] ntfs3(loop2): try to read out of volume at offset 0x1ffe00
[  103.056412][ T6973] loop2: detected capacity change from 0 to 2048
[  103.078600][ T6978] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  103.315687][ T6988] loop2: detected capacity change from 0 to 8
[  103.336899][ T6988] unable to read id index table
[  103.495261][ T6995] loop2: detected capacity change from 0 to 512
[  103.530694][ T6995] EXT4-fs (loop2): blocks per group (255) and clusters per group (8192) inconsistent
[  103.691356][   T56] Bluetooth: hci2: unexpected event for opcode 0x2042
[  103.841170][ T7008] loop1: detected capacity change from 0 to 8
[  103.950570][ T7010] loop1: detected capacity change from 0 to 4096
[  103.967631][ T7010] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  103.989163][ T7010] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  103.994930][ T7010] ntfs3(loop1): ino=19, mi_enum_attr
[  104.353089][ T7017] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.388947][ T7017] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.837084][ T7025] loop2: detected capacity change from 0 to 1024
[  104.853116][ T7025] Quota error (device loop2): do_check_range: Getting block 64 out of range 1-5
[  104.859906][ T7025] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  104.863646][ T7025] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.460: Failed to acquire dquot type 0
[  104.881128][ T7025] EXT4-fs error (device loop2): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  104.890798][ T7025] EXT4-fs error (device loop2): ext4_do_update_inode:5624: inode #13: comm syz.2.460: corrupted inode contents
[  104.897067][ T7025] EXT4-fs error (device loop2): ext4_dirty_inode:6509: inode #13: comm syz.2.460: mark_inode_dirty error
[  104.901877][ T7025] EXT4-fs error (device loop2): ext4_do_update_inode:5624: inode #13: comm syz.2.460: corrupted inode contents
[  104.907128][ T7025] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #13: comm syz.2.460: mark_inode_dirty error
[  104.911673][ T7025] EXT4-fs error (device loop2): ext4_do_update_inode:5624: inode #13: comm syz.2.460: corrupted inode contents
[  104.920345][ T7025] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #13: comm syz.2.460: mark_inode_dirty error
[  104.927224][ T7025] EXT4-fs error (device loop2): ext4_do_update_inode:5624: inode #13: comm syz.2.460: corrupted inode contents
[  104.936686][ T7025] EXT4-fs error (device loop2) in ext4_orphan_del:301: Corrupt filesystem
[  104.941424][ T7025] EXT4-fs error (device loop2): ext4_do_update_inode:5624: inode #13: comm syz.2.460: corrupted inode contents
[  104.947927][ T7025] EXT4-fs error (device loop2): ext4_truncate:4637: inode #13: comm syz.2.460: mark_inode_dirty error
[  104.954516][ T7025] EXT4-fs error (device loop2) in ext4_process_orphan:343: Corrupt filesystem
[  104.962529][ T7025] EXT4-fs (loop2): 1 truncate cleaned up
[  104.971475][ T7025] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.078128][ T5809] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.522463][   T33] audit: type=1326 audit(1760620507.165:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7037 comm="syz.2.466" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2e0d8eec9 code=0x7ffc0000
[  105.543190][   T33] audit: type=1326 audit(1760620507.165:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7037 comm="syz.2.466" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2e0d8eec9 code=0x7ffc0000
[  105.560563][   T33] audit: type=1326 audit(1760620507.175:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7037 comm="syz.2.466" exe="/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7ff2e0d8eec9 code=0x7ffc0000
[  105.577618][   T33] audit: type=1326 audit(1760620507.175:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7037 comm="syz.2.466" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2e0d8eec9 code=0x7ffc0000
[  105.589191][   T33] audit: type=1326 audit(1760620507.175:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7037 comm="syz.2.466" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2e0d8eec9 code=0x7ffc0000
[  105.598214][   T33] audit: type=1326 audit(1760620507.175:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7037 comm="syz.2.466" exe="/syz-executor" sig=0 arch=c000003e syscall=226 compat=0 ip=0x7ff2e0d8eec9 code=0x7ffc0000
[  105.611514][   T33] audit: type=1326 audit(1760620507.175:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7037 comm="syz.2.466" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2e0d8eec9 code=0x7ffc0000
[  105.624876][   T33] audit: type=1326 audit(1760620507.175:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7037 comm="syz.2.466" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff2e0d8eec9 code=0x7ffc0000
