last executing test programs:

2m5.354665358s ago: executing program 1 (id=134):
r0 = socket(0xa, 0x3, 0xc4)
listen(r0, 0xd7d2)

2m5.354478222s ago: executing program 1 (id=135):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000004f00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
pipe2(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
syz_usb_connect$uac1(0x0, 0xa4, &(0x7f00000001c0)=ANY=[@ANYBLOB="2a01000020000040b708000000000000430109029200030172e5000904000000010100000a24010000000201020c0d240700000500006e626805000c240000e9fffff5ffffffff092403f3ff000005024524", @ANYRES8=r1, @ANYBLOB="05", @ANYRES16=r0, @ANYRES16=r1], 0x0)

2m4.094888433s ago: executing program 1 (id=140):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
getsockopt$inet6_int(r1, 0x29, 0x7, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r2, &(0x7f0000000640)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0xfffffffc}, 0x1c)
recvmsg(r2, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x10002)

2m3.206560185s ago: executing program 1 (id=157):
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfffffde8, 0x0}}, 0x1f)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f00000003c0)=""/163}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r1, &(0x7f0000000000), &(0x7f0000000600)=""/105}, 0x20)
getresuid(&(0x7f0000000700), 0x0, 0x0)
setuid(0x0)
r3 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x6cb, 0x73f6, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x110, 0x0, [{{0x9, 0x4, 0x0, 0x1, 0x2, 0x3, 0x0, 0x2, 0x0, {0x9, 0x21, 0x1, 0x0, 0x1, {0x22, 0x3}}, {{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x0, 0x0, 0x5}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r3, 0x0, 0x0)
syz_usb_control_io(r3, &(0x7f0000000380)={0x2c, &(0x7f0000000080)={0x0, 0x3, 0x6, {0x6, 0xa, "ddd9c977"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

2m1.604864443s ago: executing program 1 (id=180):
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x20, 0x0, 0x0, 0x0, 0x0)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0])
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040))
chdir(&(0x7f0000000080)='./file0\x00')
setpgid(r0, r0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x220901, 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x200)
syz_mount_image$iso9660(&(0x7f0000000080), &(0x7f0000000000)='./file0\x00', 0x200000, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x0, 0x3fb, &(0x7f0000000c40)="$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")
setpgid(0x0, r0)
openat$dir(0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x10300, 0x1a)

2m1.55447188s ago: executing program 1 (id=181):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x0, 0x1, 0x33}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9}, 0x80)

1m46.387518045s ago: executing program 32 (id=181):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x0, 0x1, 0x33}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9}, 0x80)

1m32.489503195s ago: executing program 3 (id=488):
r0 = socket$packet(0x11, 0xa, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000100)=[{0x80000006, 0x0, 0x4}]}, 0x10)
syz_emit_ethernet(0xe, &(0x7f0000000280)={@remote, @remote, @void, {@mpls_uc}}, 0x0)

1m32.283804472s ago: executing program 3 (id=489):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000100)={[{@errors_remount}, {@noload}, {@nogrpid}, {@noquota}, {@noblock_validity}, {}, {@mblk_io_submit}, {@dioread_lock}, {@minixdf}], [], 0x3d}, 0x1, 0x51f, &(0x7f00000007c0)="$eJzs3UFsI1cZAOB/HDvd7KZNChygEqXQouwK1k4a2kY9lCIhOFUCyn0JiRNFceIodtpNVEFWHDgiIQRInMqFCxInTkioEheOCKkSnEGAQAi2cEACdirb4+xuMk6yG8fOJt8nTea955n3v+doxn7jp5kALqxnIuLViLiTpum1iJjIygvZErudpbXde7ffWmgtSaTp6/9IIsnKunWlbY/FlWy3SxHxlS9GfD05GLexvbM6X6tVN7N8pbm2UWls71xfWZtfri5X12dnZ16ce2nuhbnpvvRzPCJe+fxfvv+dn3zhlV9++s0/3vjb1W8kWXns68cDKh72YqfrpfZ7ce8Omw8Z7CwqtnuYGcvbYuRAya1TbhMAAL19ICI+ERHXYiJGDv86CwAAADyC0s+Ox/+S7m93B4z2KAcAAAAeIYX2HNikUM7m+45HoVAuR3sO74ficqFWbzQ/tVTfWl/szJWdjFJhaaVWnc7mCk9GKWnlZ9rpu/nn9+VnI+LJiPjexFg7X16o1xaHffEDAAAALogr+8b//57ojP8BAACAc2Zy2A0AAAAATp3xPwAAAJx/xv8AAABwrn3ptddaS9p9/vXiG9tbq/U3ri9WG6vlta2F8kJ9c6O8XK8vt+/Zt3ZUfbV6feMzsb51s9KsNpqVxvbOjbX61nrzxsp9j8AGAAAABujJj73z+yQidl8eay8to8fb9ZibAWdVcS+VZOucw/oPT3TWfx5Qo4CBGBl2A4ChKQ67AcDQlIbdAGDokiNe7zl55zfZ+uP9bQ8AANB/Ux/J//3/6OuCu4UBNA84RQ5iALh42t/zjzuT15cFOFdKZgDChXfi3/+PlKYP1CAAAKDvxttLUihnl/fGo1AolyMebz8WoJQsrdSq0xHxRET8bqL0WCs/094zOXLMAAAAAAAAAAAAAAAAAAAAAAAAAAB0pGkSKQAAAHCuRRT+mvyqcy//qYnnxvdfHxhN/jMR2SNC3/zR6z+4Od9sbs60yv+5V978YVb+/DCuYAAAAMCFUHyQjbvj9O44HgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD66b3bby10l0HG/fvnImIyL34xLrXXl6IUEZf/lUTxnv2SiBjpQ/yx1p8P58VPWs3aC5kXf+ztk8ffvXVo/JjM3oW8+FdOHh4utHda559X846/QjzTXucff8WI+/IPq/f5L/bOfyM9jv/HjxnjqXd/VukZ/1bEU8X88083ftIj/rN5Ff782weKvvbVnZ1e8dO3I6ZyP3+S+2JVmmsblcb2zvWVtfnl6nJ1fXZ25sW5l+ZemJuuLK3Uqtnf3Bjf/egv7hzW/8s94k8e0f/ncuobzSn7/7s3b3+wkyzlxb/6bE78X/842+Jg/EL22ffJLN16faqb3u2k7/X0T3/79GH9X+zR/6P+/1d7VbrPtS9/60/H3BQAGIDG9s7qfK1W3TwbiZej7zW3RvhD79ejl/hveiaacbqJb/a1wjRN09YxdYJ6khjcm5Ac3tRhn5kAAIB+u/ulf9gtAQAAAAAAAAAAAAAAAAAAgItrEHca2x9zdy+V9OMW2gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAffF+AAAA///0iOAC")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000300)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000700000095"], &(0x7f0000000040)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='ext4_es_lookup_extent_enter\x00', r0, 0x0, 0x6}, 0x18)
bpf$OBJ_PIN_PROG(0x6, &(0x7f00000000c0)=@generic={&(0x7f0000000080)='./file0\x00', r1}, 0x18)

1m32.194270453s ago: executing program 3 (id=493):
mkdirat$binderfs(0xffffffffffffff9c, 0x0, 0x1ff)
setsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(0xffffffffffffffff, 0x84, 0x7, &(0x7f0000000200)={0x2}, 0x4)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
move_pages(0x0, 0x20a0, &(0x7f0000000040), &(0x7f0000001180), &(0x7f0000000000), 0x0)
openat$nullb(0xffffffffffffff9c, 0x0, 0xa4242, 0x0)
socket$kcm(0x29, 0x2, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
syz_open_dev$dri(0x0, 0x8, 0x200000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000001a40)=""/102392, 0x18ff8)
keyctl$instantiate(0xc, 0x0, 0x0, 0x2a, 0x0)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), 0x0, 0x0, 0xfffffffffffffffe)
socket$inet_mptcp(0x2, 0x1, 0x106)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
mkdir(0x0, 0x12)
migrate_pages(0x0, 0x3, 0x0, 0x0)
mount$binderfs(0x0, &(0x7f0000001dc0)='./binderfs2\x00', &(0x7f0000001e00), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x141041)
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000040))
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000440)={0x53, 0x0, 0x0, 0x0, @buffer={0x0, 0x0, 0x0}, 0x0, 0x0, 0x12, 0x39, 0x0, 0x0})

1m30.791912465s ago: executing program 3 (id=511):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x12f451, 0x0)
mount$bind(&(0x7f00000000c0)='./file0/file0/file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x80700a, 0x0)
umount2(&(0x7f0000000280)='./file0/file0/file0\x00', 0xa)

1m30.552960251s ago: executing program 3 (id=512):
r0 = socket$inet6(0xa, 0x2, 0x0)
sendmmsg$inet6(r0, &(0x7f0000002900)=[{{&(0x7f0000000440)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xfffffffc}, 0x1c, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="12000000000000001100000067"], 0x22}}], 0x1, 0x800)

1m30.354165267s ago: executing program 3 (id=513):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000000c0)="2e00000010008188e6b62aa73772cc9f1ba1f848110000005e140602000000000e000a001000000002900000121f", 0x2e}], 0x1}, 0x40)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_UPDATE_CONNECT_PARAMS(r2, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[], 0x64}}, 0x8000000)

1m30.300947993s ago: executing program 33 (id=513):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000000c0)="2e00000010008188e6b62aa73772cc9f1ba1f848110000005e140602000000000e000a001000000002900000121f", 0x2e}], 0x1}, 0x40)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_UPDATE_CONNECT_PARAMS(r2, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[], 0x64}}, 0x8000000)

1m18.211098841s ago: executing program 2 (id=660):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r1 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VIDIOC_CROPCAP(r1, 0xc02c563a, &(0x7f0000000140)={0x1, {0x8a25, 0x7f, 0x6, 0x3}, {0xd19, 0x9, 0xffffcdc3, 0x800}, {0x6a1a, 0xfffffffa}})
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, 0x0, 0x0)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x5, 0x1000086}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x4002)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
sendmsg$IPSET_CMD_FLUSH(0xffffffffffffffff, 0x0, 0x4000010)
getsockopt$inet_sctp_SCTP_NODELAY(0xffffffffffffffff, 0x84, 0x3, 0x0, &(0x7f00000001c0))
prlimit64(0x0, 0x6, &(0x7f0000000140)={0xbe1, 0x1}, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000300)='i2c_reply\x00', r3}, 0x16)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
socket$inet(0x2, 0x0, 0x7)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
rmdir(&(0x7f00000001c0)='./cgroup/../file0\x00')
sendto$inet6(r0, &(0x7f0000000000)='\x00\x00', 0x2, 0x8, &(0x7f0000000480)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$sock(r0, &(0x7f0000000340)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000280)='\x00', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000040)}}], 0x2, 0x40448c0)

1m16.776363088s ago: executing program 2 (id=675):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002500)=ANY=[@ANYBLOB="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"], 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
recvmsg(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{0x0}, {&(0x7f0000003700)=""/4081, 0xff1}], 0x2}, 0x40000000)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={r1, 0x34}, 0x10)

1m16.650118894s ago: executing program 2 (id=680):
syz_mount_image$erofs(&(0x7f0000000340), &(0x7f0000000580)='./file0\x00', 0x2000000, &(0x7f00000004c0)=ANY=[], 0x2, 0x222, &(0x7f0000000800)="$eJzsmL9rFEEUx78zu7feiog2KWwsDBjR7GX3UNIcGkGwEiHxV6WHWUPMJieXFUxANNjYaGchpLHwH7BIkcrCzn9A0EIFwcIrLGxsRmZndm9yc3HDcla+TzF8Z9+befPezbziQBDEf8vXL78+Pzs/PXcKwAGMY5/+/t0BGFOaG/6fXt4/+aJ1YfPNx9fvVg4+3B7cTy4RYueH+l/iuwDezjhIi0jF6t9SjOvJHHihr4DjhNbXwBBofQscV7WOwXBD67uG7kj/ILizmMTB7U4yL8WUHEI5RHJoDp6vt8Ewr+dCCMEM++ra+lI7SeKuIVxtG2KqJIpgS2NW/Wrw0JvhaBnnk1W8/vTJhpzntZky6heCI9RJNMEwq79PYzOvjSqJkf8Rt7+/Y+U/JFumLwNQlmRdidbPkRTLFIcnqy2fkOmcs02HUOUY2Lmqhr5JVnK0KVtXJxNu+V08q3/QCrEuDWYhHg1/AM99AP8oU1NUyiIXY73t97bpmxJ81/ssWHkItvf7U9/rmfOHWL1iPmReI/8tgA9bqn+IVwzHjf7kGv2jkS7fa6yurU8uLrcX4oV4JYqaZxjw+HTUyBqRGq2+1+/Pftaf9hv713bx9biHB+007YZq9JgHH2najbJ5ZDyb2a3Oj5t6WYqLAI6piWxpXrGjY8VgnvLhma9UE7YTQRAEQRAEQRAEQRAEQRBEJY6CZf+ClhBdzrz/BAAA//9oglvV")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x60000, 0x0)
io_setup(0x3, &(0x7f0000000600)=<r1=>0x0)
io_submit(r1, 0xd, &(0x7f0000000000)=[&(0x7f0000000080)={0x0, 0x0, 0x10, 0x0, 0x4, r0, 0x0, 0xf0, 0x400000000000000}])

1m16.493666902s ago: executing program 2 (id=684):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000040)={[{@minixdf}, {@nobarrier}, {@barrier}]}, 0x67, 0x52b, &(0x7f0000000a00)="$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")
r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
r1 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
write$binfmt_register(r1, &(0x7f0000000440)={0x3a, 'syz3', 0x3a, 'M', 0x3a, 0x0, 0x3a, 'usrjquota=', 0x3a, '', 0x3a, './file2', 0x3a, [0x46]}, 0x32)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)

1m16.272027476s ago: executing program 2 (id=689):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, 0x0, 0x8800)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
rseq(&(0x7f0000000400), 0x20, 0x0, 0x0)
io_setup(0x8, &(0x7f0000000000))
syz_open_dev$dri(0x0, 0x1ff, 0x0)
syz_open_procfs(0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
getsockopt$sock_buf(r2, 0x1, 0x3b, 0x0, &(0x7f0000000000))
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/clients\x00', 0x0, 0x0)
preadv(r3, &(0x7f0000004ec0)=[{&(0x7f0000004bc0)=""/68, 0x44}], 0x1, 0x8000, 0x0)
open$dir(0x0, 0x400000, 0x100)
socket$inet(0x2b, 0x800, 0x8)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f00000000c0)={0x2, 0x4e20, @broadcast}, 0x10)
sendto$inet(r4, &(0x7f00000001c0)="76f947e6ca2d5678417c8fb8d6db7c570044232e9c6409a8dec8c870d7d76fa3bfb0333d4d39aee2", 0x28, 0x0, &(0x7f0000000140)={0x2, 0x4e20}, 0x10)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x80)
shutdown(r4, 0x0)

1m16.051601355s ago: executing program 2 (id=690):
syz_mount_image$exfat(&(0x7f0000000000), &(0x7f0000000080)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x8810, &(0x7f0000000540)=ANY=[@ANYBLOB="646973636172642c7a65726f5f73697a655f6469722c757466382c74696d655f6f66667365743d3078303030303030303030303030303030342c646d61736b3d30303030303030303030303030303030303030303031302c757466382c756d61736b3d30303030303030303030303030303030303030303030342c6b6565705f6c6173745f646f74732c696f636861727365743d6d6163637972696c6c69632c757466382c00ee17b49b24ff8b"], 0x29, 0x1502, &(0x7f0000002840)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
chdir(&(0x7f0000000240)='./bus\x00')
creat(&(0x7f0000000040)='./file1\x00', 0x5e)

