last executing test programs:

1m53.774778324s ago: executing program 2 (id=259):
syz_usb_connect$cdc_ncm(0x3, 0x6e, &(0x7f0000000140)={{0x12, 0x1, 0x310, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x69, 0xeec2ee4064794930, 0x2, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5, 0x24, 0x0, 0x42fc}, {0xd, 0x24, 0xf, 0x1, 0x783, 0x5, 0x8, 0xb}, {0x6, 0x24, 0x1a, 0x8}}, {{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x58, 0x3, 0xf}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x400, 0x4, 0x6, 0x3}}, {{0x9, 0x5, 0x3, 0x2, 0x3ff, 0x14, 0xa, 0x9}}}}}}}]}}, &(0x7f0000000300)={0x0, 0x0, 0x2d, &(0x7f0000000240)={0x5, 0xf, 0x2d, 0x2, [@ssp_cap={0x14, 0x10, 0xa, 0x5, 0x2, 0x1, 0x0, 0x4, [0xc0cf, 0x7]}, @ss_container_id={0x14, 0x10, 0x4, 0xf, "2538d9a8f6876ae0acb6e4acbc32cf9e"}]}})

1m52.31741985s ago: executing program 2 (id=285):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x10, 0x3, &(0x7f0000000000)=@framed={{0x62, 0xa, 0x0, 0xffc4, 0x0, 0x71, 0x10, 0x27}}, &(0x7f0000000480)='GPL\x00', 0x5}, 0x94)

1m52.189003978s ago: executing program 2 (id=286):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000000c0)=@bpf_lsm={0x6, 0x4, &(0x7f00000005c0)=@framed={{}, [@ldst={0x3, 0x0, 0x6, 0x0, 0x0, 0x10}]}, &(0x7f0000000180)='GPL\x00', 0xc, 0xd2, &(0x7f00000001c0)=""/210, 0x41100, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)

1m52.188751942s ago: executing program 2 (id=287):
syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f00000015c0)='./file0\x00', 0x0, &(0x7f0000001600), 0x0, 0x559e, &(0x7f000000ac40)="$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")
mount$tmpfs(0x0, &(0x7f0000002040)='./file0\x00', &(0x7f0000002200), 0x1000000, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
mount$fuseblk(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x24000, 0x0)

1m51.673467142s ago: executing program 2 (id=297):
syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x20c02)
r0 = syz_io_uring_setup(0x234, &(0x7f0000000580)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xffffffffffffff31})
io_uring_enter(r0, 0x207a98, 0x0, 0x0, 0x0, 0x0)

1m51.012835271s ago: executing program 2 (id=308):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000011c00)={0x0, 0x0, &(0x7f0000011bc0)={&(0x7f0000000500)=@newnexthop={0x18, 0x68, 0xf2ae8231d9cb333f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xa00}}, 0x18}}, 0x0)

1m50.591559181s ago: executing program 32 (id=308):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000011c00)={0x0, 0x0, &(0x7f0000011bc0)={&(0x7f0000000500)=@newnexthop={0x18, 0x68, 0xf2ae8231d9cb333f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xa00}}, 0x18}}, 0x0)

1m34.236254493s ago: executing program 0 (id=450):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = timerfd_create(0x0, 0x0)
timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}, {0x0, 0x3938700}}, 0x0)

1m34.086794321s ago: executing program 0 (id=452):
r0 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000100b060a5000000000000109022400010000500009040002010300000009210000000122f80409058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, &(0x7f00000001c0)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="000706000000ff0309"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220508"], 0x0}, 0x0)

1m32.396908973s ago: executing program 0 (id=463):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_NEW(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000003c0)={0x20, 0x0, 0x7, 0x3, 0x0, 0x0, {0x1, 0x0, 0x9}, [@NFACCT_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x20}}, 0x4000)
sendmsg$NFNL_MSG_ACCT_DEL(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="74000000030701020000000000000000020000081c0007800800014000000002080002400000000908000140000000400c00064000000000000000030900010073797a3000"], 0x74}, 0x1, 0x0, 0x0, 0x4080}, 0x4000844)

1m31.941208373s ago: executing program 0 (id=464):
recvfrom(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000200)='./file0\x00', 0x800c10, &(0x7f0000000000)=ANY=[], 0x1, 0x376, &(0x7f0000000240)="$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")
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x8005, 0x0, 0x0, 0x19, 0xd, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x8]})
pwritev2(r0, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5405, 0x0, 0x0)
open(&(0x7f00000001c0)='./file1\x00', 0x14927e, 0x20)

1m31.57252655s ago: executing program 0 (id=471):
syz_emit_ethernet(0x15e, 0x0, 0x0)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
request_key(0x0, &(0x7f00000006c0)={'syz', 0x1}, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="00220f000000540b4550182195f57584b3"], 0x0}, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0)
syz_usb_control_io(r0, &(0x7f0000000240)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000900)={0x84, &(0x7f0000000300)={0x0, 0x12, 0x4, "d478e6e6"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)={0x40, 0x13, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1b}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCGUCODE(r1, 0xc018480d, 0x0)
ioctl$HIDIOCGCOLLECTIONINFO(r1, 0xc0104811, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, 0x0)

1m31.290376857s ago: executing program 0 (id=473):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000ff7f0000000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3ff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000640)={0x18, 0x3d, 0x107, 0x0, 0x0, {0x4, 0x7c}, [@nested={0x4, 0x8}]}, 0x18}}, 0xc000)

1m31.144539815s ago: executing program 33 (id=473):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000ff7f0000000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3ff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000640)={0x18, 0x3d, 0x107, 0x0, 0x0, {0x4, 0x7c}, [@nested={0x4, 0x8}]}, 0x18}}, 0xc000)

1.715019928s ago: executing program 1 (id=1663):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2f00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000008500000006000000850000000700000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x18)
write$P9_RXATTRWALK(0xffffffffffffffff, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0xa, 0x2, 0x0, 0x0, 0x4ffffff)
socket(0x6, 0x3, 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mknodat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x2a, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
unshare(0x28000600)

1.521626073s ago: executing program 1 (id=1668):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000540)='fib6_table_lookup\x00', r0}, 0x18)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000015c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r1, 0x20e, 0x5ee, 0xfd000004, &(0x7f00000004c0)="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", 0x0, 0x31, 0x6000000000000000, 0xfffffffffffffe7e, 0x1d4}, 0x28)

1.463061962s ago: executing program 1 (id=1671):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback, 0x2}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4)
ioctl$int_in(r0, 0x5452, &(0x7f0000000cc0)=0x1)
writev(r0, &(0x7f0000000080)=[{&(0x7f00000002c0)="ec", 0xfdef}], 0x1)

701.328121ms ago: executing program 4 (id=1684):
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, &(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
bind$tipc(r0, &(0x7f0000000100)=@name={0x1e, 0x2, 0x9d3354bba4295a8d, {{0x41}}}, 0x10)

640.619209ms ago: executing program 4 (id=1685):
openat$binder_debug(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0)
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x2701, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000000)={0x7f, "04973eddde04000000000000500000000ae5ffffff00", <r1=>0xffffffffffffffff})
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESOCT=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

640.106285ms ago: executing program 4 (id=1686):
r0 = socket$key(0xf, 0x3, 0x2)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000240))

570.645341ms ago: executing program 4 (id=1687):
openat$pidfd(0xffffff9c, &(0x7f0000000100), 0x80, 0x0)
mbind(&(0x7f0000ff6000/0xa000)=nil, 0xa000, 0x4002, &(0x7f0000000000)=0x2, 0x3, 0x0)
syz_usb_connect(0x0, 0x24, 0x0, 0x0)
r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$SNDCTL_DSP_SUBDIVIDE(r0, 0xc0045009, &(0x7f00000003c0)=0x8)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x1c0}, 0x1, 0x0, 0x0, 0x20000011}, 0x44040)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r1 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0xe001, 0x0)
ptrace(0x10, r1)
wait4(r1, 0x0, 0x8, 0x0)
ptrace$getregset(0x4204, r1, 0x201, &(0x7f0000000180)={0x0})

570.365964ms ago: executing program 1 (id=1688):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000012c0)={0x1c, 0x24, 0x301, 0x70bd25, 0xfffffffc, {0x1}, [@typed={0x8, 0x14e, 0x0, 0x0, @uid}]}, 0x1c}, 0x1, 0x0, 0x0, 0x448d3}, 0x0)

509.835145ms ago: executing program 1 (id=1689):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=@bridge_getlink={0x28, 0x12, 0x97b1da2789bba6f, 0x70bd29, 0x25dfdbfd, {0x7, 0x0, 0x0, 0x0, 0x0, 0x20205}, [@IFLA_GSO_MAX_SIZE={0x8, 0x29, 0x13c}]}, 0x28}}, 0x800)

509.6036ms ago: executing program 1 (id=1690):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000480)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0xff, 0x7fff0010}]})
r0 = syz_usb_connect(0x2, 0x68, &(0x7f0000000600)=ANY=[@ANYBLOB="12010000a1121710950b2a17f4f7010203010902240001000000000904fb00026c5d650009050402100000fa000905820240"], 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)

299.918193ms ago: executing program 3 (id=1693):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x4801})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000100))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000000)={'syzkaller0\x00', @broadcast})
write$cgroup_devices(r0, &(0x7f0000000200)=ANY=[@ANYBLOB="1b23000d"], 0xffdd)

299.533646ms ago: executing program 3 (id=1694):
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000100)={@dev={0xfe, 0x80, '\x00', 0xa}})
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
writev(0xffffffffffffffff, &(0x7f0000000400)=[{&(0x7f0000000100)="92", 0x1}], 0x1)
listen(r0, 0x1000)
getsockopt$inet6_mptcp_buf(r0, 0x11c, 0x2, &(0x7f0000000100)=""/222, &(0x7f0000000000)=0x80fe)

264.142049ms ago: executing program 3 (id=1695):
r0 = socket(0x2b, 0x1, 0x0)
bind$unix(r0, &(0x7f00000002c0)=@file={0x0, './file0\x00'}, 0x6e)

263.912169ms ago: executing program 3 (id=1696):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)
syz_emit_ethernet(0x82, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd610000e500122f"], 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x43}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x42}, 0xe0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0xf5ffffff, &(0x7f0000000000)='%', 0x0, 0xd01, 0xbe02, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000100001000000000000dfff000000000a20000000000a01020000000000000000010000000900010073797a30000000006c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a30000000004000038008000140000000002c0003801400010067656e65766530000000000000000000140001006c6f0000000000000000000000000000080002"], 0xb4}}, 0x0)

122.003445ms ago: executing program 3 (id=1697):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f00000003c0)={'syz0\x00', {0x9, 0x0, 0x1, 0x400}, 0x36, [0xfffffffe, 0x0, 0x0, 0x0, 0x1, 0xfffffffc, 0x8, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0xa, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x9f1, 0x0, 0x0, 0x4, 0x6, 0x0, 0x3, 0x9, 0x0, 0x4000000, 0x0, 0x0, 0x4, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x8, 0x0, 0xffffffc, 0x6, 0x0, 0x58, 0x0, 0x9, 0x0, 0xffffbffc, 0xfffffff8, 0x0, 0x0, 0x1, 0x0, 0x9, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x8, 0x6], [0x2, 0x1, 0x0, 0x10000000, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x2, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x40, 0x400, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x6, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x8, 0x55], [0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0xbd8f, 0x0, 0x4, 0x0, 0xfffffffd, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x10001, 0x810, 0x0, 0x0, 0x0, 0x800040, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0xffffffff, 0x0, 0x1, 0x0, 0xc9d2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x1, 0x0, 0x0, 0x1, 0x4, 0x2000003], [0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xb1, 0x5, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x1000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x80, 0xd, 0x0, 0x0, 0x80000, 0x0, 0x8f4, 0x0, 0x0, 0x0, 0x0, 0x2]}, 0x45c)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000400)=ANY=[], 0x8)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000240)='bridge0\x00', 0x10)
write(r0, &(0x7f00000000c0)="8f2a0a65bd8c002b0304000e0580a7b6070d63e286a5cefe", 0x5ac)

121.647582ms ago: executing program 3 (id=1698):
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = syz_usb_connect$printer(0x0, 0x36, &(0x7f00000001c0)=ANY=[@ANYBLOB="1201000000030020f003176c400000000001090224725100000000090400001207010300090501020000000000090582020002"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x80000000)
write$char_usb(r1, 0x0, 0x0)

338.939µs ago: executing program 4 (id=1699):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000040)={0x0, 0x7, 0xfa00, {0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r1, &(0x7f0000000280)={0x15, 0x110, 0xfa00, {r2, 0x0, 0x0, 0x30, 0x0, @in6={0x1b, 0x0, 0x7, @loopback, 0x3aa7}, @ib={0x1b, 0xffff, 0x0, {"040200"}, 0x0, 0xfffffffffffffffc, 0x6}}}, 0x118)

0s ago: executing program 4 (id=1700):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000180)={@multicast2, @loopback}, 0xc)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000040)={'lo\x00'})
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000080)=ANY=[@ANYBLOB="e00000027f0007000000000002"], 0x18)

kernel console output (not intermixed with test programs):