[  105.814434][   T24] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  105.915249][ T7050] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  105.967481][   T24] usb 3-1: Using ep0 maxpacket: 8
[  105.976433][   T24] usb 3-1: config 1 has an invalid interface number: 44 but max is 0
[  105.979877][   T24] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  105.983759][   T24] usb 3-1: config 1 has no interface number 0
[  105.991673][   T24] usb 3-1: config 1 interface 44 altsetting 2 endpoint 0x6 has invalid maxpacket 512, setting to 64
[  106.004381][   T24] usb 3-1: config 1 interface 44 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 15
[  106.009524][   T24] usb 3-1: config 1 interface 44 has no altsetting 0
[  106.024644][   T24] usb 3-1: New USB device found, idVendor=05ef, idProduct=8884, bcdDevice=a3.c1
[  106.028550][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  106.031599][   T24] usb 3-1: Product: syz
[  106.033396][   T24] usb 3-1: Manufacturer: syz
[  106.043840][   T24] usb 3-1: SerialNumber: syz
[  106.265479][ T5835] usb 3-1: USB disconnect, device number 8
[  107.063577][ T7075] input: syz1 as /devices/virtual/input/input5
[  107.109713][ T7077] loop1: detected capacity change from 0 to 2048
[  107.122980][ T7077] UDF-fs: warning (device loop1): udf_verify_domain_identifier: Not OSTA UDF compliant logical volume descriptor.
[  107.128810][ T7077] UDF-fs: error (device loop1): udf_load_logicalvol: error loading logical volume descriptor: Too many partition maps (4 > 0)
[  107.132945][ T7077] UDF-fs: Scanning with blocksize 512 failed
[  107.139910][ T7077] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  107.149368][ T7077] UDF-fs: Scanning with blocksize 1024 failed
[  107.155826][ T7077] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=512, location=512
[  107.158887][ T7077] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  107.161261][ T7077] UDF-fs: Scanning with blocksize 2048 failed
[  107.175834][ T7077] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  107.180231][ T7077] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=512, location=512
[  107.183273][ T7077] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  107.186069][ T7077] UDF-fs: Scanning with blocksize 4096 failed
[  107.188345][ T7077] UDF-fs: warning (device loop1): udf_fill_super: No partition found (1)
[  107.197535][ T7080] loop2: detected capacity change from 0 to 512
[  107.200511][ T7080] EXT4-fs: Ignoring removed bh option
[  107.222915][ T7080] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  107.227483][ T7080] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  107.238753][ T7080] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended
[  107.260859][ T7080] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[  107.271303][ T7080] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.324689][ T5809] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.563533][ T7106] netlink: 'syz.2.494': attribute type 4 has an invalid length.
[  107.706419][ T7112] loop1: detected capacity change from 0 to 8192
[  107.747191][   T56] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  107.751100][   T56] Bluetooth: hci2: Injecting HCI hardware error event
[  107.756063][ T5200] Bluetooth: hci2: hardware error 0x00
[  108.284373][ T5835] usb 2-1: new full-speed USB device number 5 using dummy_hcd
[  108.446634][ T5835] usb 2-1: config 8 has an invalid interface number: 223 but max is 0
[  108.449843][ T5835] usb 2-1: config 8 has an invalid descriptor of length 0, skipping remainder of the config
[  108.454853][ T5835] usb 2-1: config 8 has no interface number 0
[  108.457208][ T5835] usb 2-1: config 8 interface 223 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  108.464875][ T5835] usb 2-1: New USB device found, idVendor=a6da, idProduct=7458, bcdDevice=2d.45
[  108.468423][ T5835] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  108.471514][ T5835] usb 2-1: Product: syz
[  108.473193][ T5835] usb 2-1: Manufacturer: syz
[  108.475395][ T5835] usb 2-1: SerialNumber: syz
[  108.696112][ T5835] usb 2-1: USB disconnect, device number 5
[  108.984409][ T5873] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  109.134375][ T5873] usb 3-1: Using ep0 maxpacket: 16
[  109.141068][ T5873] usb 3-1: New USB device found, idVendor=06b9, idProduct=4061, bcdDevice= 1.88
[  109.144900][ T5873] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  109.148119][ T5873] usb 3-1: Product: syz
[  109.149871][ T5873] usb 3-1: Manufacturer: syz
[  109.151907][ T5873] usb 3-1: SerialNumber: syz
[  109.157330][ T5873] usb 3-1: config 0 descriptor??