1m15.669871416s ago: executing program 34 (id=690):
syz_mount_image$exfat(&(0x7f0000000000), &(0x7f0000000080)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x8810, &(0x7f0000000540)=ANY=[@ANYBLOB="646973636172642c7a65726f5f73697a655f6469722c757466382c74696d655f6f66667365743d3078303030303030303030303030303030342c646d61736b3d30303030303030303030303030303030303030303031302c757466382c756d61736b3d30303030303030303030303030303030303030303030342c6b6565705f6c6173745f646f74732c696f636861727365743d6d6163637972696c6c69632c757466382c00ee17b49b24ff8b"], 0x29, 0x1502, &(0x7f0000002840)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
chdir(&(0x7f0000000240)='./bus\x00')
creat(&(0x7f0000000040)='./file1\x00', 0x5e)

1m4.026426447s ago: executing program 5 (id=793):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0xb1}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0xb5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)

1m3.943878324s ago: executing program 5 (id=794):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi4\x00', 0x2, 0x0)
ioctl$COMEDI_INSN(r0, 0x8028640c, &(0x7f0000000000)={0xc000003, 0xf, &(0x7f0000000180)=[0x21, 0x9, 0xf909, 0x899d, 0x80, 0x98a, 0x7, 0x1010, 0xfffffe01, 0x1, 0x4, 0x2, 0x6, 0x4, 0x0], 0x1, 0x4000007})

1m3.943718478s ago: executing program 5 (id=795):
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
acct(&(0x7f00000001c0)='./file0\x00')
acct(0x0)

1m3.922614163s ago: executing program 5 (id=797):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000700)={'ipvlan0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[@ANYBLOB="680000001000030500f0e66f1500000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000400012800c0001006d6163766c616e00300002800800010010000000100005800a000400aaaaaaaaaabb000008000300030000000a000400aaaaaaaab1aa000008000500", @ANYRES32=r1], 0x68}, 0x1, 0x0, 0x0, 0x4010}, 0x0)

1m3.853606779s ago: executing program 5 (id=799):
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000180)=0x5)
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
syz_mount_image$udf(&(0x7f0000000a40), &(0x7f0000000100)='./file0\x00', 0x2004400, &(0x7f0000000740)=ANY=[@ANYBLOB="73686f72746164001000006d653d30303030303030303030303030303030307569643d0000400000000000000000000000003de0ec1508bb8f2a1f1601aeda124934677b06979d48833908fd570738d3bc9113d9cfebb48ddfc76262e6004074f35fa54feb05ddada3ec41f71771ca8d8fe742dd535804de31a8bcc767ae7225d5f67397c04e605a3a512f705d72dc3f91243cef3c65a89a9429490dc4c312fa3190068268e99a0c3ffd411f5945c70e93ebf0b31d06ac5fc6", @ANYBLOB="a85f0dc3446ae0c36ba4848c770920cd9addace5c10dee3a96f810395203ae3bd777155e0b6764a2fd6da6853696460e4dc9849661ef1979cffa16b5bf59dabf336f10c3c559e5e6957f06f8cc8dc9d87dce1e2fe00f1a9e839df7923f50ee737985bd9b461e751d8f2be497d8651d589f890f61b87b83f3c7ad3ba191fa8e9a0ea1b14157305d0891f22ea0bbafcc5044e7177fcb08366d582b977b1847305408f72d19577993c4f746315483175fd218fe2194c2e6c97f561184a4f7c739d2ae93ba3016354f0d2ed26e6b810ebbbd0d1f93e7251bd3b5ed60ea3c840a2bbe7fc0", @ANYRES32], 0x1, 0xa1b, &(0x7f0000001540)="$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")
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x40049366, &(0x7f0000000180))

1m2.973577035s ago: executing program 5 (id=811):
r0 = socket(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e24, 0xff, @remote, 0xfff}, 0x1c)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e64, 0x3, @ipv4={'\x00', '\xff\xff', @empty}, 0x80000002}, 0x1c)

47.813222697s ago: executing program 35 (id=811):
r0 = socket(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e24, 0xff, @remote, 0xfff}, 0x1c)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e64, 0x3, @ipv4={'\x00', '\xff\xff', @empty}, 0x80000002}, 0x1c)

42.232628708s ago: executing program 4 (id=1050):
r0 = io_uring_setup(0xf08, &(0x7f0000000780)={0x0, 0xfb6e, 0x38c1, 0x4, 0xf0})
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000000)={&(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f000000c000/0x1000)=nil, &(0x7f000001f000/0x1000)=nil, &(0x7f0000015000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f000000c000/0x4000)=nil, &(0x7f000001d000/0x3000)=nil, &(0x7f0000012000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0}, 0x68)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mount$bind(&(0x7f0000000040)='.\x00', 0x0, 0x0, 0x2a05004, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x20, &(0x7f0000000000)=[r0], 0x1)

42.163737579s ago: executing program 4 (id=1051):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x15, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910300000000000630a64ff000000009500740000000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_reuseport}, 0x48)

42.163347411s ago: executing program 4 (id=1053):
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1, 0xc}, &(0x7f0000001fee)='R\x10suse\x00\x00\x00\x00\x00\x00\x00dn\x00\x00\x00', 0x0)

42.113721713s ago: executing program 4 (id=1055):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x222)

42.062812542s ago: executing program 4 (id=1056):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ee}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000500)={r0, 0x0, 0x2d, 0x0, @val=@netfilter={0xa, 0x4, 0x600, 0x1}}, 0x20)
syz_emit_ethernet(0x4a, &(0x7f0000000440)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2, 0x11}}}}}}}, 0x0)

41.85244234s ago: executing program 4 (id=1057):
r0 = socket$kcm(0x2a, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000640)={&(0x7f0000000000)={0x2a, 0x0, @empty}, 0x5, 0x0}, 0x0)

41.793312533s ago: executing program 36 (id=1057):
r0 = socket$kcm(0x2a, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000640)={&(0x7f0000000000)={0x2a, 0x0, @empty}, 0x5, 0x0}, 0x0)

1.422334183s ago: executing program 0 (id=1622):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000400), 0x0, &(0x7f00000002c0)={[{@huge_always}]})
chdir(&(0x7f0000000140)='./file0\x00')
r0 = open(&(0x7f0000000100)='./file0\x00', 0x14167e, 0x131)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r0, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)
read$FUSE(r0, &(0x7f0000000440)={0x2020}, 0x2020)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)

1.344424501s ago: executing program 0 (id=1625):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=@ipv6_newrule={0x44, 0x20, 0x1, 0x70bd27, 0x0, {0xa, 0x0, 0x20, 0x40, 0x0, 0x0, 0x0, 0x7}, [@FIB_RULE_POLICY=@FRA_OIFNAME={0x14, 0x11, 'veth0_to_bridge\x00'}, @FRA_SRC={0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x17}}]}, 0x44}, 0x1, 0x0, 0x0, 0x24040804}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="18"], 0x0, 0xc}, 0x94)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='\\\x00\x00\x00!'], 0x5c}}, 0x0)

1.252102102s ago: executing program 0 (id=1630):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = syz_io_uring_setup(0x4aa, &(0x7f0000000380)={0x0, 0x366e, 0x10100, 0x6, 0x13b}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000200)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x8126}})
io_uring_enter(r1, 0x38c5, 0x2000000, 0x0, 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})

1.251982134s ago: executing program 0 (id=1631):
r0 = socket$inet6(0xa, 0x805, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
getsockopt$bt_hci(r0, 0x84, 0x81, &(0x7f0000000080)=""/4076, &(0x7f00000010c0)=0xfec)

1.191422854s ago: executing program 0 (id=1635):
syz_usb_connect(0x2, 0x62, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000095e7d086d04c308166b0102030109025000010000000009041f0000ff0100000a24010400050201020724070500000508240805040004960d240601010302000100060006092403050503060581092403060103"], 0x0)

671.970695ms ago: executing program 6 (id=1648):
r0 = socket$netlink(0x10, 0x3, 0x10)
sendmsg(0xffffffffffffffff, &(0x7f0000011fc8)={0x0, 0x0, 0x0}, 0x1)
r1 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r1, &(0x7f0000011fc8)={0x0, 0x0, 0x0}, 0x0)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), r0)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r2, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
socket$inet6(0xa, 0x2, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f00000000c0)={'wlan1\x00', &(0x7f0000000080)=@ethtool_stats})
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_sctp(0xa, 0x4, 0x84)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000120000002400000008000000850000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f00000001c0)=0x8200000000000000, 0xfffffdef)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800050000fcffff08000700fc000000080011000700000008000e00800000000800", @ANYRES16], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
socket$rds(0x15, 0x5, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x8, 0x4000010, 0xffffffffffffffff, 0x54099000)

453.433249ms ago: executing program 7 (id=1652):
r0 = syz_open_dev$vbi(&(0x7f0000000040), 0x3, 0x2)
ioctl$VIDIOC_G_SLICED_VBI_CAP(r0, 0xc0745645, &(0x7f0000000100)={0x6, [0xff, 0x8, 0x8, 0x7fff, 0x5, 0x800, 0x7, 0xfffa, 0xfc81, 0x1, 0x2, 0x10, 0x400, 0xa, 0x8, 0x2, 0x7, 0x8, 0x7f, 0x0, 0x4, 0x3, 0x97, 0x457f, 0x2, 0x5, 0x81, 0x1, 0x4, 0x8544, 0xb, 0x5, 0x6, 0x7685, 0x98bd, 0x0, 0x8000, 0x8, 0x5, 0x2, 0x0, 0x5, 0xe9da, 0xf, 0x8, 0x6, 0x0, 0x8], 0x6})

453.296432ms ago: executing program 7 (id=1653):
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x1000801, &(0x7f0000000ac0)=ANY=[@ANYRES64=0x0], 0x2, 0x1fd, &(0x7f00000003c0)="$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")

453.112206ms ago: executing program 7 (id=1654):
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000000000)='./file1\x00', 0x810, &(0x7f0000000440)={[{@treelog}, {@rescue={'rescue', 0x3d, 'nologreplay'}}, {@max_inline={'max_inline', 0x3d, [0x37, 0x78, 0x6d, 0x39, 0x33, 0x36, 0x30, 0x65, 0x2d]}}, {@space_cache}, {@nodatasum}, {@nobarrier}, {@flushoncommit}, {@noautodefrag}, {@enospc_debug}, {@noenospc_debug}, {@nodatasum}, {@commit={'commit', 0x3d, 0x3}}, {@ssd}, {@nobarrier}, {@max_inline={'max_inline', 0x3d, [0x38, 0x36, 0x39, 0x35, 0x32, 0x25]}}]}, 0x1, 0x50f3, &(0x7f000000a2c0)="$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")

239.205569ms ago: executing program 7 (id=1655):
futex(&(0x7f0000004000), 0x5, 0x0, 0x0, &(0x7f0000004000)=0xfffffffe, 0xa101fffc)

232.412748ms ago: executing program 6 (id=1656):
r0 = socket(0xa, 0x3, 0xff)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000100)=0x1082, 0x4)

153.474586ms ago: executing program 6 (id=1657):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, &(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, r0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x4}}, 0x26)
connect$inet6(r0, &(0x7f0000000400)={0xa, 0x0, 0x0, @mcast2, 0x6}, 0x1c)
sendmsg$inet(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x4041)

153.33969ms ago: executing program 7 (id=1658):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000b40)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8b2b, &(0x7f0000000000)={'caif0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}})

152.83264ms ago: executing program 7 (id=1659):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000940)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x20108c0, &(0x7f0000000680)=ANY=[@ANYBLOB="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", @ANYRES64, @ANYRESOCT, @ANYRESOCT, @ANYBLOB="34dd0f00135ea23c22845cc5474e7cd7e7ab01d33c4486b62e3b4f9822364f30c34779205bbd653e2b0e7bbbcba1e3dc78833fbb91474ba644d13b9a3bfddc66bfc8ba12f680d556b1b4d4a1ec5b55eeedc8454a11312f3025c08220a36ab6d810b4de0836f341eb18f984b2a7feaef926859b77e733f9bb7220a2460746c81448ccc7a901e32427b8cc656a1b8a1c52fac1524d3a90fc424c13d6cc5708aa1ea205ddd2b967de4068647f1a5fade5146a344fd31daeeaeede8f61b1066ca3a10599230edf07182401e51b28d35033a6f652886ee8d43d7ebf2d546b"], 0x1, 0x61f5, &(0x7f00000075c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x185242, 0x0)

152.703077ms ago: executing program 6 (id=1660):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newsa={0x13c, 0x10, 0x713, 0x70bd28, 0x0, {{@in=@local, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x2, 0x1, 0x0, 0x0, 0xa, 0x0, 0x0, 0x84, 0x0, 0xffffffffffffffff}, {@in6=@mcast1, 0x0, 0x32}, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', {0x0, 0x0, 0x8, 0x100000001, 0x6}, {0x0, 0x0, 0x2, 0xfffffffffffffffc}, {0xc}, 0x70bd28, 0x0, 0x2}, [@algo_aead={0x4c, 0x12, {{'rfc4543(gcm(aes))\x00'}, 0x0, 0x80}}]}, 0x13c}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

28.783778ms ago: executing program 6 (id=1661):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0x4000}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=@newtaction={0x44, 0x5a, 0x5, 0x70bd28, 0x25dfdbfb, {0x2}, [{0x30, 0x3, [@m_ife={0x2c, 0x11, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x44}}, 0xc084)

2.838697ms ago: executing program 6 (id=1662):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004480)=[{{&(0x7f0000000080)={0xa, 0x4e22, 0x8, @mcast1, 0x9}, 0x1c, 0x0}}, {{&(0x7f0000000140)={0xa, 0x4e20, 0xe5, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x5}, 0x1c, 0x0, 0x0, &(0x7f0000001a00)=[@flowinfo={{0x14, 0x29, 0xb, 0xfffffef1}}, @flowinfo={{0x14, 0x29, 0xb, 0x1}}], 0x30}}], 0x2, 0x80)