  69.454190][ T6216] bcachefs (loop2): initializing new filesystem
[   69.466271][ T6216] bcachefs (loop2): going read-write
[   69.482838][ T6216] bcachefs (loop2): marking superblocks
[   69.523592][ T6216] bcachefs (loop2): initializing freespace
[   69.541661][ T6216] bcachefs (loop2): done initializing freespace
[   69.550040][ T6216] bcachefs (loop2): reading snapshots table
[   69.552934][ T6216] bcachefs (loop2): reading snapshots done
[   69.582543][ T6216] bcachefs (loop2): done starting filesystem
[   69.654213][ T6216] syz.2.118 (6216) used greatest stack depth: 16120 bytes left
[   69.667654][ T5851] bcachefs (loop2): shutting down
[   69.669486][ T5851] bcachefs (loop2): going read-only
[   69.672125][ T5851] bcachefs (loop2): finished waiting for writes to stop
[   69.678618][ T5851] bcachefs (loop2): flushing journal and stopping allocators, journal seq 2
[   69.712272][ T5851] bcachefs (loop2): flushing journal and stopping allocators complete, journal seq 3
[   69.729170][ T5851] bcachefs (loop2): clean shutdown complete, journal seq 4
[   69.733347][ T5851] bcachefs (loop2): marking filesystem clean
[   69.782483][ T5851] bcachefs (loop2): shutdown complete
[   70.553007][ T6283] loop1: detected capacity change from 0 to 512
[   70.559895][ T6283] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[   70.581139][ T6283] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.146: bg 0: block 104: invalid block bitmap
[   70.589673][ T6283] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   70.593716][ T6283] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.146: invalid indirect mapped block 1 (level 1)
[   70.599920][ T6283] EXT4-fs (loop1): 1 truncate cleaned up
[   70.603583][ T6283] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.617739][   T33] kauditd_printk_skb: 3 callbacks suppressed
[   70.617754][   T33] audit: type=1800 audit(1758711545.713:15): pid=6283 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.146" name="file1" dev="loop1" ino=18 res=0 errno=0
[   70.639758][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.276179][ T6092] usb 1-1: USB disconnect, device number 4
[   71.441862][ T1365] ieee802154 phy0 wpan0: encryption failed: -22
[   71.461678][ T1365] ieee802154 phy1 wpan1: encryption failed: -22
[   71.952619][ T6299] netlink: 16 bytes leftover after parsing attributes in process `syz.2.152'.
[   72.141030][ T6304] loop2: detected capacity change from 0 to 512
[   72.156835][ T5238] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[   72.161255][ T5238] Bluetooth: hci2: Injecting HCI hardware error event
[   72.165148][ T5238] Bluetooth: hci2: hardware error 0x00
[   72.178855][ T6304] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.153: casefold flag without casefold feature
[   72.199821][ T6304] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.153: couldn't read orphan inode 15 (err -117)
[   72.227363][ T6304] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.256849][   T33] audit: type=1800 audit(1758711547.353:16): pid=6304 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.153" name="file1" dev="loop2" ino=18 res=0 errno=0
[   72.453063][ T6305] loop1: detected capacity change from 0 to 32768
[   72.487267][ T5851] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.787863][ T6329] netlink: 16 bytes leftover after parsing attributes in process `syz.2.161'.
[   72.810148][ T6331] netlink: 4 bytes leftover after parsing attributes in process `syz.0.163'.
[   72.844832][ T6333] fanotify: failed to encode fid (type=0, len=0, err=-2)
[   72.905644][ T6337] netlink: 32 bytes leftover after parsing attributes in process `syz.1.167'.
[   73.066691][ T6348] mmap: syz.1.170 (6348) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   73.468388][ T6355] netlink: 27 bytes leftover after parsing attributes in process `syz.1.172'.
[   74.027287][ T6380] loop0: detected capacity change from 0 to 2048
[   74.069086][ T6380] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.081828][ T6380] ext4 filesystem being mounted at /54/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.101966][ T6389] loop1: detected capacity change from 0 to 512
[   74.152584][ T6390] netlink: 'syz.2.185': attribute type 83 has an invalid length.
[   74.182401][ T5852] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.199397][ T6389] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.209977][ T6389] ext4 filesystem being mounted at /65/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.222523][ T6389] __find_get_block_slow() failed. block=144115188075855872, b_blocknr=0, b_state=0x00000019, b_size=2048, device loop1 blocksize: 2048
[   74.230734][ T6389] grow_buffers: requested out-of-range block 144115188075855872 for device loop1
[   74.235034][ T5238] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[   74.238630][ T6389] EXT4-fs warning (device loop1): ext4_resize_fs:2019: can't read last block, resize aborted
[   74.349117][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.352882][ T6394] tmpfs: Bad value for 'usrquota_block_hardlimit'
[   74.549610][ T6400] netlink: 12 bytes leftover after parsing attributes in process `syz.0.189'.
[   74.680076][ T6402] loop0: detected capacity change from 0 to 1024
[   74.735598][ T6092] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[   74.773670][ T6402] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   74.793968][ T6402] ext4 filesystem being mounted at /57/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.858816][ T6402] netlink: 'syz.0.191': attribute type 4 has an invalid length.
[   74.879996][ T6402] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 3: comm syz.0.191: lblock 3 mapped to illegal pblock 3 (length 3)
[   74.889125][ T6402] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[   74.893696][ T6402] EXT4-fs (loop0): This should not happen!! Data will be lost
[   74.893696][ T6402] 
[   74.913711][ T6402] EXT4-fs error (device loop0): ext4_ext_remove_space:2955: inode #15: comm syz.0.191: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[   74.914378][ T6092] usb 2-1: Using ep0 maxpacket: 32
[   74.922017][ T6402] EXT4-fs error (device loop0) in ext4_setattr:6071: Corrupt filesystem
[   74.941947][ T6092] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   74.962017][ T6092] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[   74.968005][ T5852] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   74.974877][ T6092] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   74.982308][ T6092] usb 2-1: config 0 descriptor??
[   74.998585][ T6092] hub 2-1:0.0: USB hub found
[   75.140693][ T6406] netlink: 20 bytes leftover after parsing attributes in process `syz.0.192'.
[   75.144881][ T6406] netlink: 36 bytes leftover after parsing attributes in process `syz.0.192'.
[   75.225054][ T6092] hub 2-1:0.0: 1 port detected
[   75.428287][    C0] raw-gadget.0 gadget.1: ignoring, device is not running
[   75.431791][    C0] raw-gadget.0 gadget.1: ignoring, device is not running
[   75.434729][    C0] raw-gadget.0 gadget.1: ignoring, device is not running
[   75.437479][ T6092] hub 2-1:0.0: hub_hub_status failed (err = -32)
[   75.440072][ T6092] hub 2-1:0.0: config failed, can't get hub status (err -32)
[   75.449754][ T6092] usbhid 2-1:0.0: can't add hid device: -71
[   75.455595][ T6092] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[   75.484763][ T6092] usb 2-1: USB disconnect, device number 5
[   75.674018][ T6416] loop0: detected capacity change from 0 to 512
[   75.691757][ T6416] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   75.697207][ T6416] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[   75.707194][ T6416] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended
[   75.711267][ T6416] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[   75.714749][ T6416] System zones: 0-2, 18-18, 34-34
[   75.718306][ T6416] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.197: iget: bad i_size value: 360287970189639680
[   75.722459][ T6419] capability: warning: `syz.2.198' uses deprecated v2 capabilities in a way that may be insecure
[   75.733370][ T6416] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.197: couldn't read orphan inode 15 (err -117)
[   75.741375][ T6416] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.786661][ T5852] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.170871][ T6435] loop2: detected capacity change from 0 to 256
[   76.233522][ T6435] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x4ec6003b, utbl_chksum : 0xe619d30d)
[   76.535600][   T46] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   76.694410][   T46] usb 3-1: Using ep0 maxpacket: 8
[   76.706170][   T46] usb 3-1: New USB device found, idVendor=2770, idProduct=9120, bcdDevice=6c.77
[   76.709650][   T46] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   76.724831][   T46] usb 3-1: Product: syz
[   76.726633][   T46] usb 3-1: Manufacturer: syz
[   76.728500][   T46] usb 3-1: SerialNumber: syz
[   76.733605][   T46] usb 3-1: config 0 descriptor??
[   76.743118][   T46] gspca_main: sq905-2.14.0 probing 2770:9120
[   76.961058][   T46] gspca_sq905: sq905_command: usb_control_msg failed (-71)
[   76.964065][   T46] sq905 3-1:0.0: probe with driver sq905 failed with error -71
[   76.981946][   T46] usb 3-1: USB disconnect, device number 3
[   78.151017][ T6481] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   78.454169][ T6479] loop0: detected capacity change from 0 to 40427
[   78.460000][ T6479] F2FS-fs (loop0): build fault injection rate: 771
[   78.464803][ T6479] F2FS-fs (loop0): invalid crc value
[   78.491865][ T6485] loop1: detected capacity change from 0 to 32768
[   78.511542][ T6479] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   78.515939][ T6485] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.227 (6485)
[   78.518275][ T6479] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   78.536284][ T6485] BTRFS info (device loop1): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[   78.544493][   T33] audit: type=1800 audit(1758711553.633:17): pid=6479 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.224" name="file1" dev="loop0" ino=10 res=0 errno=0
[   78.545417][ T6485] BTRFS info (device loop1): using crc32c (crc32c-lib) checksum algorithm
[   78.572316][ T5852] syz-executor: attempt to access beyond end of device
[   78.572316][ T5852] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   78.577499][   T46] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[   78.586527][ T5852] CPU: 1 UID: 0 PID: 5852 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[   78.586543][ T5852] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   78.586549][ T5852] Call Trace:
[   78.586554][ T5852]  <TASK>
[   78.586558][ T5852]  dump_stack_lvl+0x189/0x250
[   78.586579][ T5852]  ? __pfx_dump_stack_lvl+0x10/0x10
[   78.586592][ T5852]  ? __pfx_queue_work_on+0x10/0x10
[   78.586603][ T5852]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   78.586620][ T5852]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   78.586643][ T5852]  f2fs_handle_critical_error+0x37c/0x540
[   78.586664][ T5852]  f2fs_write_end_io+0x886/0xb60
[   78.586687][ T5852]  __submit_merged_bio+0x27a/0x6a0
[   78.586707][ T5852]  __submit_merged_write_cond+0x255/0x530
[   78.586725][ T5852]  f2fs_write_data_pages+0x261d/0x3000
[   78.586759][ T5852]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   78.586818][ T5852]  ? __lock_acquire+0xab9/0xd20
[   78.586839][ T5852]  ? do_raw_spin_lock+0x121/0x290
[   78.586860][ T5852]  ? do_raw_spin_unlock+0x4d/0x240
[   78.586872][ T5852]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   78.586882][ T5852]  do_writepages+0x32e/0x550
[   78.586905][ T5852]  ? do_raw_spin_unlock+0x4d/0x240
[   78.586919][ T5852]  filemap_fdatawrite+0x199/0x240
[   78.586934][ T5852]  ? __pfx_filemap_fdatawrite+0x10/0x10
[   78.586980][ T5852]  ? do_raw_spin_unlock+0x4d/0x240
[   78.586996][ T5852]  f2fs_sync_dirty_inodes+0x31f/0x830
[   78.587016][ T5852]  f2fs_write_checkpoint+0x95a/0x1df0
[   78.587044][ T5852]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[   78.587083][ T5852]  ? f2fs_stop_gc_thread+0x7f/0xb0
[   78.587093][ T5852]  ? kfree+0x18e/0x440
[   78.587106][ T5852]  ? kill_f2fs_super+0x298/0x6c0
[   78.587151][ T5852]  kill_f2fs_super+0x2c3/0x6c0
[   78.587168][ T5852]  ? __pfx_kill_f2fs_super+0x10/0x10
[   78.587177][ T5852]  ? radix_tree_delete_item+0x2b6/0x400
[   78.587193][ T5852]  ? shrinker_free+0x2ce/0x3e0
[   78.587207][ T5852]  deactivate_locked_super+0xbc/0x130
[   78.587221][ T5852]  cleanup_mnt+0x425/0x4c0
[   78.587233][ T5852]  ? lockdep_hardirqs_on+0x9c/0x150
[   78.587246][ T5852]  task_work_run+0x1d4/0x260
[   78.587262][ T5852]  ? __pfx_task_work_run+0x10/0x10
[   78.587273][ T5852]  ? __x64_sys_umount+0x122/0x160
[   78.587290][ T5852]  ? exit_to_user_mode_loop+0x40/0x110
[   78.587307][ T5852]  exit_to_user_mode_loop+0xec/0x110
[   78.587321][ T5852]  do_syscall_64+0x2bd/0x3b0
[   78.587332][ T5852]  ? lockdep_hardirqs_on+0x9c/0x150
[   78.587347][ T5852]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.587358][ T5852]  ? exc_page_fault+0x9f/0xf0
[   78.587369][ T5852]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.587378][ T5852] RIP: 0033:0x7fbff5b8ff57
[   78.587388][ T5852] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   78.587396][ T5852] RSP: 002b:00007ffd430e2148 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   78.587408][ T5852] RAX: 0000000000000000 RBX: 00007fbff5c11c2d RCX: 00007fbff5b8ff57
[   78.587415][ T5852] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd430e2200
[   78.587420][ T5852] RBP: 00007ffd430e2200 R08: 0000000000000000 R09: 0000000000000000
[   78.587426][ T5852] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd430e3290
[   78.587431][ T5852] R13: 00007fbff5c11c2d R14: 0000000000013233 R15: 00007ffd430e32d0
[   78.587450][ T5852]  </TASK>
[   78.587455][ T5852] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[   78.671648][ T6485] BTRFS info (device loop1): enabling ssd optimizations
[   78.720989][ T6485] BTRFS info (device loop1): enabling free space tree
[   78.744533][   T46] usb 3-1: Using ep0 maxpacket: 8
[   78.748669][   T46] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[   78.751862][   T46] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   78.756904][   T46] usb 3-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   78.761222][   T46] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   78.776678][   T46] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   78.785647][   T46] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[   78.788451][   T46] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   78.793015][   T46] usb 3-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   78.814819][   T46] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   78.820365][   T46] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   78.838092][   T46] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[   78.841389][   T46] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   78.852753][ T5842] BTRFS info (device loop1): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[   78.854397][   T46] usb 3-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   78.862176][   T46] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   78.881510][   T46] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   78.910417][   T46] usb 3-1: string descriptor 0 read error: -22
[   78.913192][   T46] usb 3-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   78.924767][   T46] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   78.944997][   T46] adutux 3-1:168.0: ADU100  now attached to /dev/usb/adutux0
[   79.020296][ T6512] loop0: detected capacity change from 0 to 256
[   79.162598][ T6092] usb 3-1: USB disconnect, device number 4
[   79.434548][   T10] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[   79.584464][   T10] usb 2-1: Using ep0 maxpacket: 16
[   79.590437][   T10] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   79.595178][   T10] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[   79.599327][   T10] usb 2-1: config 0 interface 0 altsetting 2 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[   79.606636][   T10] usb 2-1: config 0 interface 0 has no altsetting 0
[   79.609715][   T10] usb 2-1: New USB device found, idVendor=05ac, idProduct=025a, bcdDevice= 0.00
[   79.613701][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   79.621439][   T10] usb 2-1: config 0 descriptor??
[   79.631888][   T10] input: bcm5974 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input8
[   79.832404][ T5283] bcm5974 2-1:0.0: could not read from device
[   79.843452][ T5283] bcm5974 2-1:0.0: could not read from device
[   79.852750][   T10] usb 2-1: USB disconnect, device number 6
[   79.857943][ T5283] bcm5974 2-1:0.0: could not read from device
[   79.891051][ T5987] udevd[5987]: Error opening device "/dev/input/event3": No such file or directory
[   79.895720][ T5987] udevd[5987]: Unable to EVIOCGABS device "/dev/input/event3"
[   79.905415][ T5987] udevd[5987]: Unable to EVIOCGABS device "/dev/input/event3"
[   79.908560][ T5987] udevd[5987]: Unable to EVIOCGABS device "/dev/input/event3"
[   79.911680][ T5987] udevd[5987]: Unable to EVIOCGABS device "/dev/input/event3"
[   79.920864][ T6531] loop2: detected capacity change from 0 to 2048
[   79.943105][ T6531] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   80.085707][   T33] audit: type=1326 audit(1758711555.183:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.0.243" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbff5b8ec29 code=0x7ffc0000
[   80.095762][   T33] audit: type=1326 audit(1758711555.183:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.0.243" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbff5b8ec29 code=0x7ffc0000
[   80.106140][   T33] audit: type=1326 audit(1758711555.203:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.0.243" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbff5b8d590 code=0x7ffc0000
[   80.126334][   T33] audit: type=1326 audit(1758711555.203:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.0.243" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbff5b8d590 code=0x7ffc0000
[   80.136534][   T33] audit: type=1326 audit(1758711555.203:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.0.243" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbff5b8ec29 code=0x7ffc0000
[   80.148198][   T33] audit: type=1326 audit(1758711555.203:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.0.243" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbff5b8ec29 code=0x7ffc0000
[   80.158178][   T33] audit: type=1326 audit(1758711555.213:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.0.243" exe="/syz-executor" sig=0 arch=c000003e syscall=78 compat=0 ip=0x7fbff5b8ec29 code=0x7ffc0000
[   80.170335][   T33] audit: type=1326 audit(1758711555.213:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.0.243" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbff5b8ec29 code=0x7ffc0000
[   80.186795][   T33] audit: type=1326 audit(1758711555.213:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.0.243" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbff5b8ec29 code=0x7ffc0000
[   80.267278][ T6541] loop0: detected capacity change from 0 to 2048
[   80.274427][ T5898] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[   80.297972][ T6541] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.432324][ T5898] usb 3-1: unable to get BOS descriptor or descriptor too short
[   80.439436][ T5898] usb 3-1: config 84 has an invalid interface number: 111 but max is 0
[   80.447608][ T5898] usb 3-1: config 84 has no interface number 0
[   80.457770][ T5898] usb 3-1: config 84 interface 111 has no altsetting 0
[   80.471150][ T5898] usb 3-1: language id specifier not provided by device, defaulting to English
[   80.490881][ T5898] usb 3-1: New USB device found, idVendor=0421, idProduct=046e, bcdDevice=33.f0
[   80.498879][ T5898] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   80.508068][ T5898] usb 3-1: Product: Ъ
[   80.511077][ T5898] usb 3-1: SerialNumber: 麡珏גּ줺귮癲ꋧ⌗컹야髰蹏铏܎䖎鯫湼샘婜ꁤ齯Ἑᢱ벗/￭蠾쬯ꃯ▋뵻薱⾡䴢㒟瀪慠欗삅탯睌࢔קּ狴
[   80.769797][ T5898] usb 3-1: bad CDC descriptors
[   80.796612][ T5898] usb 3-1: USB disconnect, device number 5
[   80.989582][ T6556] sctp: [Deprecated]: syz.1.250 (pid 6556) Use of struct sctp_assoc_value in delayed_ack socket option.
[   80.989582][ T6556] Use struct sctp_sack_info instead
[   81.129332][ T5852] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.724547][ T6585] overlayfs: upper fs does not support RENAME_WHITEOUT.
[   81.727944][ T6585] overlayfs: failed to set xattr on upper
[   81.730550][ T6585] overlayfs: ...falling back to redirect_dir=nofollow.