[  109.365760][ T5873] speedtch 3-1:0.0: speedtch_bind: wrong device class 68
[  109.368404][ T5873] speedtch 3-1:0.0: usbatm_usb_probe: bind failed: -19!
[  109.372665][ T5873] usb 3-1: USB disconnect, device number 9
[  109.603841][ T7151] hsr0: entered promiscuous mode
[  109.607957][ T7151] macsec0: entered allmulticast mode
[  109.610300][ T7151] hsr0: entered allmulticast mode
[  109.612373][ T7151] hsr_slave_0: entered allmulticast mode
[  109.614990][ T7151] hsr_slave_1: entered allmulticast mode
[  109.714661][ T7155] cgroup: noprefix used incorrectly
[  109.824848][ T5200] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  109.997280][ T7166] binder_alloc: 7164: binder_alloc_buf, no vma
[  110.134468][   T24] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  110.291882][   T24] usb 2-1: config 0 has an invalid interface number: 216 but max is 0
[  110.295666][   T24] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  110.299821][   T24] usb 2-1: config 0 has no interface number 0
[  110.302375][   T24] usb 2-1: config 0 interface 216 altsetting 4 endpoint 0x8F has invalid maxpacket 13888, setting to 1024
[  110.307278][   T24] usb 2-1: config 0 interface 216 altsetting 4 bulk endpoint 0x8F has invalid maxpacket 1024
[  110.311499][   T24] usb 2-1: config 0 interface 216 altsetting 4 endpoint 0xD has invalid wMaxPacketSize 0
[  110.315515][   T24] usb 2-1: config 0 interface 216 altsetting 4 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  110.320758][   T24] usb 2-1: config 0 interface 216 has no altsetting 0
[  110.323564][   T24] usb 2-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=c1.2e
[  110.327424][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  110.342578][   T24] usb 2-1: config 0 descriptor??
[  110.347581][ T7163] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  110.358069][   T24] usb 2-1: NFC: intf ffff8881a961f000 id ffffffff8eb1e280
[  110.577951][ T5873] usb 2-1: USB disconnect, device number 6
[  111.010568][ T7170] ntfs3(nullb0): Primary boot signature is not NTFS.
[  111.013127][ T7170] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  111.053093][ T7172] loop2: detected capacity change from 0 to 1024
[  111.056242][ T7172] EXT4-fs: Ignoring removed nomblk_io_submit option
[  111.078258][ T7172] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  111.080858][ T7172] System zones: 0-1, 3-36
[  111.085594][ T7172] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.158058][ T5809] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.544430][ T5873] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  111.707925][ T5873] usb 2-1: New USB device found, idVendor=187f, idProduct=0202, bcdDevice=39.91
[  111.711402][ T5873] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  111.713993][ T5873] usb 2-1: Product: syz
[  111.715601][ T5873] usb 2-1: Manufacturer: syz
[  111.717077][ T5873] usb 2-1: SerialNumber: syz
[  111.720578][ T5873] usb 2-1: config 0 descriptor??
[  111.732038][ T5873] smsusb:smsusb_probe: board id=11, interface number 0
[  111.738331][ T5873] smsusb:smsusb_probe: Device initialized with return code -19
[  111.936738][  T794] usb 2-1: USB disconnect, device number 7
[  112.522982][ T7207] netlink: 80 bytes leftover after parsing attributes in process `syz.1.540'.
[  112.526878][ T7207] netlink: 80 bytes leftover after parsing attributes in process `syz.1.540'.
[  113.264426][   T56] Bluetooth: hci1: command 0x0c1a tx timeout
[  113.658351][    C0] IPv4: Oversized IP packet from 172.20.20.24
[  113.912002][ T7241] macsec1: entered promiscuous mode
[  113.915518][ T7241] macvlan0: entered promiscuous mode
[  113.920708][ T7241] macvlan0: left promiscuous mode
[  113.958786][ T7245] netlink: 76 bytes leftover after parsing attributes in process `syz.2.557'.
[  113.962049][ T7245] netlink: 76 bytes leftover after parsing attributes in process `syz.2.557'.