0s ago: executing program 0 (id=1663):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="050000000000000005000000000000008510000002000000850000000800000095000000000000009500a50500000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)

kernel console output (not intermixed with test programs):

x10
[  102.347758][ T4611]  f2fs_handle_critical_error+0x37c/0x540
[  102.347775][ T4611]  f2fs_write_end_io+0x886/0xb60
[  102.347791][ T4611]  __submit_merged_bio+0x27a/0x6a0
[  102.347808][ T4611]  __submit_merged_write_cond+0x255/0x530
[  102.347824][ T4611]  f2fs_write_data_pages+0x261d/0x3000
[  102.347850][ T4611]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  102.347866][ T4611]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  102.347897][ T4611]  ? __asan_memset+0x22/0x50
[  102.347911][ T4611]  ? kvm_sched_clock_read+0x11/0x20
[  102.347931][ T4611]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  102.347947][ T4611]  do_writepages+0x32e/0x550
[  102.348000][ T4611]  __writeback_single_inode+0x145/0xff0
[  102.348010][ T4611]  ? do_raw_spin_unlock+0x4d/0x240
[  102.348019][ T4611]  writeback_sb_inodes+0x6c7/0x1010
[  102.348032][ T4611]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  102.348047][ T4611]  ? rcu_is_watching+0x15/0xb0
[  102.348056][ T4611]  wb_writeback+0x43b/0xaf0
[  102.348066][ T4611]  ? queue_io+0x341/0x590
[  102.348074][ T4611]  ? __pfx_wb_writeback+0x10/0x10
[  102.348083][ T4611]  ? rcu_is_watching+0x15/0xb0
[  102.348090][ T4611]  wb_workfn+0x409/0xef0
[  102.348100][ T4611]  ? __pfx_wb_workfn+0x10/0x10
[  102.348107][ T4611]  ? rcu_is_watching+0x15/0xb0
[  102.348113][ T4611]  ? rcu_is_watching+0x15/0xb0
[  102.348120][ T4611]  ? process_scheduled_works+0x9ef/0x17b0
[  102.348127][ T4611]  ? rcu_is_watching+0x15/0xb0
[  102.348133][ T4611]  ? lock_acquire+0x5f/0x360
[  102.348143][ T4611]  ? rcu_is_watching+0x15/0xb0
[  102.348149][ T4611]  ? process_scheduled_works+0x9ef/0x17b0
[  102.348155][ T4611]  ? process_scheduled_works+0x9ef/0x17b0
[  102.348161][ T4611]  process_scheduled_works+0xae1/0x17b0
[  102.348172][ T4611]  ? __pfx_process_scheduled_works+0x10/0x10
[  102.348182][ T4611]  worker_thread+0x8a0/0xda0
[  102.348189][ T4611]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  102.348198][ T4611]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  102.348207][ T4611]  ? __kthread_parkme+0x7b/0x200
[  102.348216][ T4611]  kthread+0x711/0x8a0
[  102.348224][ T4611]  ? __pfx_worker_thread+0x10/0x10
[  102.348230][ T4611]  ? __pfx_kthread+0x10/0x10
[  102.348238][ T4611]  ? rcu_is_watching+0x15/0xb0
[  102.348245][ T4611]  ? __pfx_kthread+0x10/0x10
[  102.348252][ T4611]  ret_from_fork+0x3fc/0x770
[  102.348261][ T4611]  ? __pfx_ret_from_fork+0x10/0x10
[  102.348269][ T4611]  ? __switch_to_asm+0x39/0x70
[  102.348277][ T4611]  ? __switch_to_asm+0x33/0x70
[  102.348286][ T4611]  ? __pfx_kthread+0x10/0x10
[  102.348293][ T4611]  ret_from_fork_asm+0x1a/0x30
[  102.348305][ T4611]  </TASK>
[  102.352461][ T4611] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  102.494510][ T7651] loop4: detected capacity change from 0 to 2048
[  102.530924][ T7651] Alternate GPT is invalid, using primary GPT.
[  102.533212][ T7651]  loop4: p1 p2 p3
[  102.534504][ T7651] loop4: partition table partially beyond EOD, truncated
[  102.569306][ T6194] udevd[6194]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  102.578930][ T5844] udevd[5844]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[  102.599274][ T6194] udevd[6194]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  102.605863][ T5850] udevd[5850]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[  102.726128][ T7664] loop2: detected capacity change from 0 to 512
[  102.732123][ T7664] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.653: bad orphan inode 11
[  102.736838][ T7664] ext4_test_bit(bit=10, block=4) = 1
[  102.739254][ T7664] is_bad_inode(inode)=0
[  102.741185][ T7664] NEXT_ORPHAN(inode)=2080374784
[  102.743522][ T7664] max_ino=32
[  102.745079][ T7664] i_nlink=0
[  102.746694][ T7664] EXT4-fs (loop2): 1 truncate cleaned up
[  102.749775][ T7664] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.780815][ T5843] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.967917][ T7710] sctp: [Deprecated]: syz.0.664 (pid 7710) Use of struct sctp_assoc_value in delayed_ack socket option.
[  104.967917][ T7710] Use struct sctp_sack_info instead
[  105.307481][ T7730] netlink: 724 bytes leftover after parsing attributes in process `syz.4.672'.
[  105.315488][ T7730] netlink: 724 bytes leftover after parsing attributes in process `syz.4.672'.
[  105.458128][ T7750] loop2: detected capacity change from 0 to 16
[  105.484614][ T7750] erofs (device loop2): mounted with root inode @ nid 36.
[  105.644192][ T7765] loop2: detected capacity change from 0 to 512
[  105.660793][ T7765] EXT4-fs (loop2): orphan cleanup on readonly fs
[  105.665169][ T7765] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.684: bad orphan inode 13
[  105.669262][ T7765] ext4_test_bit(bit=12, block=18) = 1
[  105.671274][ T7765] is_bad_inode(inode)=0
[  105.673285][ T7765] NEXT_ORPHAN(inode)=2130706432
[  105.675583][ T7765] max_ino=32
[  105.677080][ T7765] i_nlink=1
[  105.679090][ T7765] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  105.709039][ T7768] netlink: 'syz.4.686': attribute type 2 has an invalid length.
[  105.714924][ T7765] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  105.717013][ T7768] : entered promiscuous mode
[  105.728273][ T7765] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.684: bg 0: block 248: padding at end of block bitmap is not set
[  105.743350][ T7765] Quota error (device loop2): write_blk: dquota write failed
[  105.746414][ T7765] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  105.750302][ T7765] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.684: Failed to acquire dquot type 1
[  105.785963][ T7765] EXT4-fs warning (device loop2): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  105.817622][ T5843] EXT4-fs error (device loop2): ext4_lookup:1791: inode #2: comm syz-executor: deleted inode referenced: 12
[  105.824457][ T5843] EXT4-fs error (device loop2): ext4_lookup:1791: inode #2: comm syz-executor: deleted inode referenced: 12
[  105.941947][ T7774] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.947791][ T7774] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.954294][ T7774] veth0_to_team: left promiscuous mode
[  106.611212][ T7788] can0: slcan on ttyprintk.
[  106.720381][ T5236] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  106.724266][ T5236] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  106.728132][ T5236] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  106.734218][ T5236] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  106.738716][ T5236] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  106.949971][ T7791] chnl_net:caif_netlink_parms(): no params data found
[  107.054878][ T7791] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.057911][ T7791] bridge0: port 1(bridge_slave_0) entered disabled state
[  107.060613][ T7791] bridge_slave_0: entered allmulticast mode
[  107.063811][ T7791] bridge_slave_0: entered promiscuous mode
[  107.067032][ T7791] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.069929][ T7791] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.073093][ T7791] bridge_slave_1: entered allmulticast mode
[  107.075972][ T7791] bridge_slave_1: entered promiscuous mode
[  107.096794][ T7791] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  107.103333][ T7791] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  107.123995][ T7791] team0: Port device team_slave_0 added
[  107.127859][ T7791] team0: Port device team_slave_1 added
[  107.144399][ T7791] batman_adv: batadv0: Adding interface: batadv_slave_0
[  107.147321][ T7791] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  107.157765][ T7791] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  107.164879][ T7791] batman_adv: batadv0: Adding interface: batadv_slave_1
[  107.167424][ T7791] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  107.177851][ T7791] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  107.195871][ T7791] hsr_slave_0: entered promiscuous mode
[  107.198733][ T7791] hsr_slave_1: entered promiscuous mode
[  107.201511][ T7791] debugfs: 'hsr0' already exists in 'hsr'
[  107.204077][ T7791] Cannot create hsr debugfs directory
[  107.281056][ T7791] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  107.286638][ T7791] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  107.291981][ T7791] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  107.297397][ T7791] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  107.317251][ T7791] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.320270][ T7791] bridge0: port 2(bridge_slave_1) entered forwarding state
[  107.323583][ T7791] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.326200][ T7791] bridge0: port 1(bridge_slave_0) entered forwarding state
[  107.348880][ T7791] 8021q: adding VLAN 0 to HW filter on device bond0
[  107.355920][   T52] bridge0: port 1(bridge_slave_0) entered disabled state
[  107.358649][   T52] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.367054][ T7791] 8021q: adding VLAN 0 to HW filter on device team0
[  107.374395][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.377058][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[  107.379588][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.382421][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[  107.424577][ T7787] can0 (unregistered): slcan off ttyprintk.
[  107.459613][ T7791] 8021q: adding VLAN 0 to HW filter on device batadv0
[  107.536156][ T7791] veth0_vlan: entered promiscuous mode
[  107.540991][ T7791] veth1_vlan: entered promiscuous mode
[  107.565954][ T7791] veth0_macvtap: entered promiscuous mode
[  107.569519][ T7791] veth1_macvtap: entered promiscuous mode
[  107.583113][ T7791] batman_adv: batadv0: Interface activated: batadv_slave_0
[  107.589350][ T7791] batman_adv: batadv0: Interface activated: batadv_slave_1
[  107.614236][   T12] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  107.617805][   T12] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  107.621166][   T12] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  107.634047][   T12] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  107.649640][ T7831] Illegal XDP return value 4294967274 on prog  (id 60) dev N/A, expect packet loss!
[  107.685476][ T7829] netlink: 168 bytes leftover after parsing attributes in process `syz.0.696'.
[  107.738612][ T4611] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  107.741467][ T4611] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.798946][ T4497] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  107.802438][ T4497] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  108.127409][ T7843] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  108.127409][ T7843] The task syz.4.700 (7843) triggered the difference, watch for misbehavior.
[  108.392151][ T7849] netlink: 12 bytes leftover after parsing attributes in process `syz.0.703'.
[  108.823349][ T5846] Bluetooth: hci0: command tx timeout
[  109.469256][ T7866] netlink: 'syz.5.710': attribute type 3 has an invalid length.
[  109.474570][ T7866] netlink: 'syz.5.710': attribute type 1 has an invalid length.
[  109.477460][ T7866] netlink: 216 bytes leftover after parsing attributes in process `syz.5.710'.
[  109.480528][ T7866] NCSI netlink: No device for ifindex 33022
[  109.892617][    T9] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  110.157653][ T7896] CUSE: unknown device info "KJH+ۤ2LhnL1`Ccn80(3նi>f_ٮ,<_eF"
[  110.163050][ T7896] CUSE: unknown device info "3ܟ,̘"
[  110.165579][ T7896] CUSE: unknown device info "J2SZ !e/J+-na4D|G$5O~q	
[  110.165579][ T7896] fzXSAxjTǔwxRɐQ(hҏj	pVdY0|M?2JIv^R@"
[  110.173248][ T7896] CUSE: unknown device info "!To}ݝ&|L+Uoϲ"FstV:׌EgJ<@c4TMM|"
[  110.177810][ T7896] CUSE: DEVNAME unspecified
[  110.221373][   T33] audit: type=1326 audit(1755868884.970:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7894 comm="syz.4.724" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fbac6b8ebe9 code=0x0
[  110.792420][ T5846] Bluetooth: hci1: unknown advertising packet type: 0x82
[  110.792439][ T5846] Bluetooth: hci1: Dropping invalid advertising data
[  110.797300][ T5846] Bluetooth: hci1: Malformed LE Event: 0x02
[  110.972432][    T9] usb 6-1: Using ep0 maxpacket: 32
[  110.978425][    T9] usb 6-1: New USB device found, idVendor=0ccd, idProduct=0080, bcdDevice=67.fe
[  110.983328][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  110.986869][    T9] usb 6-1: Product: syz
[  110.988770][    T9] usb 6-1: Manufacturer: syz
[  110.991109][    T9] usb 6-1: SerialNumber: syz
[  111.002770][    T9] usb 6-1: config 0 descriptor??
[  111.210168][    T9] snd-usb-6fire 6-1:0.0: unknown device firmware state received from device:
[  111.216112][    T9] 13 57 c4 36 7e 4b e4 0d 
[  111.218083][    T9] snd-usb-6fire 6-1:0.0: probe with driver snd-usb-6fire failed with error -5
[  111.330850][ T7913] netlink: 'syz.4.730': attribute type 2 has an invalid length.
[  111.420156][   T10] usb 6-1: USB disconnect, device number 2
[  111.496240][ T7933] (unnamed net_device) (uninitialized): option fail_over_mac: invalid value (15)
[  111.562642][ T5846] Bluetooth: hci0: command tx timeout
[  112.001470][ T7949] loop5: detected capacity change from 0 to 1024
[  112.040788][ T7949] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.098970][ T7791] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.422393][ T5874] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  112.592530][ T5874] usb 6-1: Using ep0 maxpacket: 16
[  112.596453][ T5874] usb 6-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  112.601004][ T5874] usb 6-1: config 0 interface 0 has no altsetting 0
[  112.604368][ T5874] usb 6-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[  112.608361][ T5874] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  112.616029][ T5874] usb 6-1: config 0 descriptor??
[  112.743406][ T7958] loop4: detected capacity change from 0 to 40427
[  112.750089][ T7958] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  112.761412][ T7958] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  112.767767][ T7958] F2FS-fs (loop4): invalid crc value
[  112.796226][ T7958] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  112.801071][ T7958] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  112.804903][ T7958] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  112.992406][ T7966] mac80211_hwsim hwsim11 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  113.019549][ T7968] loop4: detected capacity change from 0 to 512
[  113.032869][ T5874] nzxt-smart2 0003:1E71:2009.0004: unknown main item tag 0x0
[  113.035821][ T5874] nzxt-smart2 0003:1E71:2009.0004: unknown main item tag 0x0
[  113.041084][ T7968] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.753: bad orphan inode 11862016
[  113.041732][ T5874] nzxt-smart2 0003:1E71:2009.0004: unknown main item tag 0x0
[  113.050485][ T5874] nzxt-smart2 0003:1E71:2009.0004: unknown main item tag 0x0
[  113.052033][ T7968] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  113.055436][ T5874] nzxt-smart2 0003:1E71:2009.0004: unknown main item tag 0x0
[  113.064536][ T5874] nzxt-smart2 0003:1E71:2009.0004: hidraw0: USB HID v0.05 Device [HID 1e71:2009] on usb-dummy_hcd.5-1/input0
[  113.067869][ T7968] ext4 filesystem being mounted at /71/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.229021][    C1] usb 6-1: input irq status -75 received
[  113.433225][ T6231] usb 6-1: USB disconnect, device number 3
[  113.642624][ T5846] Bluetooth: hci0: command tx timeout
[  113.924080][ T7268] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  114.207067][ T7989] ip6tnl1: entered promiscuous mode
[  114.249891][ T7985] loop4: detected capacity change from 0 to 32768
[  114.257356][ T7985] 
[  114.257356][ T7985]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  114.257356][ T7985] 
[  114.267284][ T7985] read_mapping_page failed!