[   81.733601][ T6585] overlayfs: ...falling back to index=off.
[   81.736332][ T6585] overlayfs: ...falling back to uuid=null.
[   81.796762][ T6586] overlayfs: overlay with incompat feature 'volatile' cannot be mounted
[   81.815754][  T792] cfg80211: failed to load regulatory.db
[   81.818668][   T46] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[   81.888410][ T6590] syzkaller1: tun_chr_ioctl cmd 2147767520
[   81.988149][   T46] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 88, changing to 10
[   81.994126][   T46] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[   81.998480][   T46] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1023
[   82.007718][   T46] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   82.012505][   T46] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   82.024632][   T46] usb 3-1: Product: syz
[   82.026515][   T46] usb 3-1: Manufacturer: syz
[   82.028431][   T46] usb 3-1: SerialNumber: syz
[   82.096286][ T6598] warning: `syz.0.269' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   82.262482][   T46] cdc_ncm 3-1:1.0: bind() failure
[   82.355351][   T46] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[   82.368300][   T46] cdc_ncm 3-1:1.1: bind() failure
[   82.379871][   T46] usb 3-1: USB disconnect, device number 6
[   82.678342][ T6616] loop1: detected capacity change from 0 to 32768
[   82.720415][ T6616] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[   82.797512][ T5842] ocfs2: Unmounting device (7,1) on (node local)
[   83.003706][ T6641] loop1: detected capacity change from 0 to 164
[   83.066500][ T6641] rock: directory entry would overflow storage
[   83.069170][ T6641] rock: sig=0x4f50, size=4, remaining=3
[   83.084595][ T6641] isofs: Unable to find the ".." directory for NFS.
[   83.169527][ T6647] loop1: detected capacity change from 0 to 512
[   83.182756][ T6647] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   83.197922][ T6647] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.292: casefold flag without casefold feature
[   83.216181][ T6647] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.292: couldn't read orphan inode 15 (err -117)
[   83.222855][ T6647] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.224451][ T6635] loop2: detected capacity change from 0 to 32768
[   83.253361][ T6635] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.287 (6635)
[   83.275964][ T6635] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   83.280636][ T6635] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm
[   83.290550][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.366328][ T6670] netlink: 4 bytes leftover after parsing attributes in process `syz.1.295'.
[   83.373974][ T6670] netlink: 4 bytes leftover after parsing attributes in process `syz.1.295'.
[   83.375669][ T6635] BTRFS info (device loop2): enabling ssd optimizations
[   83.387786][ T6635] BTRFS info (device loop2): enabling free space tree
[   83.431578][ T5851] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   83.589712][ T6680] vlan0: entered promiscuous mode
[   83.706140][ T5908] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.819400][ T5908] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.828549][ T6685] program syz.1.302 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   83.914121][ T5908] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.018584][ T5908] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.095984][   T10] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[   84.174195][ T5908] bridge_slave_1: left allmulticast mode
[   84.180530][ T5908] bridge_slave_1: left promiscuous mode
[   84.184484][ T5908] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.207881][ T5908] bridge_slave_0: left allmulticast mode
[   84.214442][ T5908] bridge_slave_0: left promiscuous mode
[   84.217149][ T5908] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.265124][   T10] usb 1-1: Using ep0 maxpacket: 32
[   84.268964][   T10] usb 1-1: config index 0 descriptor too short (expected 35577, got 27)
[   84.272212][   T10] usb 1-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[   84.278439][   T10] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 92
[   84.282231][   T10] usb 1-1: config 1 has no interface number 0
[   84.284912][   T10] usb 1-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   84.289424][   T10] usb 1-1: config 1 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[   84.293281][   T10] usb 1-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[   84.649327][   T10] usb 1-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[   84.653286][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   84.677906][   T10] snd_usb_pod 1-1:1.1: Line 6 Pocket POD found
[   84.817700][   T55] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   84.822865][   T55] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   84.829222][   T55] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   84.845195][   T55] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   84.853905][   T55] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   84.892664][   T10] snd_usb_pod 1-1:1.1: cannot start listening: -90
[   84.900261][   T10] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now disconnected
[   84.906347][   T10] snd_usb_pod 1-1:1.1: probe with driver snd_usb_pod failed with error -90
[   85.050103][ T5908] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   85.072709][ T5908] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   85.093654][  T792] usb 1-1: USB disconnect, device number 5
[   85.098075][ T5908] bond0 (unregistering): Released all slaves
[   85.470037][ T6722] Bluetooth: MGMT ver 1.23
[   85.524973][ T6724] loop1: detected capacity change from 0 to 1024
[   85.551369][ T6724] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.594007][ T5908] hsr_slave_0: left promiscuous mode
[   85.598192][ T5908] hsr_slave_1: left promiscuous mode
[   85.600855][ T5908] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   85.607668][ T5908] batman_adv: batadv0: Removing interface: batadv_slave_0
[   85.619990][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.626024][ T5908] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   85.628996][ T5908] batman_adv: batadv0: Removing interface: batadv_slave_1
[   85.701221][ T5908] veth1_macvtap: left promiscuous mode
[   85.703835][ T5908] veth0_macvtap: left promiscuous mode
[   85.708204][ T5908] veth1_vlan: left promiscuous mode
[   85.710647][ T5908] veth0_vlan: left promiscuous mode
[   85.812036][ T6741] syz.0.321 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   85.830528][ T6742] netlink: 24 bytes leftover after parsing attributes in process `syz.1.320'.
[   86.140419][ T6753] loop0: detected capacity change from 0 to 512
[   86.153085][ T6753] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   86.166937][ T6753] EXT4-fs (loop0): 1 truncate cleaned up
[   86.171225][ T6753] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.229218][ T5852] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.276997][ T5908] team0 (unregistering): Port device team_slave_1 removed
[   86.348763][ T5908] team0 (unregistering): Port device team_slave_0 removed
[   86.398757][ T6760] loop0: detected capacity change from 0 to 256
[   86.403879][ T6760] exfat: Deprecated parameter 'utf8'
[   86.428325][ T6760] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x3f800a9b, utbl_chksum : 0xe619d30d)
[   86.876002][ T5238] Bluetooth: hci1: command tx timeout
[   87.213471][ T6701] chnl_net:caif_netlink_parms(): no params data found
[   87.342668][ T6701] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.423910][ T6701] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.435954][ T6701] bridge_slave_0: entered allmulticast mode
[   87.442379][ T6701] bridge_slave_0: entered promiscuous mode
[   87.447246][ T6701] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.450180][ T6701] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.454136][ T6701] bridge_slave_1: entered allmulticast mode
[   87.458581][ T6701] bridge_slave_1: entered promiscuous mode
[   87.530732][ T6701] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   87.566006][ T6701] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   87.637088][ T6701] team0: Port device team_slave_0 added
[   87.650153][ T6701] team0: Port device team_slave_1 added
[   87.683384][ T6701] batman_adv: batadv0: Adding interface: batadv_slave_0
[   87.688907][ T6701] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   87.717563][ T6701] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   87.722649][ T6701] batman_adv: batadv0: Adding interface: batadv_slave_1
[   87.724011][ T5908] IPVS: stop unused estimator thread 0...
[   87.725613][ T6701] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   87.725627][ T6701] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   87.794192][ T6701] hsr_slave_0: entered promiscuous mode
[   87.811427][ T6701] hsr_slave_1: entered promiscuous mode
[   87.817446][ T6701] debugfs: 'hsr0' already exists in 'hsr'
[   87.823599][ T6701] Cannot create hsr debugfs directory
[   88.112358][ T6701] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   88.136529][ T6701] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   88.143994][ T6701] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   88.158230][ T6701] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   88.321209][ T6701] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.352123][ T6701] 8021q: adding VLAN 0 to HW filter on device team0
[   88.366357][   T39] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.369251][   T39] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.382229][ T1091] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.384827][ T1091] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.729896][ T6826] Falling back ldisc for ttyS3.
[   88.772840][ T6701] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.889060][ T6701] veth0_vlan: entered promiscuous mode
[   88.910788][ T6701] veth1_vlan: entered promiscuous mode
[   88.954604][ T5238] Bluetooth: hci1: command tx timeout
[   88.965656][ T6701] veth0_macvtap: entered promiscuous mode
[   88.979639][ T6701] veth1_macvtap: entered promiscuous mode
[   89.011864][ T6701] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.024430][ T5854] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[   89.036993][ T6701] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.053191][   T12] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.058198][   T12] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.063043][   T12] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.067726][   T12] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.180654][ T5854] usb 1-1: New USB device found, idVendor=09e1, idProduct=5121, bcdDevice=40.c1
[   89.190997][ T5854] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   89.196451][ T5854] usb 1-1: Product: syz
[   89.198423][ T5854] usb 1-1: Manufacturer: syz
[   89.200413][ T5854] usb 1-1: SerialNumber: syz
[   89.210931][ T1091] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.220170][ T5854] usb 1-1: config 0 descriptor??
[   89.238440][ T1091] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.308781][ T1091] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.312342][ T1091] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.440196][ T5854] int51x1 1-1:0.0: probe with driver int51x1 failed with error -22
[   89.486352][ T6844] process 'syz.3.350' launched '/dev/fd/9' with NULL argv: empty string added
[   89.521875][ T6846] loop1: detected capacity change from 0 to 4096
[   89.569650][ T6846] ntfs3(loop1): failed to convert name for inode 1e.
[   89.573099][ T6846] ntfs3(loop1): ino=1f, mi_enum_attr
[   89.578102][ T6846] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[   89.649324][    T9] usb 1-1: USB disconnect, device number 6
[   90.675378][  T792] usb 4-1: new full-speed USB device number 2 using dummy_hcd
[   90.841535][  T792] usb 4-1: config 5 has an invalid interface number: 123 but max is 0
[   90.864388][  T792] usb 4-1: config 5 has no interface number 0
[   90.867120][  T792] usb 4-1: config 5 interface 123 altsetting 7 has an endpoint descriptor with address 0x6B, changing to 0xB
[   90.871973][  T792] usb 4-1: config 5 interface 123 altsetting 7 endpoint 0x4 has invalid wMaxPacketSize 0
[   90.886169][  T792] usb 4-1: config 5 interface 123 has no altsetting 0
[   90.891269][  T792] usb 4-1: New USB device found, idVendor=3923, idProduct=718a, bcdDevice=d8.d7
[   90.895938][  T792] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   90.899260][  T792] usb 4-1: Product: syz
[   90.902254][  T792] usb 4-1: Manufacturer: syz
[   90.904226][  T792] usb 4-1: SerialNumber: syz
[   91.034752][ T5238] Bluetooth: hci1: command tx timeout
[   91.152770][  T792] ni6501 4-1:5.123: driver 'ni6501' failed to auto-configure device.
[   91.161022][  T792] usb 4-1: USB disconnect, device number 2
[   91.469274][ T6877] netlink: 'syz.1.364': attribute type 10 has an invalid length.
[   91.495560][ T6877] 8021q: adding VLAN 0 to HW filter on device batadv0
[   91.518592][ T6877] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   91.732900][ T6881] loop0: detected capacity change from 0 to 1024
[   91.736718][ T6881] EXT4-fs: Ignoring removed nobh option
[   91.751657][ T6881] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c856c018, mo2=0102]
[   91.761319][ T6881] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   91.785131][ T5852] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.192443][ T6897] tipc: Started in network mode
[   92.195060][ T6897] tipc: Node identity 4, cluster identity 4711
[   92.197535][ T6897] tipc: Node number set to 4
[   92.533139][ T6906] netlink: 44 bytes leftover after parsing attributes in process `syz.3.375'.
[   93.115054][ T5238] Bluetooth: hci1: command tx timeout
[   93.796669][ T6908] syz.3.376 (6908): drop_caches: 2
[   94.718918][ T6936] loop1: detected capacity change from 0 to 736
[   94.915399][   T46] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   94.924490][ T6092] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[   95.044888][   T12] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   95.076805][ T6092] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   95.082113][   T33] audit: type=1326 audit(1758711570.173:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6951 comm="syz.3.394" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f75fd98ec29 code=0x0
[   95.093960][ T6092] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[   95.098418][ T6092] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[   95.102589][ T6092] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[   95.111559][ T6092] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   95.117213][ T6092] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   95.134375][ T6092] usb 1-1: Product: syz
[   95.136329][ T6092] usb 1-1: Manufacturer: syz
[   95.138293][ T6092] usb 1-1: SerialNumber: syz
[   95.147212][   T33] audit: type=1326 audit(1758711570.243:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6953 comm="syz.1.395" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4ff78ec29 code=0x7ffc0000
[   95.169201][   T33] audit: type=1326 audit(1758711570.263:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6953 comm="syz.1.395" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4ff78ec29 code=0x7ffc0000
[   95.183871][   T33] audit: type=1326 audit(1758711570.263:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6953 comm="syz.1.395" exe="/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fa4ff790b7a code=0x7ffc0000
[   95.193349][   T33] audit: type=1326 audit(1758711570.263:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6953 comm="syz.1.395" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa4ff78d590 code=0x7ffc0000
[   95.211822][ T6954] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[   95.215047][ T6954] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   95.228680][   T33] audit: type=1326 audit(1758711570.263:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6953 comm="syz.1.395" exe="/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fa4ff78d6df code=0x7ffc0000
[   95.244929][ T6954] vhci_hcd vhci_hcd.0: Device attached
[   95.249216][ T6955] vhci_hcd: connection closed
[   95.251614][   T12] vhci_hcd: stop threads
[   95.254601][   T33] audit: type=1326 audit(1758711570.353:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6953 comm="syz.1.395" exe="/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fa4ff78d88a code=0x7ffc0000
[   95.256564][   T12] vhci_hcd: release socket
[   95.267310][   T12] vhci_hcd: disconnect device
[   95.267809][ T6958] loop3: detected capacity change from 0 to 164
[   95.276987][   T33] audit: type=1326 audit(1758711570.353:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6953 comm="syz.1.395" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4ff78ec29 code=0x7ffc0000
[   95.286826][   T33] audit: type=1326 audit(1758711570.373:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6953 comm="syz.1.395" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4ff78ec29 code=0x7ffc0000
[   95.388043][ T6092] usb 1-1: 0:2 : does not exist
[   95.406816][ T6092] usb 1-1: USB disconnect, device number 7
[   95.453106][ T5987] udevd[5987]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   95.674667][   T46] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   95.790684][ T6968] loop1: detected capacity change from 0 to 128
[   95.801083][ T6968] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   95.808133][ T6968] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   95.848428][   T26] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   95.988109][ T6976] netlink: 8 bytes leftover after parsing attributes in process `syz.1.405'.
[   96.075239][ T5908] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   96.089005][ T5908] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   96.176268][   T10] usb 1-1: new full-speed USB device number 8 using dummy_hcd
[   96.240427][ T6988] program syz.1.411 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   96.337013][   T10] usb 1-1: config 0 has an invalid interface number: 236 but max is 0
[   96.340869][   T10] usb 1-1: config 0 has no interface number 0
[   96.343684][   T10] usb 1-1: config 0 interface 236 altsetting 2 endpoint 0x5 has invalid wMaxPacketSize 0
[   96.351803][   T10] usb 1-1: config 0 interface 236 has no altsetting 0
[   96.356798][   T10] usb 1-1: config 0 has an invalid interface number: 236 but max is 0
[   96.360428][   T10] usb 1-1: config 0 has no interface number 0
[   96.363267][   T10] usb 1-1: config 0 interface 236 altsetting 2 endpoint 0x5 has invalid wMaxPacketSize 0
[   96.370018][   T10] usb 1-1: config 0 interface 236 has no altsetting 0
[   96.376442][   T10] usb 1-1: New USB device found, idVendor=0451, idProduct=5152, bcdDevice=aa.6a
[   96.380655][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   96.392340][   T10] usb 1-1: Product: syz
[   96.394210][   T10] usb 1-1: Manufacturer: syz
[   96.396824][   T10] usb 1-1: SerialNumber: syz
[   96.407272][   T10] usb 1-1: config 0 descriptor??
[   96.420791][   T10] ti_usb_3410_5052 1-1:0.236: TI USB 5052 2 port adapter converter detected
[   96.461859][   T10] ti_usb_3410_5052 1-1:0.236: missing endpoints
[   96.874578][   T10] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[   96.896421][   T46] usb 1-1: USB disconnect, device number 8
[   96.982353][ T6998] netlink: 'syz.3.415': attribute type 4 has an invalid length.
[   96.994983][ T6998] netlink: 'syz.3.415': attribute type 4 has an invalid length.
[   97.140200][ T7004] loop3: detected capacity change from 0 to 128
[   97.148447][ T7004] qnx6: Unexpected value for 'mmi_fs'
[   97.403554][ T7012] orangefs_devreq_write_iter: userspace claims version0, minimum version required: 20903.
[   97.813437][ T7016] loop0: detected capacity change from 0 to 1024
[   98.351643][   T10] usb 1-1: new full-speed USB device number 9 using dummy_hcd
[   98.393813][ T7049] loop3: detected capacity change from 0 to 4096
[   98.400055][ T7049] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[   98.414508][ T6092] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[   98.419996][ T7049] ntfs3(loop3): ino=19, mi_enum_attr
[   98.422348][ T7049] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[   98.516192][   T10] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   98.519981][   T10] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   98.527653][   T10] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   98.534528][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   98.564536][ T6092] usb 2-1: Using ep0 maxpacket: 32