[  114.297416][ T7255] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  114.301388][ T7255] Cannot find add_set index 0 as target
[  114.899734][ T7259] loop1: detected capacity change from 0 to 4096
[  114.916553][ T7259] NILFS (loop1): mounting unchecked fs
[  114.918787][ T7259] NILFS (loop1): recovery required for readonly filesystem
[  114.921574][ T7259] NILFS (loop1): write access will be enabled during recovery
[  114.931995][ T7259] NILFS (loop1): invalid segment: Checksum error in segment payload
[  114.935781][ T7259] NILFS (loop1): trying rollback from an earlier position
[  114.947534][ T7259] syz.1.563: attempt to access beyond end of device
[  114.947534][ T7259] loop1: rw=0, sector=118819032, nr_sectors = 8 limit=4096
[  114.961592][ T7259] NILFS (loop1): I/O error reading meta-data file (ino=5, block-offset=0)
[  114.995865][ T7259] NILFS (loop1): error -5 while loading super root
[  115.344627][   T56] Bluetooth: hci1: command 0x0c1a tx timeout
[  116.234524][   T24] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  116.385362][   T24] usb 2-1: Using ep0 maxpacket: 32
[  116.389393][   T24] usb 2-1: config 0 interface 0 has no altsetting 0
[  116.394345][   T24] usb 2-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  116.398022][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  116.401166][   T24] usb 2-1: Product: syz
[  116.402820][   T24] usb 2-1: Manufacturer: syz
[  116.405005][   T24] usb 2-1: SerialNumber: syz
[  116.409396][   T24] usb 2-1: config 0 descriptor??
[  116.702985][ T5200] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  116.708197][ T5200] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  116.711853][ T5200] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  116.717206][ T5200] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  116.721205][ T5200] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  116.815498][   T24] gs_usb 2-1:0.0: Configuring for 1 interfaces
[  116.903341][ T5839] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.002028][ T5839] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.096172][ T5839] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.224181][   T24] gs_usb 2-1:0.0: Couldn't get extended bit timing const for channel 0 (-EPROTO)
[  117.232642][   T24] gs_usb 2-1:0.0: probe with driver gs_usb failed with error -71
[  117.241476][ T5839] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.242568][   T24] usb 2-1: USB disconnect, device number 8
[  117.270931][ T7281] chnl_net:caif_netlink_parms(): no params data found
[  117.859391][ T7281] bridge0: port 1(bridge_slave_0) entered blocking state
[  117.867663][ T7281] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.882459][ T7281] bridge_slave_0: entered allmulticast mode
[  117.917576][ T7281] bridge_slave_0: entered promiscuous mode
[  118.025907][ T7281] bridge0: port 2(bridge_slave_1) entered blocking state
[  118.041889][ T7281] bridge0: port 2(bridge_slave_1) entered disabled state
[  118.059377][ T7281] bridge_slave_1: entered allmulticast mode
[  118.107504][ T7281] bridge_slave_1: entered promiscuous mode
[  118.380970][ T7281] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  118.390726][ T7281] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  118.412830][   T24] IPVS: starting estimator thread 0...
[  118.450534][ T7281] team0: Port device team_slave_0 added
[  118.453027][ T5839] bridge_slave_1: left allmulticast mode
[  118.462254][ T5839] bridge_slave_1: left promiscuous mode
[  118.468080][ T5839] bridge0: port 2(bridge_slave_1) entered disabled state
[  118.492168][ T5839] bridge_slave_0: left allmulticast mode
[  118.497268][ T5839] bridge_slave_0: left promiscuous mode
[  118.499894][ T5839] bridge0: port 1(bridge_slave_0) entered disabled state
[  118.504809][ T7306] IPVS: using max 62 ests per chain, 148800 per kthread
[  118.620867][ T5873] usb 3-1: new full-speed USB device number 10 using dummy_hcd
[  118.781399][ T5873] usb 3-1: config 0 has an invalid interface number: 175 but max is 0
[  118.791359][   T56] Bluetooth: hci3: command tx timeout
[  118.798434][ T5873] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  118.801964][ T5873] usb 3-1: config 0 has no interface number 0
[  118.804685][ T5873] usb 3-1: config 0 interface 175 altsetting 0 has an endpoint descriptor with address 0xBC, changing to 0x8C
[  118.809278][ T5873] usb 3-1: config 0 interface 175 altsetting 0 endpoint 0x8C has an invalid bInterval 0, changing to 10
[  118.813659][ T5873] usb 3-1: config 0 interface 175 altsetting 0 endpoint 0x8C has invalid wMaxPacketSize 0
[  118.818198][ T5873] usb 3-1: config 0 interface 175 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 16
[  118.827187][ T5873] usb 3-1: New USB device found, idVendor=05e0, idProduct=0600, bcdDevice=f9.9b
[  118.830825][ T5873] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  118.834216][ T5873] usb 3-1: Product: syz
[  118.836185][ T5873] usb 3-1: Manufacturer: syz
[  118.838146][ T5873] usb 3-1: SerialNumber: syz
[  118.842814][ T5873] usb 3-1: config 0 descriptor??