[  114.269322][ T7985] ERROR: (device loop4): txCommit: 
[  114.269322][ T7985] 
[  114.294430][ T4611] 
[  114.294430][ T4611]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  114.294430][ T4611] 
[  114.298832][ T4611] 
[  114.298832][ T4611]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  114.298832][ T4611] 
[  114.305156][  T115] 
[  114.305156][  T115]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  114.305156][  T115] 
[  114.317933][ T7268] 
[  114.317933][ T7268]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  114.317933][ T7268] 
[  114.322634][ T7268] 
[  114.322634][ T7268]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  114.322634][ T7268] 
[  114.497060][ T7995] loop5: detected capacity change from 0 to 32768
[  114.506059][ T7995] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.764 (7995)
[  114.532966][ T7995] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  114.537195][ T7995] BTRFS info (device loop5): using sha256 (sha256-lib) checksum algorithm
[  114.596511][   T26] BTRFS warning (device loop5): checksum verify failed on logical 5312512 mirror 1 wanted 0xad3491f02143bbdffac915d60d465609ae738cf44bd4edc228323e9c632ebcf6 found 0x80f5410847985e965fbe378d2cc0b7b491f66c0fe18024e7ed51cf90855c56a9 level 0
[  114.622620][ T7995] BTRFS error (device loop5 state C): failed to load root csum
[  114.630214][ T7995] BTRFS error (device loop5 state C): open_ctree failed: -5
[  115.005060][ T8024] loop5: detected capacity change from 0 to 40427
[  115.273161][ T8024] F2FS-fs (loop5): invalid crc value
[  115.298535][ T8024] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  115.302684][ T8024] F2FS-fs (loop5): Start checkpoint disabled!
[  115.307011][ T8024] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  115.389572][   T33] audit: type=1800 audit(1755868890.180:9): pid=8032 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.769" name="file1" dev="loop5" ino=10 res=0 errno=0
[  115.404120][ T5846] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  115.408091][ T5846] Bluetooth: hci1: Injecting HCI hardware error event
[  115.410758][ T5846] Bluetooth: hci1: hardware error 0x00
[  115.426423][ T8032] syz.5.769: attempt to access beyond end of device
[  115.426423][ T8032] loop5: rw=2049, sector=77824, nr_sectors = 984 limit=40427
[  115.549937][ T8038] 9pnet: p9_errstr2errno: server reported unknown error @cF	S+
[  115.646487][   T52] wlan1: Trigger new scan to find an IBSS to join
[  115.722450][ T5236] Bluetooth: hci0: command tx timeout
[  115.788818][ T8044] bridge1: entered promiscuous mode
[  115.793275][  T723] kworker/u10:3: attempt to access beyond end of device
[  115.793275][  T723] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  115.798148][  T723] CPU: 1 UID: 0 PID: 723 Comm: kworker/u10:3 Not tainted syzkaller #0 PREEMPT(full) 
[  115.798160][  T723] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  115.798166][  T723] Workqueue: writeback wb_workfn (flush-7:5)
[  115.798179][  T723] Call Trace:
[  115.798182][  T723]  <TASK>
[  115.798186][  T723]  dump_stack_lvl+0x189/0x250
[  115.798196][  T723]  ? __pfx_dump_stack_lvl+0x10/0x10
[  115.798204][  T723]  ? __pfx_queue_work_on+0x10/0x10
[  115.798211][  T723]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  115.798247][  T723]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  115.798258][  T723]  f2fs_handle_critical_error+0x37c/0x540
[  115.798270][  T723]  f2fs_write_end_io+0x886/0xb60
[  115.798279][  T723]  __submit_merged_bio+0x27a/0x6a0
[  115.798290][  T723]  __submit_merged_write_cond+0x255/0x530
[  115.798300][  T723]  f2fs_write_data_pages+0x261d/0x3000
[  115.798315][  T723]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  115.798327][  T723]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  115.798340][  T723]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  115.798360][  T723]  ? trace_f2fs_writepages+0x7f/0x200
[  115.798369][  T723]  ? f2fs_write_node_pages+0x478/0x6e0
[  115.798379][  T723]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  115.798388][  T723]  ? f2fs_update_inode+0x13d9/0x2620
[  115.798397][  T723]  ? f2fs_write_inode+0x3fb/0x5f0
[  115.798406][  T723]  ? __pfx_f2fs_balance_fs+0x10/0x10
[  115.798415][  T723]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  115.798426][  T723]  do_writepages+0x32e/0x550
[  115.798435][  T723]  ? unwind_next_frame+0xa5/0x2390
[  115.798446][  T723]  __writeback_single_inode+0x145/0xff0
[  115.798455][  T723]  ? do_raw_spin_unlock+0x4d/0x240
[  115.798464][  T723]  writeback_sb_inodes+0x6c7/0x1010
[  115.798475][  T723]  ? fprop_reflect_period_percpu+0x6b/0x330
[  115.798486][  T723]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  115.798501][  T723]  ? rcu_is_watching+0x15/0xb0
[  115.798509][  T723]  wb_writeback+0x43b/0xaf0
[  115.798519][  T723]  ? queue_io+0x341/0x590
[  115.798527][  T723]  ? __pfx_wb_writeback+0x10/0x10
[  115.798537][  T723]  ? rcu_is_watching+0x15/0xb0
[  115.798544][  T723]  wb_workfn+0x409/0xef0
[  115.798553][  T723]  ? __pfx_wb_workfn+0x10/0x10
[  115.798559][  T723]  ? rcu_is_watching+0x15/0xb0
[  115.798566][  T723]  ? rcu_is_watching+0x15/0xb0
[  115.798573][  T723]  ? process_scheduled_works+0x9ef/0x17b0
[  115.798580][  T723]  ? rcu_is_watching+0x15/0xb0
[  115.798586][  T723]  ? lock_acquire+0x5f/0x360
[  115.798598][  T723]  ? rcu_is_watching+0x15/0xb0
[  115.798604][  T723]  ? process_scheduled_works+0x9ef/0x17b0
[  115.798610][  T723]  ? process_scheduled_works+0x9ef/0x17b0
[  115.798617][  T723]  process_scheduled_works+0xae1/0x17b0
[  115.798628][  T723]  ? __pfx_process_scheduled_works+0x10/0x10
[  115.798637][  T723]  worker_thread+0x8a0/0xda0
[  115.798644][  T723]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  115.798654][  T723]  ? __kthread_parkme+0x7b/0x200
[  115.798663][  T723]  kthread+0x711/0x8a0
[  115.798671][  T723]  ? __pfx_worker_thread+0x10/0x10
[  115.798678][  T723]  ? __pfx_kthread+0x10/0x10
[  115.798686][  T723]  ? _raw_spin_unlock_irq+0x23/0x50
[  115.798694][  T723]  ? lockdep_hardirqs_on+0x9c/0x150
[  115.798703][  T723]  ? __pfx_kthread+0x10/0x10
[  115.798711][  T723]  ret_from_fork+0x3fc/0x770
[  115.798719][  T723]  ? __pfx_ret_from_fork+0x10/0x10
[  115.798726][  T723]  ? __switch_to_asm+0x39/0x70
[  115.798735][  T723]  ? __switch_to_asm+0x33/0x70
[  115.798743][  T723]  ? __pfx_kthread+0x10/0x10
[  115.798751][  T723]  ret_from_fork_asm+0x1a/0x30
[  115.798762][  T723]  </TASK>
[  115.798765][  T723] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  116.128938][ T8062] netlink: 20 bytes leftover after parsing attributes in process `syz.0.785'.
[  117.354055][ T8105] loop5: detected capacity change from 0 to 40427
[  117.357971][ T8119] loop4: detected capacity change from 0 to 40427
[  117.374050][ T8119] F2FS-fs (loop4): invalid crc value
[  117.375663][ T8105] F2FS-fs (loop5): invalid crc value
[  117.423118][ T8119] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  117.427742][ T8119] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  117.462464][ T8105] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  117.472186][ T7268] syz-executor: attempt to access beyond end of device
[  117.472186][ T7268] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  117.473892][ T8105] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[  117.481760][ T7268] CPU: 0 UID: 0 PID: 7268 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  117.481777][ T7268] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  117.481785][ T7268] Call Trace:
[  117.481790][ T7268]  <TASK>
[  117.481796][ T7268]  dump_stack_lvl+0x189/0x250
[  117.481816][ T7268]  ? __pfx_dump_stack_lvl+0x10/0x10
[  117.481830][ T7268]  ? __pfx_queue_work_on+0x10/0x10
[  117.481842][ T7268]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  117.481858][ T7268]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  117.481876][ T7268]  f2fs_handle_critical_error+0x37c/0x540
[  117.481896][ T7268]  f2fs_write_end_io+0x886/0xb60
[  117.481914][ T7268]  __submit_merged_bio+0x27a/0x6a0
[  117.481932][ T7268]  __submit_merged_write_cond+0x255/0x530
[  117.481950][ T7268]  f2fs_write_data_pages+0x261d/0x3000
[  117.481978][ T7268]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  117.482030][ T7268]  ? __mod_zone_page_state+0xd7/0x140
[  117.482051][ T7268]  ? folios_put_refs+0x560/0x640
[  117.482068][ T7268]  ? __pfx_folios_put_refs+0x10/0x10
[  117.482080][ T7268]  ? rcu_is_watching+0x15/0xb0
[  117.482093][ T7268]  ? lru_add+0xa2f/0xd80
[  117.482105][ T7268]  ? lru_add+0x198/0xd80
[  117.482117][ T7268]  ? do_raw_spin_lock+0x121/0x290
[  117.482135][ T7268]  ? do_raw_spin_unlock+0x4d/0x240
[  117.482150][ T7268]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  117.482167][ T7268]  do_writepages+0x32e/0x550
[  117.482183][ T7268]  ? rcu_is_watching+0x15/0xb0
[  117.482196][ T7268]  ? do_raw_spin_unlock+0x4d/0x240
[  117.482254][ T7268]  filemap_fdatawrite+0x199/0x240
[  117.482272][ T7268]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  117.482301][ T7268]  ? rcu_is_watching+0x15/0xb0
[  117.482314][ T7268]  ? do_raw_spin_unlock+0x4d/0x240
[  117.482329][ T7268]  f2fs_sync_dirty_inodes+0x31f/0x830
[  117.482354][ T7268]  f2fs_write_checkpoint+0x95a/0x1df0
[  117.482375][ T7268]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  117.482402][ T7268]  ? kill_f2fs_super+0x298/0x6c0
[  117.482416][ T7268]  kill_f2fs_super+0x2c3/0x6c0
[  117.482431][ T7268]  ? __pfx_kill_f2fs_super+0x10/0x10
[  117.482441][ T7268]  ? radix_tree_delete_item+0x2b6/0x400
[  117.482460][ T7268]  ? shrinker_free+0x2ce/0x3e0
[  117.482474][ T7268]  deactivate_locked_super+0xbc/0x130
[  117.482489][ T7268]  cleanup_mnt+0x425/0x4c0
[  117.482500][ T5846] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  117.482505][ T7268]  task_work_run+0x1d4/0x260
[  117.482522][ T7268]  ? __pfx_task_work_run+0x10/0x10
[  117.482536][ T7268]  ? __x64_sys_umount+0x122/0x160
[  117.482552][ T7268]  ? __pfx___x64_sys_umount+0x10/0x10
[  117.482568][ T7268]  ? rcu_is_watching+0x15/0xb0
[  117.482580][ T7268]  exit_to_user_mode_loop+0xec/0x110
[  117.482597][ T7268]  do_syscall_64+0x2bd/0x3b0
[  117.482614][ T7268]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.482626][ T7268]  ? exc_page_fault+0x9f/0xf0
[  117.482642][ T7268]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.482654][ T7268] RIP: 0033:0x7fbac6b8ff17
[  117.482665][ T7268] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  117.482677][ T7268] RSP: 002b:00007ffeed427628 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  117.482691][ T7268] RAX: 0000000000000000 RBX: 00007fbac6c11c05 RCX: 00007fbac6b8ff17
[  117.482700][ T7268] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffeed4276e0
[  117.482707][ T7268] RBP: 00007ffeed4276e0 R08: 0000000000000000 R09: 0000000000000000
[  117.482715][ T7268] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffeed428770
[  117.482724][ T7268] R13: 00007fbac6c11c05 R14: 000000000001ca64 R15: 00007ffeed4287b0
[  117.482738][ T7268]  </TASK>
[  117.491874][ T7268] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  118.030316][ T8145] loop5: detected capacity change from 0 to 256
[  118.033826][ T8145] exfat: Deprecated parameter 'namecase'
[  118.036413][ T8145] exfat: Deprecated parameter 'utf8'
[  118.043194][ T8145] exFAT-fs (loop5): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6d3f72e, utbl_chksum : 0xe619d30d)
[  118.147790][ T2206] Process accounting resumed
[  118.229107][ T8160] loop5: detected capacity change from 0 to 1024
[  118.233427][ T8160] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  118.274673][ T8166] netlink: 8 bytes leftover after parsing attributes in process `syz.0.802'.
[  118.885949][ T8180] 9pnet_fd: Insufficient options for proto=fd
[  118.903267][ T8182] netlink: 8 bytes leftover after parsing attributes in process `syz.4.809'.
[  118.906853][ T8182] openvswitch: netlink: push_nsh: missing base or metadata attributes
[  118.909720][ T8182] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  118.929918][ T8184] loop4: detected capacity change from 0 to 8
[  118.935046][ T8184] SQUASHFS error: Unable to read inode 0x6
[  119.146517][ T8186] loop4: detected capacity change from 0 to 256
[  119.149735][ T8186] exfat: Deprecated parameter 'utf8'
[  119.165091][ T8186] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x40a90196, utbl_chksum : 0xe619d30d)
[  120.162405][ T5889] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  120.202424][ T5874] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  120.312484][ T5889] usb 5-1: Using ep0 maxpacket: 16
[  120.315649][ T5889] usb 5-1: config 2 has an invalid interface number: 196 but max is 1
[  120.318748][ T5889] usb 5-1: config 2 has 1 interface, different from the descriptor's value: 2
[  120.321747][ T5889] usb 5-1: config 2 has no interface number 0
[  120.324867][ T5889] usb 5-1: config 2 interface 196 has no altsetting 0
[  120.329939][ T5889] usb 5-1: New USB device found, idVendor=04b4, idProduct=6831, bcdDevice=88.56
[  120.334129][ T5889] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  120.337528][ T5889] usb 5-1: Product: syz
[  120.339414][ T5889] usb 5-1: Manufacturer: syz
[  120.341342][ T5889] usb 5-1: SerialNumber: syz
[  120.352517][ T5874] usb 1-1: Using ep0 maxpacket: 16
[  120.356999][ T5874] usb 1-1: unable to get BOS descriptor or descriptor too short
[  120.361216][ T5874] usb 1-1: config 9 has an invalid interface number: 136 but max is 0
[  120.365642][ T5874] usb 1-1: config 9 has no interface number 0
[  120.368154][ T5874] usb 1-1: config 9 interface 136 altsetting 7 bulk endpoint 0x5 has invalid maxpacket 64
[  120.373344][ T5874] usb 1-1: config 9 interface 136 has no altsetting 0
[  120.378504][ T5874] usb 1-1: New USB device found, idVendor=0bfd, idProduct=0128, bcdDevice=b1.e5
[  120.382592][ T5874] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  120.385655][ T5874] usb 1-1: Product: syz
[  120.387068][ T5874] usb 1-1: Manufacturer: syz
[  120.388735][ T5874] usb 1-1: SerialNumber: syz
[  120.392408][ T8219] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  120.608568][ T5874] kvaser_usb 1-1:9.136: error -ENODEV: Cannot get usb endpoint(s)
[  120.619744][ T5874] usb 1-1: USB disconnect, device number 7
[  120.692579][   T52] wlan1: Trigger new scan to find an IBSS to join
[  121.330243][ T8226] netlink: 12 bytes leftover after parsing attributes in process `syz.0.829'.
[  121.422902][ T8230] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  121.595586][ T8109] wlan1: Creating new IBSS network, BSSID d2:98:c7:cd:73:1c
[  122.060040][ T5889] ums-cypress 5-1:2.196: USB Mass Storage device detected
[  122.095946][ T5889] usb 5-1: USB disconnect, device number 3
[  122.143597][   T33] audit: type=1326 audit(1755868896.940:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8253 comm="syz.0.842" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08758ebe9 code=0x7ffc0000
[  122.153483][   T33] audit: type=1326 audit(1755868896.940:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8253 comm="syz.0.842" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08758ebe9 code=0x7ffc0000
[  122.161964][   T33] audit: type=1326 audit(1755868896.940:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8253 comm="syz.0.842" exe="/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7fc08758ebe9 code=0x7ffc0000
[  122.173845][   T33] audit: type=1326 audit(1755868896.940:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8253 comm="syz.0.842" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08758ebe9 code=0x7ffc0000
[  122.659321][ T8266] netlink: 52 bytes leftover after parsing attributes in process `syz.4.847'.
[  122.663825][ T8266] netlink: 16 bytes leftover after parsing attributes in process `syz.4.847'.
[  122.667815][ T8266] netlink: 52 bytes leftover after parsing attributes in process `syz.4.847'.
[  122.868889][ T8272] loop4: detected capacity change from 0 to 32768
[  122.871497][ T8272] bcachefs: bch2_fs_parse_param() Error parsing option move_bytes_in_flight: option_value
[  123.167836][ T8295] loop4: detected capacity change from 0 to 256
[  123.171631][ T8297] trusted_key: encrypted_key: hex blob is missing