[   98.568972][ T6092] usb 2-1: unable to get BOS descriptor or descriptor too short
[   98.576101][ T6092] usb 2-1: config 7 has an invalid interface number: 69 but max is 0
[   98.593444][ T6092] usb 2-1: config 7 has no interface number 0
[   98.603070][ T6092] usb 2-1: config 7 interface 69 has no altsetting 0
[   98.608621][ T6092] usb 2-1: New USB device found, idVendor=0bfd, idProduct=0005, bcdDevice=a5.97
[   98.612335][ T6092] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   98.618372][ T6092] usb 2-1: Product: syz
[   98.620309][ T6092] usb 2-1: Manufacturer: syz
[   98.622341][ T6092] usb 2-1: SerialNumber: syz
[   98.754929][   T10] usb 1-1: usb_control_msg returned -32
[   98.757087][   T10] usbtmc 1-1:16.0: can't read capabilities
[   98.869546][ T6092] kvaser_usb 2-1:7.69: error -ENODEV: Cannot get usb endpoint(s)
[   98.879022][ T6092] usb 2-1: USB disconnect, device number 7
[   99.129628][ T7067] usbtmc 1-1:16.0: usb_control_msg returned -32
[   99.138960][    T9] usb 1-1: USB disconnect, device number 9
[   99.914548][    C0] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  100.801719][ T7106] tmpfs: Bad value for 'mpol'
[  100.867842][ T7108] input: syz0 as /devices/virtual/input/input10
[  101.294539][  T792] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  101.300067][   T46] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  101.454611][   T46] usb 1-1: Using ep0 maxpacket: 16
[  101.460984][  T792] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE8, changing to 0x88
[  101.466326][   T46] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  101.471716][   T46] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  101.475742][  T792] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7
[  101.479461][  T792] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xA has an invalid bInterval 0, changing to 7
[  101.483596][   T46] usb 1-1: config 0 interface 0 has no altsetting 0
[  101.489129][   T46] usb 1-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  101.492815][   T46] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  101.496490][  T792] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  101.504629][  T792] usb 4-1: New USB device found, idVendor=1781, idProduct=0938, bcdDevice=9b.49
[  101.508315][  T792] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  101.511233][  T792] usb 4-1: Product: syz
[  101.512646][  T792] usb 4-1: Manufacturer: syz
[  101.516793][   T46] usb 1-1: config 0 descriptor??
[  101.523676][  T792] usb 4-1: SerialNumber: syz
[  101.532599][  T792] usb 4-1: config 0 descriptor??
[  101.550453][  T792] iguanair 4-1:0.0: failed to get version
[  101.557534][  T792] iguanair 4-1:0.0: probe with driver iguanair failed with error -90
[  101.734781][ T7122] loop1: detected capacity change from 0 to 512
[  101.760965][  T792] usb 4-1: USB disconnect, device number 3
[  101.896456][ T7124] loop1: detected capacity change from 0 to 8192
[  101.946216][   T46] cougar 0003:060B:500A.0001: unexpected long global item
[  101.950420][   T46] cougar 0003:060B:500A.0001: parse failed
[  101.952412][   T46] cougar 0003:060B:500A.0001: probe with driver cougar failed with error -22
[  102.177981][ T6092] usb 1-1: USB disconnect, device number 10
[  102.746827][ T7139] netlink: 44 bytes leftover after parsing attributes in process `syz.0.463'.
[  102.886781][ T7141] random: crng reseeded on system resumption
[  103.167160][ T7143] loop0: detected capacity change from 0 to 128
[  103.205002][ T7143] FAT-fs (loop0): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[  103.316589][ T7143] loop0: detected capacity change from 128 to 64
[  103.346132][ T7143] FAT-fs (loop0): unable to read inode block for updating (i_pos 1169)
[  103.350043][ T7143] FAT-fs (loop0): unable to read inode block for updating (i_pos 1169)
[  103.364495][ T7143] FAT-fs (loop0): unable to read inode block for updating (i_pos 1169)
[  103.372248][ T7143] FAT-fs (loop0): unable to read inode block for updating (i_pos 1169)
[  103.390932][ T7143] FAT-fs (loop0): unable to read inode block for updating (i_pos 1169)
[  103.394062][ T7143] FAT-fs (loop0): unable to read inode block for updating (i_pos 1169)
[  103.398405][ T7143] FAT-fs (loop0): unable to read inode block for updating (i_pos 1169)
[  103.401402][ T7143] FAT-fs (loop0): unable to read inode block for updating (i_pos 1169)
[  103.405986][ T7143] FAT-fs (loop0): unable to read inode block for updating (i_pos 1169)
[  103.409388][ T7143] FAT-fs (loop0): unable to read inode block for updating (i_pos 1169)
[  103.412770][ T7143] FAT-fs (loop0): unable to read inode block for updating (i_pos 1169)
[  103.417246][ T7143] FAT-fs (loop0): unable to read inode block for updating (i_pos 1169)
[  103.420604][ T7143] FAT-fs (loop0): unable to read inode block for updating (i_pos 1169)
[  103.423587][ T7143] FAT-fs (loop0): unable to read inode block for updating (i_pos 1169)
[  103.428347][ T7143] FAT-fs (loop0): unable to read inode block for updating (i_pos 1169)
[  103.431318][ T7143] FAT-fs (loop0): unable to read inode block for updating (i_pos 1169)
[  103.436037][ T7143] FAT-fs (loop0): unable to read inode block for updating (i_pos 1169)
[  103.438821][ T7143] FAT-fs (loop0): unable to read inode block for updating (i_pos 1169)
[  103.448468][ T7143] syz.0.464: attempt to access beyond end of device
[  103.448468][ T7143] loop0: rw=2049, sector=153, nr_sectors = 8 limit=64
[  103.454705][ T7152] FAT-fs (loop0): unable to read inode block for updating (i_pos 1169)
[  103.510749][ T5852] FAT-fs (loop0): Directory bread(block 73) failed
[  103.525081][ T5852] FAT-fs (loop0): Directory bread(block 74) failed
[  103.527750][ T5852] FAT-fs (loop0): Directory bread(block 75) failed
[  103.530482][ T5852] FAT-fs (loop0): Directory bread(block 76) failed
[  103.544354][ T5852] FAT-fs (loop0): Directory bread(block 77) failed
[  103.550362][ T5852] FAT-fs (loop0): Directory bread(block 78) failed
[  103.554138][ T5852] FAT-fs (loop0): Directory bread(block 79) failed
[  103.557363][ T5852] FAT-fs (loop0): Directory bread(block 80) failed
[  103.579212][ T1129] FAT-fs (loop0): Invalid FSINFO signature: 0x00006152, 0x03614172 (sector = 1)
[  103.582497][ T1129] FAT-fs (loop0): unable to read inode block for updating (i_pos 1169)
[  103.586767][ T5852] FAT-fs (loop0): unable to read inode block for updating (i_pos 1169)
[  103.592256][ T5852] FAT-fs (loop0): unable to read inode block for updating (i_pos 1169)
[  103.601178][ T5852] FAT-fs (loop0): Failed to update on disk inode for unused fallocated blocks, inode could be corrupted. Please run fsck
[  103.740964][ T7155] loop1: detected capacity change from 0 to 32768
[  103.756324][ T7155] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  103.797277][ T7155] XFS (loop1): Ending clean mount
[  103.831777][ T7155] XFS (loop1): Quotacheck needed: Please wait.
[  103.836165][    T9] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  103.892676][   T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.928143][ T7155] XFS (loop1): Quotacheck: Done.
[  103.976785][   T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.000354][    T9] usb 4-1: config 0 has an invalid interface number: 41 but max is 0
[  104.003765][    T9] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  104.011015][ T5842] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  104.018254][    T9] usb 4-1: config 0 has no interface number 0
[  104.041357][    T9] usb 4-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=83.9c
[  104.047940][   T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.054452][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  104.058047][    T9] usb 4-1: Product: syz
[  104.059822][    T9] usb 4-1: Manufacturer: syz
[  104.061825][    T9] usb 4-1: SerialNumber: syz
[  104.075978][    T9] usb 4-1: config 0 descriptor??
[  104.081880][    T9] ims_pcu 4-1:0.41: probe with driver ims_pcu failed with error -22
[  104.228888][   T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.261899][   T55] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  104.268672][   T55] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  104.273490][   T55] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  104.279739][   T55] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  104.283373][   T55] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  104.306045][ T5854] usb 4-1: USB disconnect, device number 4
[  104.508387][   T12] bridge_slave_1: left allmulticast mode
[  104.510612][   T12] bridge_slave_1: left promiscuous mode
[  104.514081][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.524065][   T12] bridge_slave_0: left allmulticast mode
[  104.527273][   T12] bridge_slave_0: left promiscuous mode
[  104.534936][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.576903][ T7180] loop1: detected capacity change from 0 to 128
[  104.597948][ T7180] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[  104.599041][   T33] audit: type=1800 audit(1758711579.703:36): pid=7180 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.479" name="file2" dev="loop1" ino=1048613 res=0 errno=0
[  104.602742][ T7180] FAT-fs (loop1): Filesystem has been set read-only
[  104.612652][ T7180] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[  104.618280][ T7180] syz.1.479: attempt to access beyond end of device
[  104.618280][ T7180] loop1: rw=2049, sector=2065, nr_sectors = 8 limit=128
[  105.021911][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  105.028195][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  105.041496][   T12] bond0 (unregistering): Released all slaves
[  105.241522][ T7198] loop3: detected capacity change from 0 to 40427
[  105.258744][ T7198] F2FS-fs (loop3): invalid crc value
[  105.309150][ T7198] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  105.315094][ T7198] F2FS-fs (loop3): Start checkpoint disabled!
[  105.328986][ T7198] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  105.647896][ T7209] netlink: 8 bytes leftover after parsing attributes in process `syz.1.485'.
[  105.651469][ T7209] netlink: 336 bytes leftover after parsing attributes in process `syz.1.485'.
[  105.665381][ T7168] chnl_net:caif_netlink_parms(): no params data found
[  105.743092][   T39] kworker/u9:2: attempt to access beyond end of device
[  105.743092][   T39] loop3: rw=1, sector=45096, nr_sectors = 8 limit=40427
[  105.778995][   T39] kworker/u9:2: attempt to access beyond end of device
[  105.778995][   T39] loop3: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  105.790864][   T39] CPU: 0 UID: 0 PID: 39 Comm: kworker/u9:2 Not tainted syzkaller #0 PREEMPT(full) 
[  105.790882][   T39] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  105.790890][   T39] Workqueue: writeback wb_workfn (flush-7:3)
[  105.790912][   T39] Call Trace:
[  105.790917][   T39]  <TASK>
[  105.790922][   T39]  dump_stack_lvl+0x189/0x250
[  105.790940][   T39]  ? __pfx_dump_stack_lvl+0x10/0x10
[  105.790952][   T39]  ? __pfx_queue_work_on+0x10/0x10
[  105.790961][   T39]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  105.790978][   T39]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  105.791006][   T39]  f2fs_handle_critical_error+0x37c/0x540
[  105.791029][   T39]  f2fs_write_end_io+0x886/0xb60
[  105.791057][   T39]  __submit_merged_bio+0x27a/0x6a0
[  105.791079][   T39]  __submit_merged_write_cond+0x255/0x530
[  105.791102][   T39]  f2fs_write_data_pages+0x261d/0x3000
[  105.791144][   T39]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  105.791179][   T39]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  105.791217][   T39]  ? rcu_read_lock_sched_held+0x89/0x100
[  105.791231][   T39]  ? __pfx_rcu_read_lock_sched_held+0x10/0x10
[  105.791244][   T39]  ? rcu_is_watching+0x15/0xb0
[  105.791281][   T39]  ? __lock_acquire+0xab9/0xd20
[  105.791304][   T39]  ? __lock_acquire+0xab9/0xd20
[  105.791324][   T39]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  105.791338][   T39]  do_writepages+0x32e/0x550
[  105.791359][   T39]  ? reacquire_held_locks+0x127/0x1d0
[  105.791371][   T39]  ? writeback_sb_inodes+0x384/0x1010
[  105.791395][   T39]  __writeback_single_inode+0x145/0xff0
[  105.791411][   T39]  ? do_raw_spin_unlock+0x4d/0x240
[  105.791429][   T39]  writeback_sb_inodes+0x6c7/0x1010
[  105.791467][   T39]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  105.791519][   T39]  ? rcu_is_watching+0x15/0xb0
[  105.791539][   T39]  wb_writeback+0x43b/0xaf0
[  105.791562][   T39]  ? queue_io+0x381/0x590
[  105.791580][   T39]  ? __pfx_wb_writeback+0x10/0x10
[  105.791603][   T39]  ? _raw_spin_unlock_irq+0x23/0x50
[  105.791626][   T39]  wb_workfn+0x409/0xef0
[  105.791653][   T39]  ? __pfx_wb_workfn+0x10/0x10
[  105.791671][   T39]  ? __lock_acquire+0xab9/0xd20
[  105.791697][   T39]  ? process_scheduled_works+0x9ef/0x17b0
[  105.791715][   T39]  ? _raw_spin_unlock_irq+0x23/0x50
[  105.791731][   T39]  ? process_scheduled_works+0x9ef/0x17b0
[  105.791741][   T39]  ? process_scheduled_works+0x9ef/0x17b0
[  105.791755][   T39]  process_scheduled_works+0xae1/0x17b0
[  105.791792][   T39]  ? __pfx_process_scheduled_works+0x10/0x10
[  105.791846][   T39]  worker_thread+0x8a0/0xda0
[  105.791880][   T39]  kthread+0x711/0x8a0
[  105.791895][   T39]  ? __pfx_worker_thread+0x10/0x10
[  105.791907][   T39]  ? __pfx_kthread+0x10/0x10
[  105.791920][   T39]  ? _raw_spin_unlock_irq+0x23/0x50
[  105.791935][   T39]  ? lockdep_hardirqs_on+0x9c/0x150
[  105.791944][   T39]  ? __pfx_kthread+0x10/0x10
[  105.791958][   T39]  ret_from_fork+0x439/0x7d0
[  105.791971][   T39]  ? __pfx_ret_from_fork+0x10/0x10
[  105.791986][   T39]  ? __switch_to_asm+0x39/0x70
[  105.791998][   T39]  ? __switch_to_asm+0x33/0x70
[  105.792008][   T39]  ? __pfx_kthread+0x10/0x10
[  105.792020][   T39]  ret_from_fork_asm+0x1a/0x30
[  105.792047][   T39]  </TASK>
[  105.792052][   T39] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  105.917754][ T7216] loop1: detected capacity change from 0 to 1024
[  105.962399][ T7216] EXT4-fs: Ignoring removed bh option
[  105.964986][ T7216] EXT4-fs: Ignoring removed nobh option
[  105.967075][ T7216] EXT4-fs: Ignoring removed bh option
[  106.000413][ T7216] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.072775][   T12] hsr_slave_0: left promiscuous mode
[  106.077464][   T12] hsr_slave_1: left promiscuous mode
[  106.080544][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  106.084003][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  106.091602][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  106.095571][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  106.114790][   T12] veth1_macvtap: left promiscuous mode
[  106.117449][   T12] veth0_macvtap: left promiscuous mode
[  106.119917][   T12] veth1_vlan: left promiscuous mode
[  106.122198][   T12] veth0_vlan: left promiscuous mode
[  106.414008][   T55] Bluetooth: hci2: command tx timeout
[  106.460130][ T7223] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4183: comm syz.1.489: Allocating blocks 497-513 which overlap fs metadata
[  106.472528][ T7223] EXT4-fs (loop1): pa ffff88810a01d1d0: logic 256, phys. 385, len 8
[  106.476334][ T7223] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 1
[  106.821502][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.952632][ T7235] loop1: detected capacity change from 0 to 4096
[  106.969412][    T9] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  106.979462][ T7235] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[  107.150410][    T9] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  107.162670][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  107.179768][    T9] usb 4-1: config 0 descriptor??
[  107.194227][    T9] cp210x 4-1:0.0: cp210x converter detected
[  107.273871][   T12] team0 (unregistering): Port device team_slave_1 removed
[  107.277115][    C0] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  107.327339][   T12] team0 (unregistering): Port device team_slave_0 removed
[  107.452835][ T7241] loop1: detected capacity change from 0 to 1024
[  107.488536][ T7241] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.991994][    T9] cp210x 4-1:0.0: failed to get vendor val 0x000e size 678: -71
[  108.001291][    T9] cp210x 4-1:0.0: GPIO initialisation failed: -71
[  108.021966][    T9] usb 4-1: cp210x converter now attached to ttyUSB0
[  108.057473][    T9] usb 4-1: USB disconnect, device number 5
[  108.081700][    T9] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  108.098211][    T9] cp210x 4-1:0.0: device disconnected
[  108.320061][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.409159][ T7168] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.412173][ T7168] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.415869][ T7168] bridge_slave_0: entered allmulticast mode
[  108.419568][ T7168] bridge_slave_0: entered promiscuous mode
[  108.434374][ T7168] bridge0: port 2(bridge_slave_1) entered blocking state
[  108.437302][ T7168] bridge0: port 2(bridge_slave_1) entered disabled state
[  108.440892][ T7168] bridge_slave_1: entered allmulticast mode
[  108.450808][ T7168] bridge_slave_1: entered promiscuous mode
[  108.474606][   T55] Bluetooth: hci2: command tx timeout
[  108.482339][ T7168] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  108.489763][ T7168] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  108.520301][ T7168] team0: Port device team_slave_0 added
[  108.537934][ T7168] team0: Port device team_slave_1 added
[  108.662922][ T7168] batman_adv: batadv0: Adding interface: batadv_slave_0
[  108.672449][ T7168] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  108.693656][ T7168] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  108.708837][ T7168] batman_adv: batadv0: Adding interface: batadv_slave_1
[  108.734154][ T7168] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  108.754902][ T7168] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  108.855237][ T5854] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  108.857948][ T7168] hsr_slave_0: entered promiscuous mode
[  108.861750][ T7168] hsr_slave_1: entered promiscuous mode
[  108.865393][ T7168] debugfs: 'hsr0' already exists in 'hsr'
[  108.867712][ T7168] Cannot create hsr debugfs directory
[  109.006098][ T5854] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  109.015264][ T5854] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  109.020379][ T7264] loop3: detected capacity change from 0 to 32768
[  109.023287][ T5854] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  109.028198][ T5854] usb 2-1: New USB device found, idVendor=056e, idProduct=00e6, bcdDevice= 0.00
[  109.031186][ T5854] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  109.037489][ T7264] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.499 (7264)
[  109.045827][ T5854] usb 2-1: config 0 descriptor??
[  109.050634][ T7264] BTRFS info (device loop3): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  109.072944][ T7264] BTRFS info (device loop3): using crc32c (crc32c-lib) checksum algorithm
[  109.085866][ T7264] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  109.173881][ T7168] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  109.192706][ T7168] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  109.200109][ T7264] BTRFS info (device loop3): rebuilding free space tree
[  109.212045][ T7168] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  109.234169][ T7264] BTRFS info (device loop3): disabling free space tree
[  109.237729][ T7168] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  109.246313][ T7264] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  109.277404][ T7264] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  109.278049][ T7168] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.285026][ T7168] bridge0: port 2(bridge_slave_1) entered forwarding state
[  109.298230][ T7264] BTRFS info (device loop3): enabling ssd optimizations
[  109.300703][ T7264] BTRFS info (device loop3): enabling disk space caching
[  109.303025][ T7264] BTRFS info (device loop3): force clearing of disk cache
[  109.314614][ T7264] BTRFS info (device loop3): use zstd compression, level 3
[  109.402081][ T7168] 8021q: adding VLAN 0 to HW filter on device bond0
[  109.432045][   T26] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.467548][ T7168] 8021q: adding VLAN 0 to HW filter on device team0
[  109.495233][   T26] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.497861][   T26] bridge0: port 1(bridge_slave_0) entered forwarding state
[  109.502154][   T26] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.504656][   T26] bridge0: port 2(bridge_slave_1) entered forwarding state
[  109.518819][ T5854] elecom 0003:056E:00E6.0002: hidraw0: USB HID v0.00 Device [HID 056e:00e6] on usb-dummy_hcd.1-1/input0