[  118.848303][ T5873] symbolserial 3-1:0.175: symbol converter detected
[  118.858146][ T5873] usb 3-1: symbol converter now attached to ttyUSB0
[  118.911319][ T5839] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  118.924008][ T5839] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  118.930171][ T5839] bond0 (unregistering): Released all slaves
[  118.946136][ T7281] team0: Port device team_slave_1 added
[  119.028381][   T24] syz0: Port: 1 Link DOWN
[  119.055704][ T7281] batman_adv: batadv0: Adding interface: batadv_slave_0
[  119.058601][ T7281] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  119.070031][ T7281] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  119.083850][   T24] usb 3-1: USB disconnect, device number 10
[  119.103268][ T5839] tipc: Disabling bearer <udp:syz2>
[  119.106347][ T5839] tipc: Left network mode
[  119.115059][ T7281] batman_adv: batadv0: Adding interface: batadv_slave_1
[  119.117887][ T7281] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  119.176182][   T24] symbol ttyUSB0: symbol converter now disconnected from ttyUSB0
[  119.180142][ T7281] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  119.188922][   T24] symbolserial 3-1:0.175: device disconnected
[  119.383832][ T7281] hsr_slave_0: entered promiscuous mode
[  119.393534][ T7281] hsr_slave_1: entered promiscuous mode
[  119.403115][ T7281] debugfs: 'hsr0' already exists in 'hsr'
[  119.406361][ T7281] Cannot create hsr debugfs directory
[  119.665783][ T7314] loop1: detected capacity change from 0 to 131072
[  119.673891][ T7314] F2FS-fs (loop1): Test dummy encryption mode enabled
[  119.681127][ T7314] F2FS-fs (loop1): invalid crc value
[  119.733897][ T7324] loop2: detected capacity change from 0 to 256
[  119.765916][ T7314] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  119.773191][ T7314] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  119.780060][ T7324] exfat: Deprecated parameter 'utf8'
[  119.794078][ T7324] exfat: Deprecated parameter 'namecase'
[  119.814021][ T7324] exfat: Deprecated parameter 'namecase'
[  119.826809][ T7324] exfat: Deprecated parameter 'utf8'
[  119.836100][ T7324] exFAT-fs (loop2): failed to load upcase table (idx : 0x00012153, chksum : 0x5270ca8d, utbl_chksum : 0xe619d30d)
[  119.970489][ T5839] hsr_slave_0: left promiscuous mode
[  119.973289][ T5839] hsr_slave_1: left promiscuous mode
[  119.976817][ T5839] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  119.979560][ T5839] batman_adv: batadv0: Removing interface: batadv_slave_0
[  119.986609][ T5839] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  119.989516][ T5839] batman_adv: batadv0: Removing interface: batadv_slave_1
[  120.032533][ T5839] veth1_macvtap: left promiscuous mode
[  120.039750][ T5839] veth1_vlan: left promiscuous mode
[  120.041709][ T5839] veth0_vlan: left promiscuous mode
[  120.390600][ T7343] loop1: detected capacity change from 0 to 1024
[  120.397819][ T7343] EXT4-fs: Ignoring removed bh option
[  120.401012][ T7343] EXT4-fs (loop1): stripe (36) is not aligned with cluster size (16), stripe is disabled
[  120.423313][ T7343] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  120.536128][ T5839] team0 (unregistering): Port device team_slave_1 removed
[  120.580391][ T5839] team0 (unregistering): Port device team_slave_0 removed
[  120.906874][   T56] Bluetooth: hci3: command tx timeout
[  120.945777][   T28] smc: removing ib device syz0
[  120.969350][ T7347] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000.