[  123.188444][ T8295] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  123.196425][ T8295] exFAT-fs (loop4): Medium has reported failures. Some data may be lost.
[  123.200827][ T8295] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  123.248188][   T33] audit: type=1326 audit(1755868898.040:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8306 comm="syz.0.867" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08758ebe9 code=0x7ffc0000
[  123.272470][   T33] audit: type=1326 audit(1755868898.040:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8306 comm="syz.0.867" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08758ebe9 code=0x7ffc0000
[  123.292113][   T33] audit: type=1326 audit(1755868898.050:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8306 comm="syz.0.867" exe="/syz-executor" sig=0 arch=c000003e syscall=137 compat=0 ip=0x7fc08758ebe9 code=0x7ffc0000
[  123.304975][   T33] audit: type=1326 audit(1755868898.050:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8306 comm="syz.0.867" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08758ebe9 code=0x7ffc0000
[  123.325605][   T33] audit: type=1326 audit(1755868898.050:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8306 comm="syz.0.867" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08758ebe9 code=0x7ffc0000
[  123.353743][ T8317] sg_write: data in/out 197440/1 bytes for SCSI command 0xdd-- guessing data in;
[  123.353743][ T8317]    program syz.0.872 not setting count and/or reply_len properly
[  123.431768][ T8328] netlink: 156 bytes leftover after parsing attributes in process `syz.4.877'.
[  123.438042][ T8328] netlink: 12 bytes leftover after parsing attributes in process `syz.4.877'.
[  123.475661][ T8333] ecryptfs_validate_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[  123.480594][ T8333] Error validating options; rc = [-22]
[  123.499562][ T8335] netlink: 8 bytes leftover after parsing attributes in process `syz.4.880'.
[  123.504568][ T8335] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  123.507764][ T8335] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  123.536881][ T8337] netlink: 'syz.4.881': attribute type 11 has an invalid length.
[  123.540249][ T8337] netlink: 36 bytes leftover after parsing attributes in process `syz.4.881'.
[  123.832368][ T6231] usb 5-1: new full-speed USB device number 4 using dummy_hcd
[  123.995978][ T6231] usb 5-1: New USB device found, idVendor=0644, idProduct=800f, bcdDevice=c5.77
[  123.999763][ T6231] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  124.003218][ T6231] usb 5-1: Product: syz
[  124.005017][ T6231] usb 5-1: Manufacturer: syz
[  124.007015][ T6231] usb 5-1: SerialNumber: syz
[  124.010103][ T6231] usb 5-1: config 0 descriptor??
[  124.219556][ T6231] usb 5-1: USB disconnect, device number 4
[  124.853111][ T8354] trusted_key: syz.4.888 sent an empty control message without MSG_MORE.
[  125.442323][ T6231] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  125.592477][ T6231] usb 1-1: Using ep0 maxpacket: 32
[  125.597723][ T6231] usb 1-1: config 0 interface 0 altsetting 128 endpoint 0x2 has an invalid bInterval 0, changing to 7
[  125.602622][ T6231] usb 1-1: config 0 interface 0 has no altsetting 0
[  125.605306][ T6231] usb 1-1: New USB device found, idVendor=1b1c, idProduct=1c09, bcdDevice= 0.00
[  125.612521][ T6231] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  125.617352][ T6231] usb 1-1: config 0 descriptor??
[  126.162781][ T5909] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  126.312601][ T5909] usb 5-1: Using ep0 maxpacket: 16
[  126.316523][ T5909] usb 5-1: config 0 has an invalid interface number: 251 but max is 0
[  126.319868][ T5909] usb 5-1: config 0 has no interface number 0
[  126.322961][ T5909] usb 5-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[  126.327061][ T5909] usb 5-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  126.333498][ T5909] usb 5-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  126.337282][ T5909] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  126.340537][ T5909] usb 5-1: Product: syz
[  126.343323][ T5909] usb 5-1: Manufacturer: syz
[  126.345253][ T5909] usb 5-1: SerialNumber: syz
[  126.348663][ T5909] usb 5-1: config 0 descriptor??
[  126.351318][ T8381] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  126.354684][ T8381] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  126.387697][ T6231] corsair-psu 0003:1B1C:1C09.0005: hidraw0: USB HID v4.08 Device [HID 1b1c:1c09] on usb-dummy_hcd.0-1/input0
[  126.561770][ T8381] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  126.566535][ T8381] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  126.788628][ T6231] corsair-psu 0003:1B1C:1C09.0005: unable to query firmware (-71)
[  126.792978][ T6231] corsair-psu 0003:1B1C:1C09.0005: probe with driver corsair-psu failed with error -71
[  126.797360][ T6231] usb 1-1: USB disconnect, device number 8
[  126.972766][ T5909] asix 5-1:0.251 (unnamed net_device) (uninitialized): Interface mode not supported by driver
[  126.977216][ T5909] asix 5-1:0.251: probe with driver asix failed with error -524
[  127.176345][ T6231] usb 5-1: USB disconnect, device number 5
[  127.957207][ T8403] loop4: detected capacity change from 0 to 512
[  127.987923][ T8403] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.993594][ T8403] ext4 filesystem being mounted at /131/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  128.005864][ T8403] EXT4-fs: Ignoring removed orlov option
[  128.009459][ T8403] EXT4-fs: can't change dax mount option while remounting
[  128.024996][ T7268] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.091501][ T8410] loop4: detected capacity change from 0 to 4096
[  128.121951][   T33] audit: type=1800 audit(1755868902.910:19): pid=8410 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.907" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop4" ino=34 res=0 errno=0
[  128.411215][ T8429] netlink: 4 bytes leftover after parsing attributes in process `syz.0.915'.
[  128.562529][    T9] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  128.726918][    T9] usb 5-1: Using ep0 maxpacket: 32
[  128.738502][    T9] usb 5-1: config 0 interface 0 has no altsetting 0
[  128.759830][    T9] usb 5-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  128.765451][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  128.770837][    T9] usb 5-1: Product: syz
[  128.774805][    T9] usb 5-1: Manufacturer: syz
[  128.779648][    T9] usb 5-1: SerialNumber: syz
[  128.806379][    T9] usb 5-1: config 0 descriptor??
[  129.213284][    T9] gs_usb 5-1:0.0: Configuring for 1 interfaces
[  130.077504][ T5889] usb 5-1: USB disconnect, device number 6
[  130.786606][ T8482] loop4: detected capacity change from 0 to 1024
[  132.061610][ T8493] Zero length message leads to an empty skb
[  132.290989][ T8507] loop4: detected capacity change from 0 to 4096
[  132.299892][ T8507] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512).
[  132.409037][ T8511] loop4: detected capacity change from 0 to 164
[  132.422974][ T8511] isofs_fill_super: root inode is not a directory. Corrupted media?
[  132.605885][ T1362] ieee802154 phy0 wpan0: encryption failed: -22
[  132.623208][ T8513] loop4: detected capacity change from 0 to 40427
[  132.628283][ T8513] F2FS-fs (loop4): Small segment_count (9 < 1 * 24)
[  132.632161][ T8513] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  132.661700][ T8513] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  132.668935][ T8513] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  132.674893][ T8513] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  132.688952][   T33] audit: type=1800 audit(1755868907.480:20): pid=8513 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.947" name="file1" dev="loop4" ino=10 res=0 errno=0
[  132.720666][ T7268] syz-executor: attempt to access beyond end of device
[  132.720666][ T7268] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  132.726943][ T7268] CPU: 0 UID: 0 PID: 7268 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  132.726962][ T7268] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  132.726970][ T7268] Call Trace:
[  132.726975][ T7268]  <TASK>
[  132.726980][ T7268]  dump_stack_lvl+0x189/0x250
[  132.727000][ T7268]  ? __pfx_dump_stack_lvl+0x10/0x10
[  132.727013][ T7268]  ? __pfx_queue_work_on+0x10/0x10
[  132.727026][ T7268]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  132.727043][ T7268]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  132.727059][ T7268]  f2fs_handle_critical_error+0x37c/0x540
[  132.727103][ T7268]  f2fs_write_end_io+0x886/0xb60
[  132.727121][ T7268]  __submit_merged_bio+0x27a/0x6a0
[  132.727137][ T7268]  __submit_merged_write_cond+0x255/0x530
[  132.727151][ T7268]  f2fs_write_data_pages+0x261d/0x3000
[  132.727175][ T7268]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  132.727202][ T7268]  ? __mod_zone_page_state+0xd7/0x140
[  132.727220][ T7268]  ? folios_put_refs+0x560/0x640
[  132.727236][ T7268]  ? __pfx_folios_put_refs+0x10/0x10
[  132.727247][ T7268]  ? rcu_is_watching+0x15/0xb0
[  132.727259][ T7268]  ? lru_add+0xa2f/0xd80
[  132.727270][ T7268]  ? lru_add+0x198/0xd80
[  132.727283][ T7268]  ? folio_batch_move_lru+0x319/0x3a0
[  132.727297][ T7268]  ? filemap_get_folios_tag+0xed/0x630
[  132.727307][ T7268]  ? rcu_is_watching+0x15/0xb0
[  132.727319][ T7268]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  132.727335][ T7268]  do_writepages+0x32e/0x550
[  132.727350][ T7268]  ? rcu_is_watching+0x15/0xb0
[  132.727362][ T7268]  ? do_raw_spin_unlock+0x4d/0x240
[  132.727377][ T7268]  filemap_fdatawrite+0x199/0x240
[  132.727393][ T7268]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  132.727419][ T7268]  ? rcu_is_watching+0x15/0xb0
[  132.727430][ T7268]  ? do_raw_spin_unlock+0x4d/0x240
[  132.727444][ T7268]  f2fs_sync_dirty_inodes+0x31f/0x830
[  132.727459][ T7268]  f2fs_write_checkpoint+0x95a/0x1df0
[  132.727476][ T7268]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  132.727505][ T7268]  ? rcu_is_watching+0x15/0xb0
[  132.727516][ T7268]  ? kill_f2fs_super+0x298/0x6c0
[  132.727528][ T7268]  kill_f2fs_super+0x2c3/0x6c0
[  132.727540][ T7268]  ? __pfx_kill_f2fs_super+0x10/0x10
[  132.727550][ T7268]  ? radix_tree_delete_item+0x2b6/0x400
[  132.727568][ T7268]  ? shrinker_free+0x2ce/0x3e0
[  132.727581][ T7268]  deactivate_locked_super+0xbc/0x130
[  132.727595][ T7268]  cleanup_mnt+0x425/0x4c0
[  132.727608][ T7268]  task_work_run+0x1d4/0x260
[  132.727625][ T7268]  ? __pfx_task_work_run+0x10/0x10
[  132.727639][ T7268]  ? __x64_sys_umount+0x122/0x160
[  132.727654][ T7268]  ? __pfx___x64_sys_umount+0x10/0x10
[  132.727669][ T7268]  ? rcu_is_watching+0x15/0xb0
[  132.727680][ T7268]  exit_to_user_mode_loop+0xec/0x110
[  132.727696][ T7268]  do_syscall_64+0x2bd/0x3b0
[  132.727711][ T7268]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.727723][ T7268]  ? exc_page_fault+0x9f/0xf0
[  132.727738][ T7268]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.727748][ T7268] RIP: 0033:0x7fbac6b8ff17
[  132.727760][ T7268] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  132.727772][ T7268] RSP: 002b:00007ffeed427628 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  132.727786][ T7268] RAX: 0000000000000000 RBX: 00007fbac6c11c05 RCX: 00007fbac6b8ff17
[  132.727794][ T7268] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffeed4276e0
[  132.727801][ T7268] RBP: 00007ffeed4276e0 R08: 0000000000000000 R09: 0000000000000000
[  132.727808][ T7268] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffeed428770
[  132.727815][ T7268] R13: 00007fbac6c11c05 R14: 00000000000205f4 R15: 00007ffeed4287b0
[  132.727830][ T7268]  </TASK>
[  132.727835][ T7268] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  133.116746][ T8531] loop4: detected capacity change from 0 to 32768
[  133.119902][ T8531] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.948 (8531)
[  133.128289][ T8531] BTRFS info (device loop4): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  133.135742][ T8531] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm
[  133.175255][ T8531] BTRFS info (device loop4): enabling ssd optimizations
[  133.178399][ T8531] BTRFS info (device loop4): enabling free space tree
[  133.187179][   T33] audit: type=1800 audit(1755868907.980:21): pid=8531 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.948" name="file1" dev="loop4" ino=263 res=0 errno=0
[  133.200830][ T7268] BTRFS info (device loop4): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  133.342318][ T5889] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  133.406241][ T8563] netlink: 48 bytes leftover after parsing attributes in process `syz.4.956'.
[  133.495774][ T5889] usb 1-1: New USB device found, idVendor=07fd, idProduct=0004, bcdDevice=26.50
[  133.499577][ T5889] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  133.504094][ T5889] usb 1-1: Product: syz
[  133.505879][ T5889] usb 1-1: Manufacturer: syz
[  133.507805][ T5889] usb 1-1: SerialNumber: syz
[  133.510860][ T5889] usb 1-1: config 0 descriptor??
[  133.518233][ T5889] usb 1-1: Waiting for MOTU Microbook II to boot up...
[  133.521159][ T5889] usb 1-1: failed setting the sample rate for Motu MicroBook II: -22
[  133.525803][ T5889] snd-usb-audio 1-1:0.0: probe with driver snd-usb-audio failed with error -22
[  133.549527][ T8565] loop4: detected capacity change from 0 to 32768
[  133.553971][ T8565] bcachefs (/dev/loop4): error validating superblock: Invalid superblock section replicas_v0: invalid device 1 in entry (unknown data_type 224): 1/245 [0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 4 5 5 6 10 11 11 11 26 33 34 45 45 56 80]
[  133.553971][ T8565] replicas_v0 (size 40):
[  133.553971][ T8565] (unknown data_type 224): 15 [0 0 0 0 0 0 255 255 255 255 255 255 255 255 255] (unknown data_type 224): 245 [5 0 0 0 0 1 0 0 0 0 0 0 0 80 0 0 0 10 0 0 0 0 0 0 0 0 0 0 0 56 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 34 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 45 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0
[  133.554107][ T8565] bcachefs: bch2_fs_get_tree() error: invalid_replicas_entry
[  133.724462][ T6231] usb 1-1: USB disconnect, device number 9
[  134.349361][ T8578] netlink: 'syz.0.963': attribute type 1 has an invalid length.
[  134.383721][ T5236] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  134.387022][ T5236] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  134.390256][ T5236] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  134.394431][ T5236] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  134.397907][ T5236] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  134.470042][ T8581] chnl_net:caif_netlink_parms(): no params data found
[  134.496605][   T12] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.568800][   T12] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.584026][ T8581] bridge0: port 1(bridge_slave_0) entered blocking state
[  134.587619][ T8581] bridge0: port 1(bridge_slave_0) entered disabled state
[  134.596183][ T8581] bridge_slave_0: entered allmulticast mode
[  134.601666][ T8581] bridge_slave_0: entered promiscuous mode
[  134.613799][ T8581] bridge0: port 2(bridge_slave_1) entered blocking state
[  134.627672][ T8581] bridge0: port 2(bridge_slave_1) entered disabled state
[  134.630757][ T8581] bridge_slave_1: entered allmulticast mode
[  134.640125][ T8581] bridge_slave_1: entered promiscuous mode
[  134.650277][   T12] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.660995][ T8606] tc_dump_action: action bad kind
[  134.700764][ T8581] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  134.716222][ T8581] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  134.724355][   T12] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.754610][ T8581] team0: Port device team_slave_0 added
[  134.760703][ T8581] team0: Port device team_slave_1 added
[  134.823852][ T8581] batman_adv: batadv0: Adding interface: batadv_slave_0
[  134.826903][ T8581] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  134.839024][ T8625] loop4: detected capacity change from 0 to 4096