[  109.519852][ T6701] BTRFS info (device loop3): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  109.714473][ T5854] usb 2-1: USB disconnect, device number 8
[  109.780747][ T7168] 8021q: adding VLAN 0 to HW filter on device batadv0
[  110.256952][ T7168] veth0_vlan: entered promiscuous mode
[  110.271288][ T7168] veth1_vlan: entered promiscuous mode
[  110.351840][ T7168] veth0_macvtap: entered promiscuous mode
[  110.372856][ T7168] veth1_macvtap: entered promiscuous mode
[  110.395282][ T7168] batman_adv: batadv0: Interface activated: batadv_slave_0
[  110.416273][ T7168] batman_adv: batadv0: Interface activated: batadv_slave_1
[  110.710685][   T55] Bluetooth: hci2: command tx timeout
[  110.742952][   T12] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  110.749028][   T12] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  110.752949][   T12] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  110.757012][   T12] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  110.947266][ T1091] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  110.951042][ T1091] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.085670][ T1091] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.089016][ T1091] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.625143][   T46] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  111.794692][   T46] usb 2-1: Using ep0 maxpacket: 32
[  111.804961][   T46] usb 2-1: New USB device found, idVendor=04e2, idProduct=1403, bcdDevice=1c.b2
[  111.811461][   T46] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  111.815259][   T46] usb 2-1: Product: syz
[  111.817196][   T46] usb 2-1: Manufacturer: syz
[  111.819455][   T46] usb 2-1: SerialNumber: syz
[  111.828147][   T46] usb 2-1: config 0 descriptor??
[  111.836420][   T46] xr_serial 2-1:0.0: invalid descriptor buffer length
[  112.035803][ T6092] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  112.042626][ T7344] openvswitch: netlink: Missing key (keys=40, expected=100)
[  112.050369][   T10] usb 2-1: USB disconnect, device number 9
[  112.194436][ T6092] usb 5-1: Using ep0 maxpacket: 16
[  112.199275][ T6092] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  112.203845][ T6092] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  112.210790][ T6092] usb 5-1: config 0 interface 0 has no altsetting 0
[  112.213563][ T6092] usb 5-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  112.218436][ T6092] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  112.236022][ T6092] usb 5-1: config 0 descriptor??
[  112.251280][ T7352] netlink: 4 bytes leftover after parsing attributes in process `syz.3.514'.
[  112.405106][ T7358] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  112.472672][ T7362] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  112.657116][ T7370] loop3: detected capacity change from 0 to 2048
[  112.661478][ T6092] hid (null): invalid report_size 40504
[  112.729803][ T7373] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  112.795153][   T55] Bluetooth: hci2: command tx timeout
[  112.838236][ T7377] loop1: detected capacity change from 0 to 128
[  112.887963][ T5898] usb 5-1: USB disconnect, device number 2
[  113.231528][ T7396] comedi comedi3: dt2801: I/O port conflict (0x4,2)
[  113.294597][   T33] audit: type=1400 audit(1758711588.383:37): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=7399 comm="syz.1.537"
[  113.440234][ T7408] netlink: 'syz.4.541': attribute type 29 has an invalid length.
[  113.444214][ T7408] netlink: 'syz.4.541': attribute type 29 has an invalid length.
[  113.450251][ T7408] netlink: 508 bytes leftover after parsing attributes in process `syz.4.541'.
[  113.571203][   T46] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  113.760841][   T46] usb 4-1: Using ep0 maxpacket: 16
[  113.953477][   T46] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  113.968826][   T46] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  113.978264][   T46] usb 4-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00
[  113.982235][   T46] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  113.992237][   T46] usb 4-1: config 0 descriptor??
[  114.224506][  T792] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  114.359671][ T7422] loop1: detected capacity change from 0 to 1024
[  114.400616][  T792] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  114.401743][ T7422] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  114.409384][ T7422] ext4 filesystem being mounted at /217/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.410884][   T46] hid-multitouch 0003:1FD2:6007.0004: invalid report_count 33296
[  114.418140][  T792] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  114.424182][  T792] usb 5-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[  114.428509][   T46] hid-multitouch 0003:1FD2:6007.0004: item 0 2 1 9 parsing failed
[  114.433977][  T792] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  114.438343][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  114.439183][   T46] hid-multitouch 0003:1FD2:6007.0004: probe with driver hid-multitouch failed with error -22
[  114.455507][  T792] usb 5-1: config 0 descriptor??
[  114.614184][   T46] usb 4-1: USB disconnect, device number 6
[  114.875507][  T792] cp2112 0003:10C4:EA90.0005: unknown main item tag 0x0
[  114.882704][  T792] cp2112 0003:10C4:EA90.0005: unknown main item tag 0x0
[  114.889499][  T792] cp2112 0003:10C4:EA90.0005: unknown main item tag 0x0
[  114.892455][  T792] cp2112 0003:10C4:EA90.0005: unknown main item tag 0x0
[  114.895879][  T792] cp2112 0003:10C4:EA90.0005: unknown main item tag 0x0
[  114.898683][  T792] cp2112 0003:10C4:EA90.0005: unknown main item tag 0x0
[  114.901449][  T792] cp2112 0003:10C4:EA90.0005: unknown main item tag 0x0
[  114.911638][  T792] cp2112 0003:10C4:EA90.0005: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.4-1/input0
[  114.949957][ T7436] loop1: detected capacity change from 0 to 32768
[  114.975149][ T7436] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 0 transid 8 /dev/loop1 (7:1) scanned by syz.1.552 (7436)
[  115.074544][  T792] cp2112 0003:10C4:EA90.0005: Part Number: 0x00 Device Version: 0x00
[  115.472414][ T7443] loop1: detected capacity change from 0 to 40427
[  115.496113][ T7443] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  115.500935][ T7443] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  115.534726][ T7443] F2FS-fs (loop1): invalid crc value
[  115.652809][ T7443] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  115.670970][ T7443] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  115.673824][ T7443] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  115.682603][  T792] cp2112 0003:10C4:EA90.0005: error reading lock byte: -71
[  115.706088][  T792] usb 5-1: USB disconnect, device number 3
[  116.480025][ T7483] loop4: detected capacity change from 0 to 32768
[  116.494200][ T7483] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.570 (7483)
[  116.624814][ T7483] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  116.628788][ T7483] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm
[  117.141290][ T7503] loop1: detected capacity change from 0 to 128
[  117.150990][ T7483] BTRFS info (device loop4): enabling ssd optimizations
[  117.153748][ T7483] BTRFS info (device loop4): enabling free space tree
[  117.171248][ T7503] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  117.182107][ T7503] hpfs: filesystem error: improperly stopped
[  117.184865][ T7503] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  117.188053][ T7503] hpfs: You really don't want any checks? You are crazy...
[  117.191321][ T7503] hpfs: hpfs_map_sector(): read error
[  117.193738][ T7503] hpfs: code page support is disabled
[  117.271447][ T7503] hpfs: hpfs_map_4sectors(): unaligned read
[  117.275763][ T7503] hpfs: hpfs_map_4sectors(): unaligned read
[  117.278219][ T7503] hpfs: filesystem error: unable to find root dir
[  117.845349][ T7510] loop3: detected capacity change from 0 to 32768
[  117.850264][ T7510] BTRFS info: device /dev/loop3 (7:3) using temp-fsid 802e9295-07de-4a7d-accb-4d85d3345cee
[  117.855140][ T7510] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.575 (7510)
[  117.883091][ T7510] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  117.887427][ T7510] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm
[  117.890930][ T7510] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  117.980952][ T7168] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  118.008608][ T7510] BTRFS info (device loop3): rebuilding free space tree
[  118.021266][ T7510] BTRFS info (device loop3): disabling free space tree
[  118.024120][ T7510] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  118.027602][ T7510] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  118.041948][ T7510] BTRFS info (device loop3): enabling ssd optimizations
[  118.044382][ T7510] BTRFS info (device loop3): turning on sync discard
[  118.046489][ T7510] BTRFS info (device loop3): enabling disk space caching
[  118.049496][ T7510] BTRFS info (device loop3): force clearing of disk cache
[  118.052144][ T7510] BTRFS info (device loop3): enabling auto defrag
[  118.054715][ T7510] BTRFS info (device loop3): doing ref verification
[  118.213249][ T6701] BTRFS info (device loop3): last unmount of filesystem 802e9295-07de-4a7d-accb-4d85d3345cee
[  119.147077][ T7538] loop1: detected capacity change from 0 to 32768
[  119.152756][ T7538] bcachefs (/dev/loop1): error validating superblock: Invalid superblock section members_v2: device 0: too many buckets (got 4398046511232, max 2147483583)
[  119.152756][ T7538] members_v2 (size 152):
[  119.152756][ T7538] Device:                        0
[  119.152756][ T7538]   Label:                       (none)
[  119.152756][ T7538]   UUID:                        7af6772b-00de-4159-84cd-1faead05aceb
[  119.152756][ T7538]   Size:                        576460752320200704
[  119.152756][ T7538]   read errors:                 0
[  119.152756][ T7538]   write errors:                0
[  119.152756][ T7538]   checksum errors:             0
[  119.152756][ T7538]   seqread iops:                0
[  119.152756][ T7538]   seqwrite iops:               0
[  119.152756][ T7538]   randread iops:               0
[  119.152756][ T7538]   randwrite iops:              0
[  119.152756][ T7538]   Bucket size:                 131072
[  119.152756][ T7538]   First bucket:                0
[  119.152756][ T7538]   Buckets:                     4398046511232
[  119.152756][ T7538]   Last mount:                  1714681267
[  119.152756][ T7538]   Last superblock write:       42
[  119.152756][ T7538]   State:                       rw
[  119.152756][ T7538]   Data allowed:                journal,btree,user
[  119.152756][ T7538]   Has data:                    (none)
[  119.152756][ T7538]   Btree allocated bitmap blocksize:256
[  119.152756][ T7538]   Btree allocated bitmap:      0000000000000000000001000010000010011000
[  119.153050][ T7538] bcachefs: bch2_fs_get_tree() error: invalid_sb_members
[  119.434131][ T7556] loop4: detected capacity change from 0 to 256
[  119.536335][ T7558] loop1: detected capacity change from 0 to 128
[  119.586110][ T7558] FAT-fs (loop1): Directory bread(block 162) failed
[  119.589041][ T7558] FAT-fs (loop1): Directory bread(block 163) failed
[  119.591941][ T7558] FAT-fs (loop1): Directory bread(block 164) failed
[  119.602200][ T7558] FAT-fs (loop1): Directory bread(block 165) failed
[  119.605937][ T7558] FAT-fs (loop1): Directory bread(block 166) failed
[  119.608766][ T7558] FAT-fs (loop1): Directory bread(block 167) failed
[  119.611691][ T7558] FAT-fs (loop1): Directory bread(block 168) failed
[  119.616806][ T7558] FAT-fs (loop1): Directory bread(block 169) failed
[  119.635431][ T7558] FAT-fs (loop1): Directory bread(block 162) failed
[  119.638805][ T7558] FAT-fs (loop1): Directory bread(block 163) failed
[  119.642271][ T7558] syz.1.588: attempt to access beyond end of device
[  119.642271][ T7558] loop1: rw=3, sector=226, nr_sectors = 6 limit=128
[  119.660456][ T7558] syz.1.588: attempt to access beyond end of device
[  119.660456][ T7558] loop1: rw=2051, sector=232, nr_sectors = 2 limit=128
[  119.983117][ T7573] loop4: detected capacity change from 0 to 40427
[  119.993720][ T7573] F2FS-fs (loop4): invalid crc value
[  120.022339][ T7577] loop1: detected capacity change from 0 to 32768
[  120.037138][ T7577] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  120.044330][ T7577] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  120.050588][ T7573] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  120.060412][ T7573] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  120.078618][    T9] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  120.080565][ T7577] XFS (loop1): Ending clean mount
[  120.091869][ T7577] XFS (loop1): Quotacheck needed: Please wait.
[  120.107534][ T7573] syz.4.595: attempt to access beyond end of device
[  120.107534][ T7573] loop4: rw=2049, sector=53248, nr_sectors = 584 limit=40427
[  120.150318][ T7577] XFS (loop1): Quotacheck: Done.
[  120.154972][ T7168] syz-executor: attempt to access beyond end of device
[  120.154972][ T7168] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  120.160730][ T7168] CPU: 0 UID: 0 PID: 7168 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  120.160752][ T7168] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  120.160761][ T7168] Call Trace:
[  120.160766][ T7168]  <TASK>
[  120.160772][ T7168]  dump_stack_lvl+0x189/0x250
[  120.160795][ T7168]  ? __pfx_dump_stack_lvl+0x10/0x10
[  120.160809][ T7168]  ? __pfx_queue_work_on+0x10/0x10
[  120.160823][ T7168]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  120.160841][ T7168]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  120.160864][ T7168]  f2fs_handle_critical_error+0x37c/0x540
[  120.160887][ T7168]  f2fs_write_end_io+0x886/0xb60
[  120.160912][ T7168]  __submit_merged_bio+0x27a/0x6a0
[  120.160932][ T7168]  __submit_merged_write_cond+0x255/0x530
[  120.160953][ T7168]  f2fs_write_data_pages+0x261d/0x3000
[  120.160987][ T7168]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  120.161006][ T7168]  ? arch_stack_walk+0xfc/0x150
[  120.161039][ T7168]  ? __mod_zone_page_state+0xd7/0x140
[  120.161062][ T7168]  ? folios_put_refs+0x560/0x640
[  120.161082][ T7168]  ? __pfx_folios_put_refs+0x10/0x10
[  120.161099][ T7168]  ? rcu_is_watching+0x15/0xb0
[  120.161119][ T7168]  ? __lock_acquire+0xab9/0xd20
[  120.161147][ T7168]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  120.161158][ T7168]  do_writepages+0x32e/0x550
[  120.161182][ T7168]  ? do_raw_spin_unlock+0x4d/0x240
[  120.161198][ T7168]  filemap_fdatawrite+0x199/0x240
[  120.161216][ T7168]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  120.161261][ T7168]  ? do_raw_spin_unlock+0x4d/0x240
[  120.161278][ T7168]  f2fs_sync_dirty_inodes+0x31f/0x830
[  120.161300][ T7168]  f2fs_write_checkpoint+0x95a/0x1df0
[  120.161329][ T7168]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  120.161372][ T7168]  ? kill_f2fs_super+0x298/0x6c0
[  120.161389][ T7168]  kill_f2fs_super+0x2c3/0x6c0
[  120.161405][ T7168]  ? __pfx_kill_f2fs_super+0x10/0x10
[  120.161416][ T7168]  ? radix_tree_delete_item+0x2b6/0x400
[  120.161432][ T7168]  ? shrinker_free+0x2ce/0x3e0
[  120.161459][ T7168]  deactivate_locked_super+0xbc/0x130
[  120.161475][ T7168]  cleanup_mnt+0x425/0x4c0
[  120.161490][ T7168]  ? lockdep_hardirqs_on+0x9c/0x150
[  120.161504][ T7168]  task_work_run+0x1d4/0x260
[  120.161522][ T7168]  ? __pfx_task_work_run+0x10/0x10
[  120.161535][ T7168]  ? __x64_sys_umount+0x122/0x160
[  120.161554][ T7168]  ? exit_to_user_mode_loop+0x40/0x110
[  120.161572][ T7168]  exit_to_user_mode_loop+0xec/0x110
[  120.161588][ T7168]  do_syscall_64+0x2bd/0x3b0
[  120.161601][ T7168]  ? lockdep_hardirqs_on+0x9c/0x150
[  120.161611][ T7168]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.161622][ T7168]  ? exc_page_fault+0x9f/0xf0
[  120.161635][ T7168]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.161673][ T7168] RIP: 0033:0x7f97a2b8ff57
[  120.161689][ T7168] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  120.161699][ T7168] RSP: 002b:00007fffc6dde4b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  120.161715][ T7168] RAX: 0000000000000000 RBX: 00007f97a2c11c2d RCX: 00007f97a2b8ff57
[  120.161722][ T7168] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fffc6dde570
[  120.161729][ T7168] RBP: 00007fffc6dde570 R08: 0000000000000000 R09: 0000000000000000
[  120.161735][ T7168] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fffc6ddf600
[  120.161742][ T7168] R13: 00007f97a2c11c2d R14: 000000000001d49e R15: 00007fffc6ddf640
[  120.161762][ T7168]  </TASK>
[  120.161768][ T7168] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  120.322112][ T5842] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  120.331238][    T9] usb 4-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[  120.335266][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  120.338689][    T9] usb 4-1: Product: syz
[  120.340763][    T9] usb 4-1: Manufacturer: syz
[  120.342808][    T9] usb 4-1: SerialNumber: syz
[  120.761872][ T7604] netlink: 28 bytes leftover after parsing attributes in process `syz.4.599'.
[  120.912819][   T33] audit: type=1326 audit(1758711596.003:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7611 comm="syz.1.603" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4ff78ec29 code=0x7ffc0000
[  120.922792][   T33] audit: type=1326 audit(1758711596.003:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7611 comm="syz.1.603" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4ff78ec29 code=0x7ffc0000
[  120.954109][   T33] audit: type=1326 audit(1758711596.003:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7611 comm="syz.1.603" exe="/syz-executor" sig=0 arch=c000003e syscall=325 compat=0 ip=0x7fa4ff78ec29 code=0x7ffc0000
[  120.963970][   T33] audit: type=1326 audit(1758711596.003:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7611 comm="syz.1.603" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4ff78ec29 code=0x7ffc0000
[  120.978044][   T33] audit: type=1326 audit(1758711596.003:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7611 comm="syz.1.603" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4ff78ec29 code=0x7ffc0000
[  120.998401][   T33] audit: type=1326 audit(1758711596.003:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7611 comm="syz.1.603" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa4ff78ec29 code=0x7ffc0000
[  121.011616][   T33] audit: type=1326 audit(1758711596.003:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7611 comm="syz.1.603" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4ff78ec29 code=0x7ffc0000
[  121.022156][   T33] audit: type=1326 audit(1758711596.003:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7611 comm="syz.1.603" exe="/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7fa4ff78ec29 code=0x7ffc0000
[  121.032184][   T33] audit: type=1326 audit(1758711596.003:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7611 comm="syz.1.603" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4ff78ec29 code=0x7ffc0000
[  121.246321][   T46] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  121.355536][    C0] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  121.405207][   T46] usb 2-1: Using ep0 maxpacket: 32
[  121.412974][   T46] usb 2-1: New USB device found, idVendor=0d49, idProduct=7000, bcdDevice=26.2f
[  121.419111][   T46] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  121.422859][   T46] usb 2-1: Product: syz
[  121.426010][   T46] usb 2-1: Manufacturer: syz
[  121.427795][   T46] usb 2-1: SerialNumber: syz
[  121.434842][   T46] usb 2-1: config 0 descriptor??
[  121.439851][   T46] ums-onetouch 2-1:0.0: USB Mass Storage device detected
[  121.551893][   T46] usb 2-1: Found UVC 0.00 device syz (0d49:7000)
[  121.554565][   T46] usb 2-1: No valid video chain found.
[  121.946825][    T9] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -EPIPE
[  121.953158][    T9] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00001000. ret = -EPIPE
[  121.955004][   T46] usb 2-1: USB disconnect, device number 10
[  122.362227][    T9] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x00000404. ret = -EPROTO
[  122.372802][    T9] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[  122.385350][    T9] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[  122.407786][    T9] lan78xx 4-1:1.0: probe with driver lan78xx failed with error -71
[  122.423747][    T9] usb 4-1: USB disconnect, device number 7
[  122.633195][ T7651] loop1: detected capacity change from 0 to 1024