[  121.371222][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.491575][ T7353] loop1: detected capacity change from 0 to 512
[  121.519692][ T7353] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  121.555235][   T27] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  121.622167][ T7355] loop1: detected capacity change from 0 to 1024
[  121.661380][ T7355] EXT4-fs: mb_optimize_scan should be set to 0 or 1.
[  121.983789][ T7360] netlink: 12 bytes leftover after parsing attributes in process `syz.2.593'.
[  122.005965][ T7281] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  122.026878][ T7281] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  122.054458][ T7281] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  122.063966][ T7281] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  122.197406][ T7281] 8021q: adding VLAN 0 to HW filter on device bond0
[  122.214161][ T7281] 8021q: adding VLAN 0 to HW filter on device team0
[  122.230830][ T1095] bridge0: port 1(bridge_slave_0) entered blocking state
[  122.233910][ T1095] bridge0: port 1(bridge_slave_0) entered forwarding state
[  122.253506][ T1095] bridge0: port 2(bridge_slave_1) entered blocking state
[  122.256576][ T1095] bridge0: port 2(bridge_slave_1) entered forwarding state
[  122.354191][ T5839] ------------[ cut here ]------------
[  122.356703][ T5839] WARNING: CPU: 0 PID: 5839 at net/ipv6/xfrm6_tunnel.c:341 xfrm6_tunnel_net_exit+0x7e/0x100
[  122.360657][ T5839] Modules linked in:
[  122.363956][ T5839] CPU: 0 UID: 0 PID: 5839 Comm: kworker/u8:3 Not tainted syzkaller #0 PREEMPT(full) 
[  122.368841][ T5839] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  122.372785][ T5839] Workqueue: netns cleanup_net
[  122.374966][ T5839] RIP: 0010:xfrm6_tunnel_net_exit+0x7e/0x100
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  122.377407][ T5839] Code: 38 3c 12 f8 4b 83 3c 2c 00 75 19 e8 8c 85 ac f7 49 81 fd f8 07 00 00 74 1d e8 7e 85 ac f7 49 83 c5 08 eb c9 e8 73 85 ac f7 90 <0f> 0b 90 49 81 fd f8 07 00 00 75 e3 48 81 c3 00 08 00 00 45 31 f6
[  122.385458][ T5839] RSP: 0018:ffffc90003f27890 EFLAGS: 00010293
[  122.387404][ T7281] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  122.387861][ T5839] RAX: ffffffff8a13be7d RBX: ffff888112454000 RCX: ffff88810e7f8000
[  122.393769][ T7281] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  122.395822][ T5839] RDX: 0000000000000000 RSI: ffffffff8d7e835a RDI: ffff888112454000
[  122.402531][ T5839] RBP: ffffc90003f27990 R08: ffffffff8f9e1177 R09: 1ffffffff1f3c22e
[  122.405486][ T5839] R10: dffffc0000000000 R11: fffffbfff1f3c22f R12: ffff888112454000
[  122.407961][ T5839] R13: 0000000000000000 R14: ffff888109c28000 R15: dffffc0000000000
[  122.410539][ T5839] FS:  0000000000000000(0000) GS:ffff88818e70c000(0000) knlGS:0000000000000000
[  122.413639][ T5839] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  122.415809][ T5839] CR2: 0000001b3021fff8 CR3: 00000001bb2f8000 CR4: 00000000000006f0
[  122.418299][ T5839] Call Trace:
[  122.419372][ T5839]  <TASK>
[  122.420319][ T5839]  ops_undo_list+0x49a/0x990
[  122.421784][ T5839]  ? __pfx_ops_undo_list+0x10/0x10
[  122.423366][ T5839]  ? do_raw_spin_unlock+0x4d/0x240
[  122.425174][ T5839]  cleanup_net+0x4d8/0x820
[  122.426578][ T5839]  ? __pfx_cleanup_net+0x10/0x10