[  134.839863][ T8581] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  134.848352][ T8581] batman_adv: batadv0: Adding interface: batadv_slave_1
[  134.854756][ T8581] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  134.867448][ T8625] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512).
[  134.878794][ T8581] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  134.886790][ T8625] ntfs3(loop4): Failed to initialize $Extend/$Reparse.
[  134.951673][ T8581] hsr_slave_0: entered promiscuous mode
[  134.958855][ T8581] hsr_slave_1: entered promiscuous mode
[  134.961293][ T8581] debugfs: 'hsr0' already exists in 'hsr'
[  134.964554][ T8581] Cannot create hsr debugfs directory
[  134.993972][   T12] bridge_slave_1: left allmulticast mode
[  135.002563][   T12] bridge_slave_1: left promiscuous mode
[  135.005128][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  135.025857][   T12] bridge_slave_0: left allmulticast mode
[  135.028309][   T12] bridge_slave_0: left promiscuous mode
[  135.031600][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  135.156015][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  135.160781][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  135.165803][   T12] bond0 (unregistering): Released all slaves
[  135.266546][ T8581] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  135.271453][ T8581] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  135.279940][ T8581] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  135.286541][ T8581] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  135.310874][ T8653] netlink: 495 bytes leftover after parsing attributes in process `syz.0.992'.
[  135.332749][ T5909] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  135.402191][   T12] hsr_slave_0: left promiscuous mode
[  135.408613][   T12] hsr_slave_1: left promiscuous mode
[  135.411209][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  135.419291][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  135.424094][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  135.427260][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  135.436386][   T12] veth1_macvtap: left promiscuous mode
[  135.438433][   T12] veth0_macvtap: left promiscuous mode
[  135.440682][   T12] veth1_vlan: left promiscuous mode
[  135.443100][   T12] veth0_vlan: left promiscuous mode
[  135.522651][ T5909] usb 5-1: Using ep0 maxpacket: 16
[  135.526147][ T5909] usb 5-1: config 0 has an invalid interface number: 142 but max is 0
[  135.529153][ T5909] usb 5-1: config 0 has no interface number 0
[  135.534582][ T5909] usb 5-1: New USB device found, idVendor=1bcf, idProduct=0b40, bcdDevice=a0.f1
[  135.537684][ T5909] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  135.540512][ T5909] usb 5-1: Product: syz
[  135.541916][ T5909] usb 5-1: Manufacturer: syz
[  135.544598][ T5909] usb 5-1: SerialNumber: syz
[  135.549354][ T5909] usb 5-1: config 0 descriptor??
[  135.570438][   T12] team0 (unregistering): Port device team_slave_1 removed
[  135.834864][ T5909] usb 5-1: Found UVC 0.00 device syz (1bcf:0b40)
[  135.837540][ T5909] usb 5-1: Forcing UVC version to 1.0a
[  135.839868][ T5909] usb 5-1: No valid video chain found.
[  135.859771][   T12] team0 (unregistering): Port device team_slave_0 removed
[  135.862450][ T5909] usb 5-1: USB disconnect, device number 7
[  135.916189][ T8581] 8021q: adding VLAN 0 to HW filter on device bond0
[  135.924027][ T8581] 8021q: adding VLAN 0 to HW filter on device team0
[  135.928514][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[  135.930998][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[  135.949117][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[  135.951484][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[  136.026762][ T8581] 8021q: adding VLAN 0 to HW filter on device batadv0
[  136.110316][ T8581] veth0_vlan: entered promiscuous mode
[  136.114829][ T8581] veth1_vlan: entered promiscuous mode
[  136.130933][ T8581] veth0_macvtap: entered promiscuous mode
[  136.134671][ T8581] veth1_macvtap: entered promiscuous mode
[  136.141077][ T8581] batman_adv: batadv0: Interface activated: batadv_slave_0
[  136.147068][ T8581] batman_adv: batadv0: Interface activated: batadv_slave_1
[  136.151767][ T5856] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  136.160557][ T5856] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  136.165897][ T5856] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  136.176931][ T5856] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  136.194062][ T8109] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  136.200068][ T8109] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  136.209391][ T8109] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  136.213713][ T8109] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  136.442423][ T5236] Bluetooth: hci0: command tx timeout
[  136.493111][ T8716] loop4: detected capacity change from 0 to 4096
[  136.509729][ T8716] NILFS (loop4): invalid segment: Checksum error in segment payload
[  136.514708][ T8720] netlink: 'syz.0.1003': attribute type 1 has an invalid length.
[  136.515088][ T8716] NILFS (loop4): trying rollback from an earlier position
[  136.525231][ T8716] NILFS (loop4): recovery complete
[  136.527224][ T8720] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1003'.
[  136.680826][ T8730] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1008'.
[  136.684155][ T8730] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1008'.
[  136.687295][ T8730] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1008'.
[  136.690461][ T8730] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1008'.
[  136.694098][ T8730] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1008'.
[  136.833106][ T5874] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  136.982465][ T5874] usb 5-1: Using ep0 maxpacket: 32
[  136.986582][ T5874] usb 5-1: config 0 has an invalid interface number: 184 but max is 0
[  136.990027][ T5874] usb 5-1: config 0 has no interface number 0
[  136.993458][ T5874] usb 5-1: config 0 interface 184 has no altsetting 0
[  136.997489][ T5874] usb 5-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  137.000947][ T5874] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  137.004832][ T5874] usb 5-1: Product: syz
[  137.006403][ T5874] usb 5-1: Manufacturer: syz
[  137.008192][ T5874] usb 5-1: SerialNumber: syz
[  137.010924][ T5874] usb 5-1: config 0 descriptor??
[  137.014550][ T5874] smsc75xx v1.0.0
[  137.138860][ T8737] netlink: 51 bytes leftover after parsing attributes in process `syz.6.1011'.
[  137.315016][ T8741] loop6: detected capacity change from 0 to 40427
[  137.345796][ T8741] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  137.349899][ T8741] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  137.621799][ T5874] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[  137.626520][ T5874] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  138.044830][ T5874] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000010: -71
[  138.057547][ T5874] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to write HW_CFG: -71
[  138.061567][ T5874] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[  138.066694][ T5874] smsc75xx 5-1:0.184: probe with driver smsc75xx failed with error -71
[  138.071549][ T5874] usb 5-1: USB disconnect, device number 8
[  138.077437][   T33] audit: type=1326 audit(1755868912.870:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8763 comm="syz.0.1020" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08758ebe9 code=0x7ffc0000
[  138.098576][   T33] audit: type=1326 audit(1755868912.870:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8763 comm="syz.0.1020" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08758ebe9 code=0x7ffc0000
[  138.121785][   T33] audit: type=1326 audit(1755868912.870:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8763 comm="syz.0.1020" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc08758ebe9 code=0x7ffc0000
[  138.160555][   T33] audit: type=1326 audit(1755868912.870:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8763 comm="syz.0.1020" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08758ebe9 code=0x7ffc0000
[  138.193553][   T33] audit: type=1326 audit(1755868912.870:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8763 comm="syz.0.1020" exe="/syz-executor" sig=0 arch=c000003e syscall=271 compat=0 ip=0x7fc08758ebe9 code=0x7ffc0000
[  138.202185][   T33] audit: type=1326 audit(1755868912.880:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8763 comm="syz.0.1020" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08758ebe9 code=0x7ffc0000
[  138.254525][   T33] audit: type=1326 audit(1755868912.880:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8763 comm="syz.0.1020" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08758ebe9 code=0x7ffc0000
[  138.289373][   T33] audit: type=1326 audit(1755868912.880:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8763 comm="syz.0.1020" exe="/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fc08758ebe9 code=0x7ffc0000
[  138.319275][   T33] audit: type=1326 audit(1755868912.880:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8763 comm="syz.0.1020" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08758ebe9 code=0x7ffc0000
[  138.331197][ T8758] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  138.349237][ T8758] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  138.352707][   T33] audit: type=1326 audit(1755868912.880:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8763 comm="syz.0.1020" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08758ebe9 code=0x7ffc0000
[  138.361527][   T33] audit: type=1326 audit(1755868912.880:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8763 comm="syz.0.1020" exe="/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fc08758ebe9 code=0x7ffc0000
[  138.419534][   T33] audit: type=1326 audit(1755868912.880:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8763 comm="syz.0.1020" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08758ebe9 code=0x7ffc0000
[  138.462399][   T33] audit: type=1326 audit(1755868912.880:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8763 comm="syz.0.1020" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc08758ebe9 code=0x7ffc0000
[  138.484961][   T33] audit: type=1326 audit(1755868912.880:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8763 comm="syz.0.1020" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc08758d550 code=0x7ffc0000
[  138.523373][ T5236] Bluetooth: hci0: command tx timeout
[  138.793118][ T8781] loop6: detected capacity change from 0 to 2048
[  138.868640][ T8782] Bluetooth: MGMT ver 1.23
[  139.031359][ T8781] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.064222][ T8781] EXT4-fs (loop6): stripe (248) is not aligned with cluster size (16), stripe is disabled
[  139.076555][ T8781] EXT4-fs (loop6): can't enable nombcache during remount
[  139.101393][ T8581] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.785410][ T8830] loop6: detected capacity change from 0 to 256
[  139.797165][ T8830] FAT-fs (loop6): Directory bread(block 64) failed
[  139.799827][ T8830] FAT-fs (loop6): Directory bread(block 65) failed
[  139.803631][ T8830] FAT-fs (loop6): Directory bread(block 66) failed
[  139.806104][ T8830] FAT-fs (loop6): Directory bread(block 67) failed
[  139.809343][ T8830] FAT-fs (loop6): Directory bread(block 68) failed
[  139.814213][ T8830] FAT-fs (loop6): Directory bread(block 69) failed
[  139.816804][ T8830] FAT-fs (loop6): Directory bread(block 70) failed
[  139.819663][ T8830] FAT-fs (loop6): Directory bread(block 71) failed
[  139.824151][ T8830] FAT-fs (loop6): Directory bread(block 72) failed
[  139.827383][ T8830] FAT-fs (loop6): Directory bread(block 73) failed
[  140.416114][ T5846] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  140.419361][ T5846] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  140.422058][ T5846] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  140.425492][ T5846] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  140.428529][ T5846] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  140.487616][ T8858] chnl_net:caif_netlink_parms(): no params data found
[  140.514565][ T8858] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.517177][ T8858] bridge0: port 1(bridge_slave_0) entered disabled state
[  140.520032][ T8858] bridge_slave_0: entered allmulticast mode
[  140.524841][ T8858] bridge_slave_0: entered promiscuous mode
[  140.528483][ T8858] bridge0: port 2(bridge_slave_1) entered blocking state
[  140.531493][ T8858] bridge0: port 2(bridge_slave_1) entered disabled state
[  140.535030][ T8858] bridge_slave_1: entered allmulticast mode
[  140.538215][ T8858] bridge_slave_1: entered promiscuous mode
[  140.553978][ T8858] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  140.559708][ T8858] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  140.577871][ T8858] team0: Port device team_slave_0 added
[  140.581747][ T8858] team0: Port device team_slave_1 added
[  140.597451][ T8858] batman_adv: batadv0: Adding interface: batadv_slave_0
[  140.600436][ T8858] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  140.611441][ T5236] Bluetooth: hci0: command tx timeout
[  140.616401][ T8858] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  140.621748][ T8858] batman_adv: batadv0: Adding interface: batadv_slave_1
[  140.626800][ T8858] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  140.638838][ T8858] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  140.669389][ T8858] hsr_slave_0: entered promiscuous mode
[  140.672564][ T8858] hsr_slave_1: entered promiscuous mode
[  140.675414][ T8858] debugfs: 'hsr0' already exists in 'hsr'
[  140.678110][ T8858] Cannot create hsr debugfs directory
[  140.783477][ T8858] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  140.791456][ T8858] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  140.797848][ T8858] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  140.803235][ T8858] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  140.887811][ T8858] bridge0: port 2(bridge_slave_1) entered blocking state
[  140.888081][ T8878] loop6: detected capacity change from 0 to 1024
[  140.890782][ T8858] bridge0: port 2(bridge_slave_1) entered forwarding state
[  140.890979][ T8858] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.899550][ T8858] bridge0: port 1(bridge_slave_0) entered forwarding state
[  140.900739][ T8878] EXT4-fs: Ignoring removed orlov option
[  140.948686][ T8878] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  140.949560][ T8858] 8021q: adding VLAN 0 to HW filter on device bond0
[  140.968970][ T8109] bridge0: port 1(bridge_slave_0) entered disabled state
[  140.973352][ T8109] bridge0: port 2(bridge_slave_1) entered disabled state
[  140.985581][ T8858] 8021q: adding VLAN 0 to HW filter on device team0
[  140.994809][ T8109] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.997809][ T8109] bridge0: port 1(bridge_slave_0) entered forwarding state
[  141.008860][ T8109] bridge0: port 2(bridge_slave_1) entered blocking state
[  141.011462][ T8581] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.011991][ T8109] bridge0: port 2(bridge_slave_1) entered forwarding state
[  141.163915][ T8858] 8021q: adding VLAN 0 to HW filter on device batadv0
[  141.310689][ T8858] veth0_vlan: entered promiscuous mode
[  141.321067][ T8858] veth1_vlan: entered promiscuous mode
[  141.334115][ T8858] veth0_macvtap: entered promiscuous mode
[  141.337653][ T8858] veth1_macvtap: entered promiscuous mode
[  141.348873][ T8858] batman_adv: batadv0: Interface activated: batadv_slave_0
[  141.354469][ T8858] batman_adv: batadv0: Interface activated: batadv_slave_1
[  141.360066][ T5856] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  141.365628][ T5856] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  141.369676][ T5856] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  141.375131][ T5856] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  141.401739][ T4497] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  141.406215][ T4497] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  141.415355][ T4497] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  141.418475][ T4497] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  141.933587][ T6231] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  142.084080][ T6231] usb 1-1: config 0 has an invalid interface number: 241 but max is 1