[  122.678701][ T7651] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  122.683953][ T7651] ext4 filesystem being mounted at /245/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.715226][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  122.739282][ T7648] loop4: detected capacity change from 0 to 32768
[  122.922660][ T7648] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,checksum_err_retry_nr=12,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,degraded=yes,nojournal_transaction_names
[  122.922687][ T7648]   allowing incompatible features above 0.0: (unknown version)
[  122.922695][ T7648]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  122.943412][ T7648] bcachefs (loop4): Using encoding defined by superblock: utf8-12.1.0
[  122.946920][ T7648] bcachefs (loop4): initializing new filesystem
[  122.956671][ T7648] bcachefs (loop4): going read-write
[  122.963678][ T7648] bcachefs (loop4): marking superblocks
[  122.972707][ T7648] bcachefs (loop4): initializing freespace
[  122.972992][ T7670] loop3: detected capacity change from 0 to 64
[  122.979270][ T7648] bcachefs (loop4): done initializing freespace
[  122.983809][ T7648] bcachefs (loop4): reading snapshots table
[  122.987184][ T7648] bcachefs (loop4): reading snapshots done
[  123.010049][ T7648] bcachefs (loop4): done starting filesystem
[  123.150988][ T7168] bcachefs (loop4): shutting down
[  123.153096][ T7168] bcachefs (loop4): going read-only
[  123.169239][ T7168] bcachefs (loop4): finished waiting for writes to stop
[  123.234126][ T7168] bcachefs (loop4): flushing journal and stopping allocators, journal seq 3
[  123.269837][ T7672] netlink: 76 bytes leftover after parsing attributes in process `syz.3.618'.
[  123.286132][ T7168] bcachefs (loop4): flushing journal and stopping allocators complete, journal seq 3
[  123.295162][ T7168] bcachefs (loop4): clean shutdown complete, journal seq 4
[  123.298467][ T7168] bcachefs (loop4): marking filesystem clean
[  123.352350][ T7168] bcachefs (loop4): shutdown complete
[  124.385148][ T7712] loop3: detected capacity change from 0 to 4096
[  124.392926][ T7712] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512).
[  124.402253][ T7712] ntfs3(loop3): Failed to load $MFTMirr (-22).
[  124.447031][ T7714] overlayfs: conflicting lowerdir path
[  124.533234][ T7716] loop3: detected capacity change from 0 to 4096
[  124.597260][ T7719] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  125.417335][ T7747] netlink: 12 bytes leftover after parsing attributes in process `syz.1.652'.
[  125.658888][ T7759] fuse: Bad value for 'fd'
[  125.679984][ T7761] netlink: 256 bytes leftover after parsing attributes in process `syz.4.658'.
[  125.824217][ T7770] loop3: detected capacity change from 0 to 256
[  125.878981][ T7770] syz.3.662: attempt to access beyond end of device
[  125.878981][ T7770] loop3: rw=2049, sector=256, nr_sectors = 100 limit=256
[  125.965421][ T7778] loop3: detected capacity change from 0 to 2048
[  125.971020][ T7778] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found
[  125.974947][ T7778] UDF-fs: Scanning with blocksize 512 failed
[  125.983921][ T7778] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  126.010574][   T33] audit: type=1800 audit(1758711601.103:47): pid=7778 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.665" name="file2" dev="loop3" ino=839 res=0 errno=0
[  126.406808][ T7794] loop3: detected capacity change from 0 to 512
[  126.528925][ T7796] loop3: detected capacity change from 0 to 4096
[  126.540283][ T7796] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512).
[  126.689510][ T7796] ntfs3(loop3): Failed to load $Extend (-22).
[  126.692228][ T7796] ntfs3(loop3): Failed to initialize $Extend.
[  127.654588][ T7803] loop4: detected capacity change from 0 to 32768
[  127.848915][ T3562] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.853288][ T3562] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  128.607318][ T7833] loop3: detected capacity change from 0 to 256
[  128.633233][ T7833] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x46ae1815, utbl_chksum : 0xe619d30d)
[  128.652226][ T7833] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  128.769393][ T7837] loop3: detected capacity change from 0 to 128
[  128.773629][ T7837] EXT4-fs (loop3): Test dummy encryption mode enabled
[  128.821581][ T7837] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  128.830304][ T7837] ext4 filesystem being mounted at /123/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  128.911521][ T7837] mac80211_hwsim hwsim9 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  129.023718][ T6701] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  129.777727][ T7860] loop3: detected capacity change from 0 to 128
[  129.781203][ T7860] ext2: Unknown parameter 'dont_appraise'
[  130.128420][ T7867] netlink: 20 bytes leftover after parsing attributes in process `syz.1.700'.
[  130.207986][ T7869] input: syz0 as /devices/virtual/input/input13
[  130.964665][ T3617] wlan1: Trigger new scan to find an IBSS to join
[  131.004726][ T5918] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  131.174396][ T5918] usb 5-1: Using ep0 maxpacket: 8
[  131.183861][ T5918] usb 5-1: config 0 has an invalid interface number: 55 but max is 0
[  131.187451][ T5918] usb 5-1: config 0 has no interface number 0
[  131.190174][ T5918] usb 5-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  131.195919][ T5918] usb 5-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  131.201108][ T5918] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  131.205845][ T5918] usb 5-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  131.211167][ T5918] usb 5-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  131.215479][ T5918] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  131.228801][ T5918] usb 5-1: config 0 descriptor??
[  131.255856][ T5918] ldusb 5-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  131.467310][   T46] usb 5-1: USB disconnect, device number 4
[  131.467441][    C0] ldusb 5-1:0.55: usb_submit_urb failed (-19)
[  131.477929][   T46] ldusb 5-1:0.55: LD USB Device #0 now disconnected
[  131.551987][ T7890] overlayfs: failed to clone upperpath
[  131.593222][ T7892] netlink: 'syz.3.711': attribute type 29 has an invalid length.
[  131.598069][ T7892] netlink: 'syz.3.711': attribute type 29 has an invalid length.
[  131.601320][ T7892] netlink: 500 bytes leftover after parsing attributes in process `syz.3.711'.
[  132.243157][ T7918] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[  132.248962][ T7918] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  132.897310][ T1365] ieee802154 phy0 wpan0: encryption failed: -22
[  132.900279][ T1365] ieee802154 phy1 wpan1: encryption failed: -22
[  133.082124][ T7938] netlink: 44 bytes leftover after parsing attributes in process `syz.3.729'.
[  133.806790][ T7963] netlink: 12 bytes leftover after parsing attributes in process `syz.1.741'.
[  133.917255][ T1093] wlan1: Trigger new scan to find an IBSS to join
[  133.933893][ T7969] Zero length message leads to an empty skb
[  133.994562][ T5918] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  134.165289][ T5918] usb 5-1: Using ep0 maxpacket: 8
[  134.171034][ T5918] usb 5-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52
[  134.175849][ T5918] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  134.179037][ T5918] usb 5-1: Product: syz
[  134.180355][ T5918] usb 5-1: Manufacturer: syz
[  134.182283][ T5918] usb 5-1: SerialNumber: syz
[  134.195157][ T5918] usb 5-1: config 0 descriptor??
[  134.228946][ T7977] netlink: 'syz.3.748': attribute type 29 has an invalid length.
[  134.418015][ T5918] usb 5-1: USB disconnect, device number 5
[  134.606524][ T8003] fuse: Bad value for 'fd'
[  134.812907][ T8018] netlink: 'syz.1.768': attribute type 3 has an invalid length.
[  134.816455][ T8018] netlink: 'syz.1.768': attribute type 2 has an invalid length.
[  135.626728][   T33] audit: type=1326 audit(1758711610.723:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8053 comm="syz.4.784" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97a2b8ec29 code=0x50000
[  135.636204][   T33] audit: type=1326 audit(1758711610.723:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8053 comm="syz.4.784" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97a2b8ec29 code=0x50000
[  135.648854][   T33] audit: type=1326 audit(1758711610.723:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8053 comm="syz.4.784" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97a2b8ec29 code=0x50000
[  135.658563][   T33] audit: type=1326 audit(1758711610.723:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8053 comm="syz.4.784" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97a2b8ec29 code=0x50000
[  135.674527][   T33] audit: type=1326 audit(1758711610.723:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8053 comm="syz.4.784" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97a2b8ec29 code=0x50000
[  135.683702][   T33] audit: type=1326 audit(1758711610.723:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8053 comm="syz.4.784" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97a2b8ec29 code=0x50000
[  135.693594][   T33] audit: type=1326 audit(1758711610.723:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8053 comm="syz.4.784" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97a2b8ec29 code=0x50000
[  135.708783][   T33] audit: type=1326 audit(1758711610.723:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8053 comm="syz.4.784" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97a2b8ec29 code=0x50000
[  135.718178][   T33] audit: type=1326 audit(1758711610.723:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8053 comm="syz.4.784" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97a2b8ec29 code=0x50000
[  135.731789][   T33] audit: type=1326 audit(1758711610.723:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8053 comm="syz.4.784" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97a2b8ec29 code=0x50000
[  135.975966][ T8070] netlink: 'syz.1.791': attribute type 12 has an invalid length.
[  136.874483][ T1093] wlan1: Trigger new scan to find an IBSS to join
[  137.923579][   T27] wlan1: Creating new IBSS network, BSSID 9e:97:4d:50:08:9e
[  138.381755][ T8129] netlink: 72 bytes leftover after parsing attributes in process `syz.1.817'.
[  138.395250][ T8129] netlink: 'syz.1.817': attribute type 1 has an invalid length.
[  139.263103][ T8159] netlink: 4 bytes leftover after parsing attributes in process `syz.3.829'.
[  139.282982][ T8159] netlink: 4 bytes leftover after parsing attributes in process `syz.3.829'.
[  139.487342][ T8161] syz_tun: entered promiscuous mode
[  139.490179][ T8161] vlan2: entered promiscuous mode
[  139.581875][ T8168] netlink: 'syz.4.832': attribute type 21 has an invalid length.
[  139.587738][ T8168] netlink: 128 bytes leftover after parsing attributes in process `syz.4.832'.
[  139.591217][ T8168] netlink: 3 bytes leftover after parsing attributes in process `syz.4.832'.
[  139.756146][ T8178] loop4: detected capacity change from 0 to 4096
[  139.772544][ T8178] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.840782][ T7168] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.698457][ T8217] fuse: Bad value for 'fd'
[  142.863752][ T8263] loop4: detected capacity change from 0 to 32768
[  142.868967][ T8263] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.875 (8263)
[  142.882015][ T8263] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  142.887689][ T8263] BTRFS info (device loop4): using crc32c (crc32c-lib) checksum algorithm
[  142.946543][ T8263] BTRFS info (device loop4): setting nodatasum
[  142.951291][ T8263] BTRFS info (device loop4): setting nodatacow
[  142.957329][ T8263] BTRFS info (device loop4): enabling free space tree
[  142.961875][ T8263] BTRFS info (device loop4): max_inline set to 0
[  143.068011][ T7168] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  143.308642][ T8306] overlayfs: failed to clone upperpath
[  143.316653][ T8306] overlayfs: failed to clone upperpath
[  143.342301][ T8308] fuse: Bad value for 'fd'
[  143.416293][ T8311] fuse: Bad value for 'fd'
[  143.419057][ T8311] capability: warning: `syz.1.891' uses 32-bit capabilities (legacy support in use)
[  143.636128][ T8326] netlink: 12 bytes leftover after parsing attributes in process `syz.3.899'.
[  144.632285][ T8363] overlayfs: failed to clone upperpath
[  144.850645][ T8378] loop4: detected capacity change from 0 to 4096
[  144.862972][ T8381] sctp: [Deprecated]: syz.3.920 (pid 8381) Use of struct sctp_assoc_value in delayed_ack socket option.
[  144.862972][ T8381] Use struct sctp_sack_info instead
[  144.863116][ T8378] EXT4-fs: Ignoring removed nobh option
[  144.879711][ T8378] EXT4-fs (loop4): Test dummy encryption mode enabled
[  144.901045][ T8378] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.959762][ T8387] netlink: 8 bytes leftover after parsing attributes in process `syz.1.923'.
[  144.962604][ T8387] netlink: 8 bytes leftover after parsing attributes in process `syz.1.923'.
[  145.016219][ T8378] fscrypt: AES-256-XTS using implementation "xts(ecb(aes-fixed-time))"
[  145.038547][ T7168] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.209025][ T8405] netlink: 24 bytes leftover after parsing attributes in process `syz.1.930'.
[  145.399855][ T8412] netlink: 4 bytes leftover after parsing attributes in process `syz.1.933'.
[  146.658230][ T8448] netlink: 8 bytes leftover after parsing attributes in process `syz.3.948'.
[  146.970973][ T8458] netlink: 12 bytes leftover after parsing attributes in process `syz.1.953'.
[  147.307221][ T8472] loop4: detected capacity change from 0 to 128
[  147.374726][ T8474] input: syz0 as /devices/virtual/input/input14
[  147.466442][ T8476] macvtap0: entered promiscuous mode
[  147.470099][ T8476] macvtap0: left promiscuous mode
[  147.872366][ T8496] fuse: Bad value for 'fd'
[  147.928129][ T8500] overlayfs: failed to clone lowerpath
[  148.117020][ T8514] netlink: 8 bytes leftover after parsing attributes in process `syz.1.980'.
[  149.584684][ T6092] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  149.748637][ T6092] usb 5-1: config 160 has an invalid interface number: 200 but max is 0
[  149.754515][ T6092] usb 5-1: config 160 has an invalid descriptor of length 0, skipping remainder of the config
[  149.759178][ T6092] usb 5-1: config 160 has no interface number 0
[  149.762377][ T6092] usb 5-1: config 160 interface 200 altsetting 30 endpoint 0x8 has an invalid bInterval 0, changing to 7
[  149.767902][ T6092] usb 5-1: config 160 interface 200 has no altsetting 0
[  149.777993][ T6092] usb 5-1: New USB device found, idVendor=21bb, idProduct=2070, bcdDevice=87.0b
[  149.784442][ T6092] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  149.787070][ T6092] usb 5-1: Product: syz
[  149.788778][ T6092] usb 5-1: Manufacturer: syz
[  149.790458][ T6092] usb 5-1: SerialNumber: syz
[  149.911973][ T8564] 9pnet_fd: Insufficient options for proto=fd
[  150.027912][ T6092] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  150.030995][ T6092] usb 5-1: MIDIStreaming interface descriptor not found
[  150.082207][ T6092] usb 5-1: USB disconnect, device number 6
[  150.199466][ T5846] udevd[5846]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:160.200/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  150.526219][ T8587] fuse: Bad value for 'fd'
[  152.850490][ T8640] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1032'.
[  152.928230][ T8644] loop4: detected capacity change from 0 to 128
[  152.933009][ T8644] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  152.938767][ T8644] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  153.082993][ T1091] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  153.113853][ T8655] netlink: 'syz.4.1039': attribute type 29 has an invalid length.
[  153.132231][ T8655] netlink: 'syz.4.1039': attribute type 29 has an invalid length.
[  153.628162][ T8674] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1049'.
[  155.437929][ T8733] overlayfs: missing 'lowerdir'
[  155.481875][ T8737] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1078'.
[  156.415162][ T8771] comedi comedi0: pcm3724: I/O port conflict (0xef,16)
[  157.550907][ T8806] (unnamed net_device) (uninitialized): ARP target 9.0.0.0 is already present
[  157.554723][ T8806] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (9)
[  158.031846][ T8820] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1115'.
[  158.181201][ T8827] syzkaller1: tun_chr_ioctl cmd 1074025678
[  158.183550][ T8827] syzkaller1: group set to 0
[  158.267059][ T8834] delete_channel: no stack
[  158.269189][ T8834] delete_channel: no stack
[  159.045906][ T8863] bridge0: entered promiscuous mode
[  159.063622][ T8863] macvlan2: entered promiscuous mode
[  159.358924][ T8881] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.1143'.
[  159.362964][ T8881] netlink: zone id is out of range
[  159.365951][ T8881] netlink: zone id is out of range
[  159.368155][ T8881] netlink: get zone limit has 8 unknown bytes
[  159.701079][ T8909] netlink: 182 bytes leftover after parsing attributes in process `syz.3.1156'.
[  161.401455][ T8986] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1191'.
[  161.506133][ T8992] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1194'.
[  161.718805][ T9004] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1200'.
[  162.006143][ T9010] bond0: option use_carrier: invalid value (5)
[  162.700186][ T9038] CUSE: unknown device info ""
[  162.701994][ T9038] CUSE: zero length info key specified
[  162.748862][ T9042] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  162.990920][ T9061] netlink: 'syz.3.1226': attribute type 10 has an invalid length.
[  162.996470][ T9061] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1226'.
[  163.006538][ T9061] batman_adv: batadv0: Adding interface: vlan1
[  163.008774][ T9061] batman_adv: batadv0: The MTU of interface vlan1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  163.018616][ T9061] batman_adv: batadv0: Interface activated: vlan1
[  163.296483][ T6092] usb 5-1: new full-speed USB device number 7 using dummy_hcd
[  163.448823][ T6092] usb 5-1: unable to get BOS descriptor or descriptor too short
[  163.452699][ T6092] usb 5-1: not running at top speed; connect to a high speed hub
[  163.456888][ T6092] usb 5-1: config 7 has an invalid interface number: 85 but max is 0
[  163.459506][ T6092] usb 5-1: config 7 has no interface number 0
[  163.461555][ T6092] usb 5-1: config 7 interface 85 has no altsetting 0
[  163.466096][ T6092] usb 5-1: New USB device found, idVendor=04e6, idProduct=0009, bcdDevice= 2.00
[  163.469524][ T6092] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  163.472224][ T6092] usb 5-1: Product: syz
[  163.473550][ T6092] usb 5-1: Manufacturer: syz
[  163.475512][ T6092] usb 5-1: SerialNumber: syz
[  163.695620][ T6092] usb-storage 5-1:7.85: USB Mass Storage device detected
[  163.761902][ T6092] usb 5-1: USB disconnect, device number 7
[  163.880132][ T9098] netlink: 'syz.1.1242': attribute type 24 has an invalid length.
[  166.786366][ T9187] macvtap0: refused to change device tx_queue_len
[  167.929308][ T3617] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  168.554809][ T9221] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1293'.
[  169.345396][ T9275] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem
[  169.548278][ T9279] netlink: 'syz.3.1320': attribute type 9 has an invalid length.
[  169.560949][ T9279] netlink: 'syz.3.1320': attribute type 9 has an invalid length.
[  170.196894][ T9294] netlink: 'syz.4.1327': attribute type 29 has an invalid length.
[  170.277115][ T9283] IPVS: fo: SCTP 172.20.20.187:0 - no destination available
[  170.282915][ T5918] IPVS: starting estimator thread 0...
[  170.364016][ T9302] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1326'.
[  170.369628][ T9302] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1326'.
[  170.435246][ T9299] IPVS: using max 47 ests per chain, 112800 per kthread
[  170.636914][ T9308] sch_tbf: burst 19869 is lower than device lo mtu (39799) !
[  171.000362][ T9318] fuse: Bad value for 'fd'
[  171.133559][ T9329] fuse: Bad value for 'fd'
[  172.286566][ T9376] netlink: 'syz.3.1361': attribute type 64 has an invalid length.
[  172.289667][ T9376] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1361'.
[  172.311240][ T9376] netlink: 'syz.3.1361': attribute type 64 has an invalid length.
[  172.314590][ T9376] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1361'.
[  172.381911][ T9380] comedi comedi4: bad chanlist[0]=0x000000e3 chan=227 range length=2
[  172.448424][ T9384] program syz.4.1365 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  173.339322][ T9404] netlink: 256 bytes leftover after parsing attributes in process `syz.4.1373'.