[  122.428129][ T5839]  ? _raw_spin_unlock_irq+0x23/0x50
[  122.429757][ T5839]  ? process_scheduled_works+0x9ef/0x17b0
[  122.431547][ T5839]  ? process_scheduled_works+0x9ef/0x17b0
[  122.433369][ T5839]  process_scheduled_works+0xae1/0x17b0
[  122.435248][ T5839]  ? __pfx_process_scheduled_works+0x10/0x10
[  122.437113][ T5839]  worker_thread+0x8a0/0xda0
[  122.438567][ T5839]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  122.440575][ T5839]  ? __kthread_parkme+0x7b/0x200
[  122.442125][ T5839]  kthread+0x711/0x8a0
[  122.443415][ T5839]  ? __pfx_worker_thread+0x10/0x10
[  122.445115][ T5839]  ? __pfx_kthread+0x10/0x10
[  122.446573][ T5839]  ? _raw_spin_unlock_irq+0x23/0x50
[  122.448194][ T5839]  ? lockdep_hardirqs_on+0x9c/0x150
[  122.449872][ T5839]  ? __pfx_kthread+0x10/0x10
[  122.451291][ T5839]  ret_from_fork+0x4bc/0x870
[  122.452751][ T5839]  ? __pfx_ret_from_fork+0x10/0x10
[  122.454498][ T5839]  ? __switch_to_asm+0x39/0x70
[  122.455994][ T5839]  ? __switch_to_asm+0x33/0x70
[  122.457480][ T5839]  ? __pfx_kthread+0x10/0x10
[  122.458916][ T5839]  ret_from_fork_asm+0x1a/0x30
[  122.460411][ T5839]  </TASK>
[  122.462343][ T5839] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  122.465305][ T5839] CPU: 0 UID: 0 PID: 5839 Comm: kworker/u8:3 Not tainted syzkaller #0 PREEMPT(full) 
[  122.468965][ T5839] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  122.472934][ T5839] Workqueue: netns cleanup_net
[  122.474872][ T5839] Call Trace:
[  122.476211][ T5839]  <TASK>
[  122.477406][ T5839]  dump_stack_lvl+0x99/0x250
[  122.479294][ T5839]  ? __asan_memcpy+0x40/0x70
[  122.481137][ T5839]  ? __pfx_dump_stack_lvl+0x10/0x10
[  122.483213][ T5839]  ? __pfx__printk+0x10/0x10
[  122.485090][ T5839]  vpanic+0x237/0x6d0
[  122.486618][ T5839]  ? __pfx_vpanic+0x10/0x10
[  122.488033][ T5839]  panic+0xb9/0xc0
[  122.489224][ T5839]  ? __pfx_panic+0x10/0x10
[  122.490701][ T5839]  __warn+0x31b/0x4b0
[  122.491987][ T5839]  ? xfrm6_tunnel_net_exit+0x7e/0x100
[  122.493692][ T5839]  ? xfrm6_tunnel_net_exit+0x7e/0x100
[  122.495367][ T5839]  report_bug+0x2be/0x4f0
[  122.496770][ T5839]  ? xfrm6_tunnel_net_exit+0x7e/0x100
[  122.498702][ T5839]  ? xfrm6_tunnel_net_exit+0x7e/0x100
[  122.500376][ T5839]  ? xfrm6_tunnel_net_exit+0x80/0x100
[  122.502196][ T5839]  handle_bug+0x84/0x160
[  122.503530][ T5839]  exc_invalid_op+0x1a/0x50
[  122.504945][ T5839]  asm_exc_invalid_op+0x1a/0x20
[  122.506492][ T5839] RIP: 0010:xfrm6_tunnel_net_exit+0x7e/0x100
[  122.508673][ T5839] Code: 38 3c 12 f8 4b 83 3c 2c 00 75 19 e8 8c 85 ac f7 49 81 fd f8 07 00 00 74 1d e8 7e 85 ac f7 49 83 c5 08 eb c9 e8 73 85 ac f7 90 <0f> 0b 90 49 81 fd f8 07 00 00 75 e3 48 81 c3 00 08 00 00 45 31 f6
[  122.514772][ T5839] RSP: 0018:ffffc90003f27890 EFLAGS: 00010293
[  122.516671][ T5839] RAX: ffffffff8a13be7d RBX: ffff888112454000 RCX: ffff88810e7f8000
[  122.519077][ T5839] RDX: 0000000000000000 RSI: ffffffff8d7e835a RDI: ffff888112454000
[  122.521521][ T5839] RBP: ffffc90003f27990 R08: ffffffff8f9e1177 R09: 1ffffffff1f3c22e
[  122.524419][ T5839] R10: dffffc0000000000 R11: fffffbfff1f3c22f R12: ffff888112454000
[  122.527577][ T5839] R13: 0000000000000000 R14: ffff888109c28000 R15: dffffc0000000000
[  122.530624][ T5839]  ? xfrm6_tunnel_net_exit+0x7d/0x100
[  122.532768][ T5839]  ops_undo_list+0x49a/0x990