[  142.087149][ T6231] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  142.090726][ T6231] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 2
[  142.093800][ T6231] usb 1-1: config 0 has no interface number 0
[  142.096270][ T6231] usb 1-1: config 0 interface 241 altsetting 5 endpoint 0xD has an invalid bInterval 22, changing to 8
[  142.100542][ T6231] usb 1-1: config 0 interface 241 has no altsetting 0
[  142.104434][ T6231] usb 1-1: New USB device found, idVendor=2c42, idProduct=1608, bcdDevice=bd.4b
[  142.108135][ T6231] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  142.112732][ T6231] usb 1-1: config 0 descriptor??
[  142.319322][ T6231] usb 1-1: string descriptor 0 read error: -71
[  142.321800][ T6231] f81232 1-1:0.241: f81534a converter detected
[  142.326646][ T6231] f81534a ttyUSB0: f81232_set_register failed status: -71
[  142.329120][ T6231] f81534a ttyUSB0: probe with driver f81534a failed with error -5
[  142.333333][ T6231] usb 1-1: USB disconnect, device number 10
[  142.336366][ T6231] f81232 1-1:0.241: device disconnected
[  142.442420][ T5236] Bluetooth: hci1: command tx timeout
[  142.682522][ T5236] Bluetooth: hci0: command tx timeout
[  142.800455][ T5856] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.917496][ T5856] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.008459][ T5856] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.112044][ T5856] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.293100][ T5856] bridge_slave_1: left allmulticast mode
[  143.301560][ T5856] bridge_slave_1: left promiscuous mode
[  143.313646][ T5856] bridge0: port 2(bridge_slave_1) entered disabled state
[  143.351625][ T5856] bridge_slave_0: left allmulticast mode
[  143.361561][ T5856] bridge_slave_0: left promiscuous mode
[  143.377680][ T5856] bridge0: port 1(bridge_slave_0) entered disabled state
[  144.146333][ T8960] input: syz0 as /devices/virtual/input/input9
[  144.172581][ T5856] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  144.180606][ T5856] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  144.187475][ T5856] bond0 (unregistering): Released all slaves
[  144.350712][ T5856] : left promiscuous mode
[  144.514781][    T9] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  144.523125][ T5236] Bluetooth: hci1: command tx timeout
[  144.609812][ T5856] hsr_slave_0: left promiscuous mode
[  144.621788][ T5856] hsr_slave_1: left promiscuous mode
[  144.626157][ T5856] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  144.629432][ T5856] batman_adv: batadv0: Removing interface: batadv_slave_0
[  144.634910][ T5856] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  144.638352][ T5856] batman_adv: batadv0: Removing interface: batadv_slave_1
[  144.662565][    T9] usb 8-1: Using ep0 maxpacket: 16
[  144.666539][    T9] usb 8-1: config index 0 descriptor too short (expected 16456, got 72)
[  144.670344][    T9] usb 8-1: config 0 has an invalid interface number: 125 but max is 1
[  144.675290][ T5856] veth1_macvtap: left promiscuous mode
[  144.677663][ T5856] veth0_macvtap: left promiscuous mode
[  144.691550][    T9] usb 8-1: config 0 has an invalid interface number: 125 but max is 1
[  144.706419][    T9] usb 8-1: config 0 has an invalid interface number: 125 but max is 1
[  144.720234][    T9] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 2
[  144.728941][ T8991] loop6: detected capacity change from 0 to 512
[  144.731750][    T9] usb 8-1: config 0 has no interface number 0
[  144.741559][    T9] usb 8-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64
[  144.749537][ T8991] EXT4-fs: inline encryption not supported
[  144.751851][ T8991] EXT4-fs: Ignoring removed mblk_io_submit option
[  144.767721][    T9] usb 8-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0
[  144.773430][ T8991] EXT4-fs (loop6): Test dummy encryption mode enabled
[  144.784402][    T9] usb 8-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0
[  144.798070][ T8991] EXT4-fs (loop6): orphan cleanup on readonly fs
[  144.805120][    T9] usb 8-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  144.810447][    T9] usb 8-1: config 0 interface 125 has no altsetting 0
[  144.813609][ T8991] EXT4-fs error (device loop6): ext4_orphan_get:1392: comm syz.6.1098: inode #13: comm syz.6.1098: iget: illegal inode #
[  144.819538][ T8991] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.1098: couldn't read orphan inode 13 (err -117)
[  144.827234][    T9] usb 8-1: config 0 interface 125 has no altsetting 2
[  144.834337][    T9] usb 8-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27
[  144.837278][ T8991] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  144.838201][    T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  144.849785][    T9] usb 8-1: Product: syz
[  144.851599][    T9] usb 8-1: Manufacturer: syz
[  144.854460][    T9] usb 8-1: SerialNumber: syz
[  144.854564][ T8991] EXT4-fs (loop6): shut down requested (2)
[  144.861804][    T9] usb 8-1: config 0 descriptor??
[  144.873878][    T9] usb 8-1: selecting invalid altsetting 2
[  144.877870][ T8581] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.983114][ T5856] team0 (unregistering): Port device team_slave_1 removed
[  145.009459][ T5856] team0 (unregistering): Port device team_slave_0 removed
[  145.079340][    C0] usb 8-1: async_complete: urb error -71
[  145.081789][    C0] usb 8-1: async_complete: urb error -71
[  145.084145][    C0] usb 8-1: async_complete: urb error -71
[  145.086531][    C0] usb 8-1: async_complete: urb error -71
[  145.090483][    T9] get_1284_register: usb error -71
[  145.098734][    T9] uss720 8-1:0.125: probe with driver uss720 failed with error -71
[  145.115457][ T8998] loop6: detected capacity change from 0 to 4096
[  145.118495][    T9] usb 8-1: USB disconnect, device number 2
[  145.138518][ T8998] ntfs3(loop6): MFT: r=19, expect seq=1 instead of a48d!
[  145.141173][ T8998] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[  145.496842][ T9037] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1116'.
[  146.400377][ T9032] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  146.595940][ T9070] loop6: detected capacity change from 0 to 4096
[  146.599220][ T9070] EXT4-fs: Ignoring removed mblk_io_submit option
[  146.625017][ T5236] Bluetooth: hci1: command tx timeout
[  146.633748][ T9070] EXT4-fs (loop6): Test dummy encryption mode enabled
[  146.829389][ T9070] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.635987][ T9070] fscrypt (loop6): Missing crypto API support for AES-256-XTS (API name: "xts(aes)")
[  147.853450][ T8581] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.005062][ T9086] loop7: detected capacity change from 0 to 32768
[  148.008108][ T9086] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.1125 (9086)
[  148.023071][ T9086] BTRFS info (device loop7): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  148.046161][ T9086] BTRFS info (device loop7): using crc32c (crc32c-lib) checksum algorithm
[  148.135172][ T9086] BTRFS info (device loop7): enabling ssd optimizations
[  148.144458][ T9086] BTRFS info (device loop7): enabling free space tree
[  148.167037][   T33] kauditd_printk_skb: 33 callbacks suppressed
[  148.167049][   T33] audit: type=1800 audit(1755868922.960:69): pid=9086 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1125" name="file1" dev="loop7" ino=260 res=0 errno=0
[  148.193258][   T33] audit: type=1800 audit(1755868922.980:70): pid=9086 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1125" name="file1" dev="loop7" ino=260 res=0 errno=0
[  148.225330][ T8858] BTRFS info (device loop7): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  148.316475][ T9140] input: syz1 as /devices/virtual/input/input10
[  148.375863][ T9145] loop6: detected capacity change from 0 to 512
[  148.393920][ T9145] EXT4-fs: Ignoring removed nobh option
[  148.413796][ T9145] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  148.456226][ T9145] EXT4-fs error (device loop6): ext4_orphan_get:1392: inode #15: comm syz.6.1138: iget: bad i_size value: 38620345925642
[  148.475601][ T9145] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.1138: couldn't read orphan inode 15 (err -117)
[  148.518522][ T9145] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.558472][ T9125] overlayfs: failed to resolve './file0': -2
[  148.614463][ T5236] Bluetooth: hci1: unexpected event 0x03 length: 1 < 11
[  148.683306][ T5236] Bluetooth: hci1: command tx timeout
[  148.782142][ T9164] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  148.789771][ T9164] batman_adv: batadv0: Adding interface: ip6gretap1
[  148.818099][ T9164] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  148.852374][ T9164] batman_adv: batadv0: Interface activated: ip6gretap1
[  149.000549][ T9180] netlink: 'syz.7.1150': attribute type 1 has an invalid length.
[  149.138234][ T1088] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm kworker/u10:4: bg 0: block 5: invalid block bitmap
[  149.143709][ T1088] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  149.148901][ T1088] EXT4-fs (loop6): This should not happen!! Data will be lost
[  149.148901][ T1088] 
[  149.158071][ T1088] EXT4-fs (loop6): Total free blocks count 0
[  149.160686][ T1088] EXT4-fs (loop6): Free/Dirty block details
[  149.164134][ T1088] EXT4-fs (loop6): free_blocks=0
[  149.166384][ T1088] EXT4-fs (loop6): dirty_blocks=11076
[  149.168747][ T1088] EXT4-fs (loop6): Block reservation details
[  149.171517][ T1088] EXT4-fs (loop6): i_reserved_data_blocks=11076
[  149.261237][ T1092] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28
[  149.431359][ T9193] syz.0.1154: attempt to access beyond end of device
[  149.431359][ T9193] nbd0: rw=4096, sector=2, nr_sectors = 2 limit=0
[  149.437579][ T9193] EXT4-fs (nbd0): unable to read superblock
[  149.451941][ T9193] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1154'.
[  149.689804][ T9197] 9pnet_fd: Insufficient options for proto=fd
[  149.894879][ T9201] loop6: detected capacity change from 0 to 256
[  150.395384][ T9217] loop7: detected capacity change from 0 to 164
[  150.406162][ T9217] iso9660: Corrupted directory entry in block 2 of inode 1920
[  150.483727][ T9226] loop7: detected capacity change from 0 to 1024
[  150.508446][ T4611] hfsplus: b-tree write err: -5, ino 4
[  150.652305][ T6231] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  150.733569][   T24] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  150.781747][ T9242] netlink: 1041 bytes leftover after parsing attributes in process `syz.7.1177'.
[  150.817065][ T6231] usb 1-1: Using ep0 maxpacket: 32
[  150.820750][ T6231] usb 1-1: unable to get BOS descriptor or descriptor too short
[  150.824851][ T6231] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 32
[  150.833025][ T6231] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  150.836899][ T6231] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  150.840276][ T6231] usb 1-1: Product: С
[  150.844273][ T6231] usb 1-1: Manufacturer: 긨탞鿝ﭘ켛괆勰ǿ㵖鼜뤱Ώ㼛䂨⸓삻䓑⏽﻽煌㈃쏛䙴풰୭鷅䅣퇥
[  150.853382][ T6231] cdc_ncm 1-1:1.0: CDC Union missing and no IAD found
[  150.855810][ T6231] cdc_ncm 1-1:1.0: bind() failure
[  150.862950][ T6231] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[  150.865584][ T6231] cdc_ncm 1-1:1.1: bind() failure
[  150.885502][   T24] usb 7-1: Using ep0 maxpacket: 16
[  150.892974][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  150.912993][   T24] usb 7-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  150.916357][   T24] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  150.919261][   T24] usb 7-1: Product: syz
[  150.920701][   T24] usb 7-1: Manufacturer: syz
[  150.924232][   T24] usb 7-1: SerialNumber: syz
[  150.926474][   T24] usb 7-1: config 0 descriptor??
[  150.931722][   T24] hub 7-1:0.0: bad descriptor, ignoring hub
[  150.935591][   T24] hub 7-1:0.0: probe with driver hub failed with error -5
[  150.939232][   T24] input: syz syz as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/input/input11
[  151.026837][ T9252] loop7: detected capacity change from 0 to 40427
[  151.033344][ T9252] F2FS-fs (loop7): Image doesn't support compression
[  151.038722][ T9252] F2FS-fs (loop7): build fault injection rate: 690
[  151.044105][ T9252] F2FS-fs (loop7): invalid crc value
[  151.066582][ T9252] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  151.069977][ T9252] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  151.073997][   T24] usb 1-1: USB disconnect, device number 11
[  151.124350][ T8858] syz-executor: attempt to access beyond end of device
[  151.124350][ T8858] loop7: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  151.131594][ T8858] CPU: 1 UID: 0 PID: 8858 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  151.131615][ T8858] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  151.131622][ T8858] Call Trace:
[  151.131628][ T8858]  <TASK>
[  151.131633][ T8858]  dump_stack_lvl+0x189/0x250
[  151.131654][ T8858]  ? __pfx_dump_stack_lvl+0x10/0x10
[  151.131669][ T8858]  ? __pfx_queue_work_on+0x10/0x10
[  151.131682][ T8858]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  151.131697][ T8858]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  151.131715][ T8858]  f2fs_handle_critical_error+0x37c/0x540
[  151.131735][ T8858]  f2fs_write_end_io+0x886/0xb60
[  151.131752][ T8858]  __submit_merged_bio+0x27a/0x6a0
[  151.131770][ T8858]  __submit_merged_write_cond+0x255/0x530
[  151.131788][ T8858]  f2fs_write_data_pages+0x261d/0x3000
[  151.131817][ T8858]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  151.131848][ T8858]  ? __mod_zone_page_state+0xd7/0x140
[  151.131868][ T8858]  ? folios_put_refs+0x560/0x640
[  151.131885][ T8858]  ? __pfx_folios_put_refs+0x10/0x10
[  151.131897][ T8858]  ? rcu_is_watching+0x15/0xb0
[  151.131938][ T8858]  ? lru_add+0xa2f/0xd80
[  151.131953][ T8858]  ? lru_add+0x198/0xd80
[  151.131966][ T8858]  ? folio_batch_move_lru+0x319/0x3a0
[  151.131981][ T8858]  ? filemap_get_folios_tag+0xed/0x630
[  151.131992][ T8858]  ? rcu_is_watching+0x15/0xb0
[  151.132005][ T8858]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  151.132023][ T8858]  do_writepages+0x32e/0x550
[  151.132041][ T8858]  ? rcu_is_watching+0x15/0xb0
[  151.132054][ T8858]  ? do_raw_spin_unlock+0x4d/0x240
[  151.132070][ T8858]  filemap_fdatawrite+0x199/0x240
[  151.132087][ T8858]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  151.132115][ T8858]  ? rcu_is_watching+0x15/0xb0
[  151.132138][ T8858]  ? do_raw_spin_unlock+0x4d/0x240
[  151.132154][ T8858]  f2fs_sync_dirty_inodes+0x31f/0x830
[  151.132171][ T8858]  f2fs_write_checkpoint+0x95a/0x1df0
[  151.132191][ T8858]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  151.132237][ T8858]  ? kill_f2fs_super+0x298/0x6c0
[  151.132253][ T8858]  kill_f2fs_super+0x2c3/0x6c0
[  151.132266][ T8858]  ? __pfx_kill_f2fs_super+0x10/0x10
[  151.132277][ T8858]  ? radix_tree_delete_item+0x2b6/0x400
[  151.132295][ T8858]  ? shrinker_free+0x2ce/0x3e0
[  151.132310][ T8858]  deactivate_locked_super+0xbc/0x130
[  151.132325][ T8858]  cleanup_mnt+0x425/0x4c0
[  151.132340][ T8858]  task_work_run+0x1d4/0x260
[  151.132359][ T8858]  ? __pfx_task_work_run+0x10/0x10
[  151.132373][ T8858]  ? __x64_sys_umount+0x122/0x160
[  151.132389][ T8858]  ? __pfx___x64_sys_umount+0x10/0x10
[  151.132405][ T8858]  ? rcu_is_watching+0x15/0xb0
[  151.132418][ T8858]  exit_to_user_mode_loop+0xec/0x110
[  151.132435][ T8858]  do_syscall_64+0x2bd/0x3b0
[  151.132453][ T8858]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.132465][ T8858]  ? exc_page_fault+0x9f/0xf0
[  151.132480][ T8858]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.132492][ T8858] RIP: 0033:0x7f4eef98ff17
[  151.132503][ T8858] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  151.132514][ T8858] RSP: 002b:00007fffc7753988 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  151.132530][ T8858] RAX: 0000000000000000 RBX: 00007f4eefa11c05 RCX: 00007f4eef98ff17