[  173.389493][ T9406] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1374'.
[  173.471207][ T9412] overlayfs: failed to clone upperpath
[  173.497977][   T55] Bluetooth: Unknown BR/EDR signaling command 0x11
[  173.501219][   T55] Bluetooth: Wrong link type (-22)
[  173.503758][   T55] Bluetooth: hci0: link tx timeout
[  173.528885][   T55] Bluetooth: hci0: killing stalled connection 11:aa:aa:aa:aa:aa
[  173.686776][ T9421] 9pnet: p9_errstr2errno: server reported unknown error t/event#
[  173.849066][ T9425] netlink: 'syz.1.1382': attribute type 1 has an invalid length.
[  173.852319][ T9425] netlink: 15 bytes leftover after parsing attributes in process `syz.1.1382'.
[  174.234435][ T5898] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  174.384374][ T5898] usb 5-1: Using ep0 maxpacket: 16
[  174.394561][ T5898] usb 5-1: config index 0 descriptor too short (expected 1051, got 27)
[  174.404147][ T5898] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7
[  174.409404][ T5898] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[  174.419494][ T5898] usb 5-1: New USB device found, idVendor=06f8, idProduct=b000, bcdDevice=7d.f9
[  174.423385][ T5898] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  174.427458][ T5898] usb 5-1: Product: syz
[  174.429232][ T5898] usb 5-1: Manufacturer: syz
[  174.431217][ T5898] usb 5-1: SerialNumber: syz
[  174.438640][ T5898] usb 5-1: config 0 descriptor??
[  174.657469][ T5898] usb 5-1: USB disconnect, device number 8
[  174.803852][ T9473] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1404'.
[  174.808366][ T9473] (unnamed net_device) (uninitialized): option mode: invalid value (7)
[  175.607908][   T55] Bluetooth: hci0: command 0x0406 tx timeout
[  177.282219][ T9532] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1429'.
[  177.317574][ T9534] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  177.393356][ T9538] netlink: 'syz.3.1432': attribute type 1 has an invalid length.
[  177.397822][ T9538] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1432'.
[  177.505778][ T9548] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1437'.
[  177.521490][ T9552] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1438'.
[  177.527574][ T9552] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1438'.
[  177.760957][ T9572] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.1448'.
[  178.989627][   T27] wlan1: Trigger new scan to find an IBSS to join
[  179.244999][ T9608] hsr0: entered promiscuous mode
[  179.248043][ T9608] macvlan3: entered allmulticast mode
[  179.250477][ T9608] hsr0: entered allmulticast mode
[  179.252857][ T9608] hsr_slave_0: entered allmulticast mode
[  179.255911][ T9608] hsr_slave_1: entered allmulticast mode
[  179.263317][ T9608] hsr0: left allmulticast mode
[  179.266695][ T9608] hsr_slave_0: left allmulticast mode
[  179.270607][ T9608] hsr_slave_1: left allmulticast mode
[  179.684516][ T5238] Bluetooth: hci1: command tx timeout
[  180.457949][   T33] kauditd_printk_skb: 6445 callbacks suppressed
[  180.458002][   T33] audit: type=1326 audit(1758711655.553:6503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9637 comm="syz.4.1475" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97a2b8ec29 code=0x7ffc0000
[  180.468489][   T33] audit: type=1326 audit(1758711655.553:6504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9637 comm="syz.4.1475" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97a2b8ec29 code=0x7ffc0000
[  180.478676][   T33] audit: type=1326 audit(1758711655.553:6505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9637 comm="syz.4.1475" exe="/syz-executor" sig=0 arch=c000003e syscall=129 compat=0 ip=0x7f97a2b8ec29 code=0x7ffc0000
[  180.493426][   T33] audit: type=1326 audit(1758711655.553:6506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9637 comm="syz.4.1475" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97a2b8ec29 code=0x7ffc0000
[  180.504156][   T33] audit: type=1326 audit(1758711655.553:6507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9637 comm="syz.4.1475" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97a2b8ec29 code=0x7ffc0000
[  180.999016][ T9655] overlayfs: failed to clone upperpath
[  181.045739][ T5238] Bluetooth: hci0: command 0x0406 tx timeout
[  181.586593][ T9669] batadv_slave_1: entered promiscuous mode
[  181.820730][ T9668] batadv_slave_1: left promiscuous mode
[  181.846636][ T9678] netlink: 'syz.3.1490': attribute type 32 has an invalid length.
[  181.851188][ T9678] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1490'.
[  181.857510][ T9678] (unnamed net_device) (uninitialized): option coupled_control: invalid value (104)
[  181.914598][ T1091] wlan1: Trigger new scan to find an IBSS to join
[  182.115737][ T9680] infiniband syz!: set active
[  182.118163][ T9680] infiniband syz!: added team_slave_0
[  182.183644][ T9680] RDS/IB: syz!: added
[  182.193576][ T9680] smc: adding ib device syz! with port count 1
[  182.199596][ T9680] smc:    ib device syz! port 1 has pnetid 
[  183.007968][ T9723] Bluetooth: hci0: load_link_keys: too big key_count value 32768
[  183.393403][ T9739] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  183.916940][   T26] wlan1: Creating new IBSS network, BSSID 2e:ba:53:90:8c:56
[  184.030747][ T9752] overlayfs: failed to decode file handle (len=4, type=0, flags=0, err=-22)
[  185.541503][ T9788] can0: slcan on ttyprintk.
[  185.606591][ T9787] can0 (unregistered): slcan off ttyprintk.
[  185.777212][ T9801] netlink: 'syz.4.1545': attribute type 19 has an invalid length.
[  185.780612][ T9801] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1545'.
[  185.798338][ T5908] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  185.798463][ T9801] netlink: 'syz.4.1545': attribute type 19 has an invalid length.
[  185.801965][ T5908] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  185.802027][ T5908] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  185.802048][ T5908] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  185.807615][ T9801] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1545'.
[  186.017822][ T9815] macvtap1: entered promiscuous mode
[  186.020344][ T9815] macvtap1: entered allmulticast mode
[  186.022650][ T9815] vlan0: entered allmulticast mode
[  186.025676][ T9815] veth0_vlan: entered allmulticast mode
[  186.040470][ T9815] macvtap2: entered promiscuous mode
[  186.042708][ T9815] macvtap2: entered allmulticast mode
[  186.182162][ T9824] netlink: 256 bytes leftover after parsing attributes in process `syz.1.1556'.
[  186.923671][ T9864] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1575'.
[  187.166291][ T9871] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1578'.
[  189.354585][ T5238] Bluetooth: hci1: command 0x0406 tx timeout
[  189.840927][ T6092] IPVS: starting estimator thread 0...
[  189.934436][ T9938] IPVS: using max 77 ests per chain, 184800 per kthread
[  190.751876][ T9956] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1614'.
[  190.868136][ T9968] netlink: 'syz.1.1620': attribute type 2 has an invalid length.
[  191.094440][ T6092] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  191.244603][ T6092] usb 5-1: Using ep0 maxpacket: 16
[  191.255263][ T6092] usb 5-1: config 0 has an invalid interface number: 142 but max is 0
[  191.259277][ T6092] usb 5-1: config 0 has no interface number 0
[  191.267027][ T6092] usb 5-1: New USB device found, idVendor=1bcf, idProduct=0b40, bcdDevice=a0.f1
[  191.271428][ T6092] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  191.275412][ T6092] usb 5-1: Product: syz
[  191.277292][ T6092] usb 5-1: Manufacturer: syz
[  191.279277][ T6092] usb 5-1: SerialNumber: syz
[  191.286149][ T6092] usb 5-1: config 0 descriptor??
[  191.503789][ T6092] usb 5-1: Found UVC 0.00 device syz (1bcf:0b40)
[  191.521567][ T6092] usb 5-1: Forcing UVC version to 1.0a
[  191.523924][ T6092] usb 5-1: No valid video chain found.
[  191.533205][ T6092] usb 5-1: USB disconnect, device number 10
[  192.104753][ T9987] netlink: 'syz.4.1627': attribute type 30 has an invalid length.
[  192.108199][ T9987] (unnamed net_device) (uninitialized): option arp_missed_max: invalid value (0)
[  192.111847][ T9987] (unnamed net_device) (uninitialized): option arp_missed_max: allowed values 1 - 255
[  193.131482][T10048] netlink: 'syz.3.1655': attribute type 9 has an invalid length.
[  193.136915][T10049] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1656'.
[  193.139912][T10048] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1655'.
[  193.143436][T10049] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1656'.
[  193.158188][T10048] hsr0: entered promiscuous mode
[  193.162419][T10048] macvlan4: entered promiscuous mode
[  193.169516][T10048] macvlan4: entered allmulticast mode
[  193.178213][T10048] hsr0: entered allmulticast mode
[  193.181127][T10048] hsr_slave_0: entered allmulticast mode
[  193.188873][T10048] hsr_slave_1: entered allmulticast mode
[  193.433228][   T33] audit: type=1326 audit(1758711668.523:6508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10066 comm="syz.3.1665" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fd98ec29 code=0x7ffc0000
[  193.462252][   T33] audit: type=1326 audit(1758711668.533:6509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10066 comm="syz.3.1665" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fd98ec29 code=0x7ffc0000
[  193.480001][   T33] audit: type=1326 audit(1758711668.543:6510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10066 comm="syz.3.1665" exe="/syz-executor" sig=0 arch=c000003e syscall=453 compat=0 ip=0x7f75fd98ec29 code=0x7ffc0000
[  193.500857][   T33] audit: type=1326 audit(1758711668.543:6511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10066 comm="syz.3.1665" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fd98ec29 code=0x7ffc0000
[  193.517973][   T33] audit: type=1326 audit(1758711668.543:6512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10066 comm="syz.3.1665" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fd98ec29 code=0x7ffc0000
[  193.540370][   T33] audit: type=1326 audit(1758711668.543:6513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10066 comm="syz.3.1665" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f75fd98ec29 code=0x7ffc0000
[  193.550747][   T33] audit: type=1326 audit(1758711668.543:6514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10066 comm="syz.3.1665" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fd98ec29 code=0x7ffc0000
[  193.560853][   T33] audit: type=1326 audit(1758711668.543:6515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10066 comm="syz.3.1665" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fd98ec29 code=0x7ffc0000
[  193.570250][   T33] audit: type=1326 audit(1758711668.543:6516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10066 comm="syz.3.1665" exe="/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f75fd98ec29 code=0x7ffc0000
[  193.580845][   T33] audit: type=1326 audit(1758711668.543:6517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10066 comm="syz.3.1665" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75fd98ec29 code=0x7ffc0000
[  193.635584][T10078] netlink: 'syz.3.1670': attribute type 1 has an invalid length.
[  193.710019][T10084] 9pnet_fd: Insufficient options for proto=fd
[  194.055521][T10111] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1680'.
[  194.059176][T10111] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1680'.
[  194.320873][ T1365] ieee802154 phy0 wpan0: encryption failed: -22
[  194.324223][ T1365] ieee802154 phy1 wpan1: encryption failed: -22
[  194.452625][ T5854] kernel write not supported for file /binder/failed_transaction_log (pid: 5854 comm: kworker/1:3)
[  194.756555][T10136] tmpfs: Bad value for 'nr_blocks'
[  195.155651][T10157] ------------[ cut here ]------------
[  195.157884][T10157] RTNL: assertion failed at net/core/dev.c (9342)
[  195.160651][T10157] WARNING: CPU: 1 PID: 10157 at net/core/dev.c:9342 __dev_set_promiscuity+0x569/0x740
[  195.164205][T10157] Modules linked in:
[  195.166379][T10157] CPU: 1 UID: 0 PID: 10157 Comm: syz.1.1701 Not tainted syzkaller #0 PREEMPT(full) 
[  195.171115][T10157] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  195.175374][T10157] RIP: 0010:__dev_set_promiscuity+0x569/0x740
[  195.177961][T10157] Code: ed fb ff ff e8 b8 36 5b f8 c6 05 cf 29 29 06 01 90 48 c7 c7 80 32 94 8c 48 c7 c6 80 31 94 8c ba 7e 24 00 00 e8 68 d3 1e f8 90 <0f> 0b 90 90 e9 06 fb ff ff e8 89 36 5b f8 48 8b 7c 24 08 48 c7 c6
[  195.186195][T10157] RSP: 0018:ffffc900081d7680 EFLAGS: 00010246
[  195.188705][T10157] RAX: 66ffd3ab8c2a0400 RBX: ffff8880206e6000 RCX: 0000000000080000
[  195.191988][T10157] RDX: ffffc90009149000 RSI: 0000000000000ae0 RDI: 0000000000000ae1
[  195.195412][T10157] RBP: 0000000000000000 R08: ffff888136624253 R09: 1ffff11026cc484a
[  195.198754][T10157] R10: dffffc0000000000 R11: ffffed1026cc484b R12: 00000000ffffffff
[  195.202065][T10157] R13: 0000000000000000 R14: ffff8880206e60b0 R15: 1ffff110040dcc16
[  195.205512][T10157] FS:  00007fa5006766c0(0000) GS:ffff8881a3c13000(0000) knlGS:0000000000000000
[  195.209200][T10157] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  195.211933][T10157] CR2: 000000110c35265d CR3: 0000000027750000 CR4: 00000000000006f0
[  195.215368][T10157] Call Trace:
[  195.216823][T10157]  <TASK>
[  195.218025][T10159] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1701'.
[  195.218111][T10157]  ? __hw_addr_add_ex+0x3c5/0x770
[  195.223689][T10157]  __dev_set_rx_mode+0x17c/0x260
[  195.225857][T10157]  dev_mc_add+0xc8/0x120
[  195.227620][T10157]  igmp6_group_added+0x225/0x800
[  195.229666][T10157]  ? __pfx_igmp6_group_added+0x10/0x10
[  195.231984][T10157]  ? mld_del_delrec+0x1af/0xcd0
[  195.234030][T10157]  ? __ipv6_dev_mc_inc+0x548/0xa50
[  195.236269][T10157]  __ipv6_dev_mc_inc+0x897/0xa50
[  195.238349][T10157]  addrconf_join_solict+0xf8/0x170
[  195.240442][T10157]  ? __pfx_addrconf_join_solict+0x10/0x10
[  195.242700][T10157]  ? do_raw_spin_unlock+0x4d/0x240
[  195.244946][T10157]  __ipv6_dev_ac_inc+0x87b/0xaf0
[  195.247023][T10157]  ipv6_sock_ac_join+0x6ef/0x8c0
[  195.249043][T10157]  ? __pfx_ipv6_sock_ac_join+0x10/0x10
[  195.251283][T10157]  ? _copy_from_user+0x94/0xb0
[  195.253222][T10157]  do_ipv6_setsockopt+0x1e90/0x2eb0
[  195.255417][T10157]  ? __pfx_do_ipv6_setsockopt+0x10/0x10
[  195.257570][T10157]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  195.259764][T10157]  ? __pfx___might_resched+0x10/0x10
[  195.261962][T10157]  ? put_user_ifreq+0x7b/0xd0
[  195.263938][T10157]  ? __lock_acquire+0xab9/0xd20
[  195.266003][T10157]  ? aa_sk_perm+0x81e/0x950
[  195.267879][T10157]  ? __pfx_aa_sk_perm+0x10/0x10
[  195.269872][T10157]  ? __fget_files+0x2a/0x420
[  195.271845][T10157]  ? aa_sock_opt_perm+0xff/0x1b0
[  195.273928][T10157]  ipv6_setsockopt+0x59/0x170
[  195.275990][T10157]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  195.278452][T10157]  do_sock_setsockopt+0x17c/0x1b0
[  195.280491][T10157]  __x64_sys_setsockopt+0x13f/0x1b0
[  195.282582][T10157]  do_syscall_64+0xfa/0x3b0
[  195.284607][T10157]  ? lockdep_hardirqs_on+0x9c/0x150
[  195.286760][T10157]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.289296][T10157]  ? exc_page_fault+0x9f/0xf0
[  195.291220][T10157]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.293612][T10157] RIP: 0033:0x7fa4ff78ec29
[  195.295604][T10157] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  195.303537][T10157] RSP: 002b:00007fa500676038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  195.307167][T10157] RAX: ffffffffffffffda RBX: 00007fa4ff9d5fa0 RCX: 00007fa4ff78ec29
[  195.310506][T10157] RDX: 000000000000001b RSI: 0000000000000029 RDI: 0000000000000004
[  195.313716][T10157] RBP: 00007fa4ff811e41 R08: 0000000000000014 R09: 0000000000000000
[  195.317108][T10157] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  195.320356][T10157] R13: 00007fa4ff9d6038 R14: 00007fa4ff9d5fa0 R15: 00007ffc84e34f48
[  195.323779][T10157]  </TASK>
[  195.325274][T10157] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  195.328327][T10157] CPU: 1 UID: 0 PID: 10157 Comm: syz.1.1701 Not tainted syzkaller #0 PREEMPT(full) 
[  195.332105][T10157] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  195.336246][T10157] Call Trace:
[  195.337620][T10157]  <TASK>
[  195.338848][T10157]  dump_stack_lvl+0x99/0x250
[  195.340815][T10157]  ? __asan_memcpy+0x40/0x70
[  195.342729][T10157]  ? __pfx_dump_stack_lvl+0x10/0x10
[  195.344935][T10157]  ? __pfx__printk+0x10/0x10
[  195.346851][T10157]  vpanic+0x281/0x750
[  195.348549][T10157]  ? __pfx__printk+0x10/0x10
[  195.350497][T10157]  ? __pfx_vpanic+0x10/0x10
[  195.352373][T10157]  ? is_bpf_text_address+0x26/0x2b0
[  195.354560][T10157]  panic+0xb9/0xc0
[  195.356178][T10157]  ? __pfx_panic+0x10/0x10
[  195.358042][T10157]  __warn+0x31b/0x4b0
[  195.359693][T10157]  ? __dev_set_promiscuity+0x569/0x740
[  195.361973][T10157]  ? __dev_set_promiscuity+0x569/0x740
[  195.364199][T10157]  report_bug+0x2be/0x4f0
[  195.365996][T10157]  ? __dev_set_promiscuity+0x569/0x740
[  195.368232][T10157]  ? __dev_set_promiscuity+0x569/0x740
[  195.370475][T10157]  ? __dev_set_promiscuity+0x56b/0x740
[  195.372730][T10157]  handle_bug+0x84/0x160
[  195.374545][T10157]  exc_invalid_op+0x1a/0x50
[  195.376481][T10157]  asm_exc_invalid_op+0x1a/0x20
[  195.378550][T10157] RIP: 0010:__dev_set_promiscuity+0x569/0x740
[  195.381169][T10157] Code: ed fb ff ff e8 b8 36 5b f8 c6 05 cf 29 29 06 01 90 48 c7 c7 80 32 94 8c 48 c7 c6 80 31 94 8c ba 7e 24 00 00 e8 68 d3 1e f8 90 <0f> 0b 90 90 e9 06 fb ff ff e8 89 36 5b f8 48 8b 7c 24 08 48 c7 c6
[  195.389165][T10157] RSP: 0018:ffffc900081d7680 EFLAGS: 00010246
[  195.391730][T10157] RAX: 66ffd3ab8c2a0400 RBX: ffff8880206e6000 RCX: 0000000000080000
[  195.394991][T10157] RDX: ffffc90009149000 RSI: 0000000000000ae0 RDI: 0000000000000ae1
[  195.398166][T10157] RBP: 0000000000000000 R08: ffff888136624253 R09: 1ffff11026cc484a
[  195.401417][T10157] R10: dffffc0000000000 R11: ffffed1026cc484b R12: 00000000ffffffff
[  195.404637][T10157] R13: 0000000000000000 R14: ffff8880206e60b0 R15: 1ffff110040dcc16
[  195.407885][T10157]  ? __hw_addr_add_ex+0x3c5/0x770
[  195.409964][T10157]  __dev_set_rx_mode+0x17c/0x260
[  195.411995][T10157]  dev_mc_add+0xc8/0x120
[  195.413730][T10157]  igmp6_group_added+0x225/0x800
[  195.415812][T10157]  ? __pfx_igmp6_group_added+0x10/0x10
[  195.418046][T10157]  ? mld_del_delrec+0x1af/0xcd0
[  195.420116][T10157]  ? __ipv6_dev_mc_inc+0x548/0xa50
[  195.422267][T10157]  __ipv6_dev_mc_inc+0x897/0xa50
[  195.424389][T10157]  addrconf_join_solict+0xf8/0x170
[  195.426509][T10157]  ? __pfx_addrconf_join_solict+0x10/0x10
[  195.429068][T10157]  ? do_raw_spin_unlock+0x4d/0x240
[  195.431255][T10157]  __ipv6_dev_ac_inc+0x87b/0xaf0
[  195.433371][T10157]  ipv6_sock_ac_join+0x6ef/0x8c0
[  195.435581][T10157]  ? __pfx_ipv6_sock_ac_join+0x10/0x10
[  195.437966][T10157]  ? _copy_from_user+0x94/0xb0
[  195.440007][T10157]  do_ipv6_setsockopt+0x1e90/0x2eb0
[  195.442205][T10157]  ? __pfx_do_ipv6_setsockopt+0x10/0x10
[  195.444569][T10157]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  195.446880][T10157]  ? __pfx___might_resched+0x10/0x10
[  195.449161][T10157]  ? put_user_ifreq+0x7b/0xd0
[  195.451175][T10157]  ? __lock_acquire+0xab9/0xd20
[  195.453296][T10157]  ? aa_sk_perm+0x81e/0x950
[  195.455277][T10157]  ? __pfx_aa_sk_perm+0x10/0x10
[  195.457307][T10157]  ? __fget_files+0x2a/0x420
[  195.459341][T10157]  ? aa_sock_opt_perm+0xff/0x1b0
[  195.461485][T10157]  ipv6_setsockopt+0x59/0x170
[  195.463534][T10157]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  195.466020][T10157]  do_sock_setsockopt+0x17c/0x1b0
[  195.468114][T10157]  __x64_sys_setsockopt+0x13f/0x1b0
[  195.470398][T10157]  do_syscall_64+0xfa/0x3b0
[  195.472321][T10157]  ? lockdep_hardirqs_on+0x9c/0x150
[  195.474617][T10157]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.477228][T10157]  ? exc_page_fault+0x9f/0xf0
[  195.479205][T10157]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.481677][T10157] RIP: 0033:0x7fa4ff78ec29
[  195.483574][T10157] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  195.491535][T10157] RSP: 002b:00007fa500676038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  195.495034][T10157] RAX: ffffffffffffffda RBX: 00007fa4ff9d5fa0 RCX: 00007fa4ff78ec29
[  195.498366][T10157] RDX: 000000000000001b RSI: 0000000000000029 RDI: 0000000000000004
[  195.501714][T10157] RBP: 00007fa4ff811e41 R08: 0000000000000014 R09: 0000000000000000
[  195.505130][T10157] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  195.508495][T10157] R13: 00007fa4ff9d6038 R14: 00007fa4ff9d5fa0 R15: 00007ffc84e34f48
[  195.511836][T10157]  </TASK>
[  195.513969][T10157] Kernel Offset: disabled
[  195.515827][T10157] Rebooting in 86400 seconds..