[  122.534409][ T5839]  ? __pfx_ops_undo_list+0x10/0x10
[  122.536022][ T5839]  ? do_raw_spin_unlock+0x4d/0x240
[  122.537610][ T5839]  cleanup_net+0x4d8/0x820
[  122.539243][ T5839]  ? __pfx_cleanup_net+0x10/0x10
[  122.540805][ T5839]  ? _raw_spin_unlock_irq+0x23/0x50
[  122.542318][ T5839]  ? process_scheduled_works+0x9ef/0x17b0
[  122.544239][ T5839]  ? process_scheduled_works+0x9ef/0x17b0
[  122.546484][ T5839]  process_scheduled_works+0xae1/0x17b0
[  122.548736][ T5839]  ? __pfx_process_scheduled_works+0x10/0x10
[  122.550666][ T5839]  worker_thread+0x8a0/0xda0
[  122.552492][ T5839]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  122.555863][ T5839]  ? __kthread_parkme+0x7b/0x200
[  122.557488][ T5839]  kthread+0x711/0x8a0
[  122.559207][ T5839]  ? __pfx_worker_thread+0x10/0x10
[  122.561045][ T5839]  ? __pfx_kthread+0x10/0x10
[  122.562827][ T5839]  ? _raw_spin_unlock_irq+0x23/0x50
[  122.564931][ T5839]  ? lockdep_hardirqs_on+0x9c/0x150
[  122.566899][ T5839]  ? __pfx_kthread+0x10/0x10
[  122.568575][ T5839]  ret_from_fork+0x4bc/0x870
[  122.570107][ T5839]  ? __pfx_ret_from_fork+0x10/0x10
[  122.571929][ T5839]  ? __switch_to_asm+0x39/0x70
[  122.573893][ T5839]  ? __switch_to_asm+0x33/0x70
[  122.575828][ T5839]  ? __pfx_kthread+0x10/0x10
[  122.577489][ T5839]  ret_from_fork_asm+0x1a/0x30
[  122.579345][ T5839]  </TASK>
[  122.581064][ T5839] Kernel Offset: disabled
[  122.582430][ T5839] Rebooting in 86400 seconds..

VM DIAGNOSIS:
13:15:24  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000032 RBX=0000000000000032 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc90003f27030
R8 =ffff888105f38237 R9 =1ffff11020be7046 R10=dffffc0000000000 R11=ffffffff851c1050
R12=dffffc0000000000 R13=ffffffff99a088e5 R14=ffffffff99d1bfc0 R15=0000000000000000
RIP=ffffffff851c10cc RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88818e70c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b3021fff8 CR3=00000001bb2f8000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007f3eadfb7498 00007f3eadfb7470 XMM03=00007f3eadfb74a8 00007f3eadfb74a0
XMM04=00007f3eaeb1d100 00007f3eadfb7460 XMM05=00007f3eadfb7478 00007f3eadfb74c0
XMM06=00007f3eadfb74b8 00007f3eadfb74b0 XMM07=00007f3eadfb74a8 00007f3eadfb74a0
XMM08=0000000000000000 00524f5252450040 XMM09=0000000000000000 00007f3eade1313d
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffffffff81b4d4cb RBX=1ffff11024208441 RCX=ffff8881066ed700 RDX=0000000000000000
RSI=0000000000000001 RDI=0000000000000000 RBP=ffffc90003be7700 RSP=ffffc90003be7580
R8 =ffffffff8f9e1177 R9 =1ffffffff1f3c22e R10=dffffc0000000000 R11=fffffbfff1f3c22f
R12=ffff888121042208 R13=dffffc0000000000 R14=ffff88823c63b240 R15=0000000000000000
RIP=ffffffff81b4d4b3 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8882a9d0c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f702b717d60 CR3=000000000df38000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00007f702abb76c3 00007f702abb76c3 XMM01=2525252525252525 2525252525252525
XMM02=0000000000000000 00ff000000000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 0000000000ff0000 XMM05=0000555567da3a65 0000555567da3960
XMM06=0000555567d7dd34 0000555567d7dd30 XMM07=1000028004010000 0c08060c0156cc22
XMM08=10000fffffffffff ff0400100001d710 XMM09=0000000000000000 0000000000000000
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