VM DIAGNOSIS:
11:01:10  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=1ffff11026cc7f61 RCX=ffff88802744b980 RDX=0000000000000000
RSI=0000000000000001 RDI=0000000000000000 RBP=ffffc9000f9377e0 RSP=ffffc9000f937660
R8 =ffffffff8fa3a837 R9 =1ffffffff1f47506 R10=dffffc0000000000 R11=fffffbfff1f47507
R12=ffff88813663fb08 R13=dffffc0000000000 R14=ffff88804b03b1c0 R15=0000000000000001
RIP=ffffffff81b44e74 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880b8613000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000110c3cfd2b CR3=000000000df36000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=ffffffff81748683 ffffffff8133c59e
XMM02=ffffffff81ec5a19 ffffffff8133c59e XMM03=ffffffff81860b0a ffffffff81860a96
XMM04=00007fa50050d100 00007fa4ff9a7460 XMM05=00007fa4ff9a7478 00007fa4ff9a74c0
XMM06=00007fa4ff9a74b8 00007fa4ff9a74b0 XMM07=00007fa4ff9a74a8 00007fa4ff9a74a0
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007fa4ff812fed
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000037 RBX=0000000000000037 RCX=0000000000000000 RDX=00000000000003f8
RSI=000000000000e36e RDI=000000000000e36f RBP=00000000000003f8 RSP=ffffc900081d6e30
R8 =ffff88801f7b8237 R9 =1ffff11003ef7046 R10=dffffc0000000000 R11=ffffffff854fad60
R12=dffffc0000000000 R13=ffffffff99b028ef R14=ffffffff99df7460 R15=0000000000000000
RIP=ffffffff854faddc RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fa5006766c0 ffffffff 00c00000
GS =0000 ffff8881a3c13000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000110c35265d CR3=0000000027750000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007fa4ff9a7498 00007fa4ff9a7470 XMM03=00007fa4ff9a74a8 00007fa4ff9a74a0
XMM04=00007fa50050d100 00007fa4ff9a7460 XMM05=00007fa4ff9a7478 00007fa4ff9a74c0
XMM06=00007fa4ff9a74b8 00007fa4ff9a74b0 XMM07=00007fa4ff9a74a8 00007fa4ff9a74a0
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007fa4ff812fed
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