[  151.132538][ T8858] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fffc7753a40
[  151.132546][ T8858] RBP: 00007fffc7753a40 R08: 0000000000000000 R09: 0000000000000000
[  151.132553][ T8858] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fffc7754ad0
[  151.132561][ T8858] R13: 00007f4eefa11c05 R14: 0000000000024dd6 R15: 00007fffc7754b10
[  151.132576][ T8858]  </TASK>
[  151.267963][ T8858] F2FS-fs (loop7): Stopped filesystem due to reason: 3
[  151.443062][ T9263] netlink: 284 bytes leftover after parsing attributes in process `syz.7.1185'.
[  151.445259][ T5874] usb 7-1: USB disconnect, device number 2
[  151.480830][ T9265] loop7: detected capacity change from 0 to 2048
[  151.490492][ T9265] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  151.506637][ T9265] UDF-fs: error (device loop7): udf_read_inode: (ino 1345) failed !bh
[  152.262413][ T5874] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  152.412313][ T5874] usb 7-1: Using ep0 maxpacket: 32
[  152.415658][ T5874] usb 7-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  152.419285][ T5874] usb 7-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  152.424318][ T5874] usb 7-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  152.427463][ T5874] usb 7-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  152.431025][ T5874] usb 7-1: Product: syz
[  152.433184][ T5874] usb 7-1: Manufacturer: syz
[  152.438697][ T5874] hub 7-1:4.0: USB hub found
[  152.614193][ T9292] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  152.641304][ T5874] hub 7-1:4.0: 2 ports detected
[  152.746982][ T9301] netlink: 'syz.7.1202': attribute type 2 has an invalid length.
[  152.843342][ T5874] hub 7-1:4.0: hub_hub_status failed (err = -71)
[  152.845587][ T5874] hub 7-1:4.0: config failed, can't get hub status (err -71)
[  152.873446][ T5874] usb 7-1: USB disconnect, device number 3
[  152.883624][ T2206] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  153.052379][ T2206] usb 1-1: Using ep0 maxpacket: 32
[  153.055847][ T2206] usb 1-1: config 0 has an invalid interface number: 51 but max is 0
[  153.058932][ T2206] usb 1-1: config 0 has no interface number 0
[  153.063312][ T2206] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  153.066839][ T2206] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  153.078177][ T2206] usb 1-1: Product: syz
[  153.079996][ T2206] usb 1-1: Manufacturer: syz
[  153.081866][ T2206] usb 1-1: SerialNumber: syz
[  153.087444][ T2206] usb 1-1: config 0 descriptor??
[  153.091337][ T2206] quatech2 1-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  153.313405][ T2206] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  153.325970][ T2206] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  153.712410][    C0] usb 1-1: qt2_read_bulk_callback - non-zero urb status: -71
[  153.717452][ T2206] usb 1-1: USB disconnect, device number 12
[  153.733513][ T2206] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  153.750278][ T2206] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  153.775036][ T2206] quatech2 1-1:0.51: device disconnected
[  153.938462][ T9337] loop6: detected capacity change from 0 to 512
[  153.941488][ T9337] EXT4-fs: Ignoring removed orlov option
[  153.948128][ T9337] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  153.956536][ T9337] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002]
[  153.965361][ T9337] EXT4-fs error (device loop6): ext4_iget_extra_inode:5104: inode #15: comm syz.6.1218: corrupted in-inode xattr: e_value size too large
[  153.972672][ T9337] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.1218: couldn't read orphan inode 15 (err -117)
[  153.979874][ T9337] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  154.040827][ T8581] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.158485][ T9343] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1220'.
[  154.355537][ T9351] loop6: detected capacity change from 0 to 256
[  154.379596][ T9351] FAT-fs (loop6): Directory bread(block 64) failed
[  154.388701][ T9351] FAT-fs (loop6): Directory bread(block 65) failed
[  154.391001][ T9351] FAT-fs (loop6): Directory bread(block 66) failed
[  154.403568][ T9351] FAT-fs (loop6): Directory bread(block 67) failed
[  154.412394][ T9351] FAT-fs (loop6): Directory bread(block 68) failed
[  154.414865][ T9351] FAT-fs (loop6): Directory bread(block 69) failed
[  154.419537][ T9351] FAT-fs (loop6): Directory bread(block 70) failed
[  154.421922][ T9351] FAT-fs (loop6): Directory bread(block 71) failed
[  154.427420][ T9351] FAT-fs (loop6): Directory bread(block 72) failed
[  154.427447][ T9356] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  154.429733][ T9351] FAT-fs (loop6): Directory bread(block 73) failed
[  154.585474][   T33] audit: type=1326 audit(1755868929.380:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9364 comm="syz.7.1230" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eef98ebe9 code=0x7ffc0000
[  154.603980][   T33] audit: type=1326 audit(1755868929.380:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9364 comm="syz.7.1230" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eef98ebe9 code=0x7ffc0000
[  154.627101][   T33] audit: type=1326 audit(1755868929.380:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9364 comm="syz.7.1230" exe="/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f4eef98ebe9 code=0x7ffc0000
[  154.645284][   T33] audit: type=1326 audit(1755868929.380:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9364 comm="syz.7.1230" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eef98ebe9 code=0x7ffc0000
[  154.664752][   T33] audit: type=1326 audit(1755868929.380:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9364 comm="syz.7.1230" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eef98ebe9 code=0x7ffc0000
[  154.682774][   T33] audit: type=1326 audit(1755868929.380:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9364 comm="syz.7.1230" exe="/syz-executor" sig=0 arch=c000003e syscall=224 compat=0 ip=0x7f4eef98ebe9 code=0x7ffc0000
[  154.701936][   T33] audit: type=1326 audit(1755868929.380:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9364 comm="syz.7.1230" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eef98ebe9 code=0x7ffc0000
[  154.739985][   T33] audit: type=1326 audit(1755868929.380:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9364 comm="syz.7.1230" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eef98ebe9 code=0x7ffc0000
[  154.756311][ T9376] netlink: 'syz.6.1235': attribute type 46 has an invalid length.
[  154.769549][ T9376] netlink: 55 bytes leftover after parsing attributes in process `syz.6.1235'.
[  154.800509][ T9378] loop7: detected capacity change from 0 to 2048
[  154.823236][ T9378] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  155.596851][ T9430] cgroup: fork rejected by pids controller in /syz6
[  155.723165][ T9466] netlink: 132 bytes leftover after parsing attributes in process `syz.6.1255'.
[  155.953980][ T9477] loop7: detected capacity change from 0 to 8192
[  155.989991][ T9492] loop6: detected capacity change from 0 to 512
[  156.006349][ T9492] ext4: Unknown parameter 'euid'
[  156.741294][ T9516] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1270'.
[  156.745601][ T9516] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1270'.
[  156.749404][ T9516] netlink: 'syz.7.1270': attribute type 7 has an invalid length.
[  157.349511][ T9538] loop6: detected capacity change from 0 to 256
[  157.562383][ T5236] Bluetooth: hci0: Opcode 0x206a failed: -110
[  157.564517][ T5236] Bluetooth: hci0: command 0x206a tx timeout
[  158.142152][ T9551] loop6: detected capacity change from 0 to 32768
[  158.145626][ T9551] XFS: noikeep mount option is deprecated.
[  158.168016][ T9551] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  158.210505][ T9551] XFS (loop6): Ending clean mount
[  158.216277][ T9551] XFS (loop6): Quotacheck needed: Please wait.
[  158.225045][ T9551] XFS (loop6): Quotacheck: Done.
[  158.305553][ T8581] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  159.323773][ T5874] ip6_tunnel: ip6gretap2 xmit: Local address not yet configured!
[  159.409600][ T9631] netlink: 'syz.7.1315': attribute type 21 has an invalid length.
[  159.413025][ T9631] netlink: 128 bytes leftover after parsing attributes in process `syz.7.1315'.
[  159.415967][ T9631] netlink: 'syz.7.1315': attribute type 5 has an invalid length.
[  159.419074][ T9631] netlink: 'syz.7.1315': attribute type 6 has an invalid length.
[  159.421730][ T9631] netlink: 3 bytes leftover after parsing attributes in process `syz.7.1315'.
[  159.458213][   T12] ip6_tunnel: ip6gretap2 xmit: Local address not yet configured!
[  159.501860][ T5874] ip6_tunnel: ip6gretap2 xmit: Local address not yet configured!
[  160.504046][ T9672] loop7: detected capacity change from 0 to 32768
[  160.510633][ T9672] (syz.7.1333,9672,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  160.516377][ T9672] (syz.7.1333,9672,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  160.525286][ T9672] JBD2: Ignoring recovery information on journal
[  160.533754][   T12] ip6_tunnel: ip6gretap2 xmit: Local address not yet configured!
[  160.537272][   T12] ip6_tunnel: ip6gretap2 xmit: Local address not yet configured!
[  160.550456][ T9672] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[  160.587427][ T8858] ocfs2: Unmounting device (7,7) on (node local)
[  160.692576][ T5236] Bluetooth: hci3: command 0x1003 tx timeout
[  160.695163][ T5846] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  160.967920][  T791] ip6_tunnel: ip6gretap2 xmit: Local address not yet configured!
[  161.250129][ T9694] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  161.620359][ T9706] futex_wake_op: syz.6.1344 tries to shift op by 36; fix this program
[  161.646496][   T33] audit: type=1800 audit(1755868936.440:79): pid=9706 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1344" name="bus" dev="overlay" ino=673 res=0 errno=0
[  161.715130][ T9709] netlink: 'syz.0.1349': attribute type 21 has an invalid length.
[  161.718517][ T9709] netlink: 'syz.0.1349': attribute type 1 has an invalid length.
[  161.904278][ T9720] loop7: detected capacity change from 0 to 32768
[  161.930198][ T9720] XFS (loop7): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  161.949767][ T9720] XFS (loop7): Ending clean mount
[  161.953593][ T9720] XFS (loop7): Quotacheck needed: Please wait.
[  161.964462][ T9720] XFS (loop7): Quotacheck: Done.
[  161.991333][ T8858] XFS (loop7): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  162.169449][ T9744] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1360'.
[  162.219932][ T9741] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1360'.
[  162.265274][ T5856] netdevsim netdevsim6 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  162.270411][ T5856] netdevsim netdevsim6 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  162.279261][ T5856] netdevsim netdevsim6 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  162.285343][ T5856] netdevsim netdevsim6 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  162.482738][ T2206] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  162.542465][ T6231] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  162.644462][ T2206] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  162.648363][ T2206] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  162.652199][ T2206] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  162.655659][ T2206] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  162.660219][ T9746] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  162.666233][ T2206] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  162.693007][ T6231] usb 7-1: Using ep0 maxpacket: 8
[  162.697434][ T6231] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  162.700724][ T6231] usb 7-1: config 0 has no interface number 0
[  162.703461][ T6231] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  162.706611][ T6231] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  162.710151][ T6231] usb 7-1: New USB device found, idVendor=0af0, idProduct=6751, bcdDevice=75.8b
[  162.713964][ T6231] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  162.717972][ T6231] usb 7-1: config 0 descriptor??
[  162.722670][ T6231] hso 7-1:0.1: Failed to find BULK IN ep
[  162.868691][   T24] usb 8-1: USB disconnect, device number 3
[  162.927392][  T791] usb 7-1: USB disconnect, device number 4
[  163.465617][ T9765] loop7: detected capacity change from 0 to 128
[  163.475603][ T9765] EXT4-fs (loop7): Test dummy encryption mode enabled
[  163.487520][ T9765] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  163.500332][ T9765] ext4 filesystem being mounted at /107/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  163.589950][ T9765] fscrypt: AES-256-XTS using implementation "xts(ecb(aes-fixed-time))"
[  164.304612][ T9787] netlink: 5852 bytes leftover after parsing attributes in process `syz.0.1375'.
[  164.307726][ T9787] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  164.536384][ T8858] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  164.538313][ T9800] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false
[  164.591521][ T9804] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(3)
[  164.594240][ T9804] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  164.609909][ T9804] vhci_hcd vhci_hcd.0: Device attached
[  164.615310][ T9808] new mount options do not match the existing superblock, will be ignored
[  164.620640][ T9805] usbip_core: unknown command
[  164.624182][ T9805] vhci_hcd: unknown pdu 0
[  164.626099][ T9805] usbip_core: unknown command
[  164.628755][ T5856] vhci_hcd: stop threads
[  164.628892][ T9808] cgroup: option or name mismatch, new: 0x4 "", old: 0x0 ""
[  164.630633][ T5856] vhci_hcd: release socket
[  164.630644][ T5856] vhci_hcd: disconnect device
[  164.682371][    C1] ip6_tunnel: ip6gretap2 xmit: Local address not yet configured!
[  164.820261][ T9816] loop6: detected capacity change from 0 to 32768
[  164.824158][ T9816] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.1388 (9816)
[  164.841890][ T9816] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  164.846386][ T9816] BTRFS info (device loop6): using crc32c (crc32c-lib) checksum algorithm
[  164.972375][ T9816] BTRFS info (device loop6): turning off barriers
[  164.975212][ T9816] BTRFS info (device loop6): enabling free space tree
[  164.977407][ T9816] BTRFS info (device loop6): use zstd compression, level 3
[  165.142344][   T10] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  165.195397][ T9816] BTRFS warning (device loop6 state M): remount supports changing free space tree only from RO to RW
[  165.200098][ T9816] BTRFS info (device loop6 state M): disabling log replay at mount time
[  165.203764][ T9816] BTRFS info (device loop6 state M): force clearing of disk cache
[  165.207173][ T9816] BTRFS info (device loop6 state M): ignoring bad roots
[  165.210082][ T9816] BTRFS info (device loop6 state M): ignoring data csums
[  165.213238][ T9816] BTRFS info (device loop6 state M): ignoring meta csums
[  165.216293][ T9816] BTRFS info (device loop6 state M): ignoring unknown super block flags
[  165.232646][ T8581] BTRFS info (device loop6): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  165.304732][   T10] usb 1-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  165.312923][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 31, changing to 7
[  165.313702][   T33] audit: type=1326 audit(1755868940.110:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9857 comm="syz.7.1401" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eef98ebe9 code=0x7ffc0000
[  165.322314][   T10] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  165.338112][   T33] audit: type=1326 audit(1755868940.120:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9857 comm="syz.7.1401" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eef98ebe9 code=0x7ffc0000
[  165.352014][   T33] audit: type=1326 audit(1755868940.120:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9857 comm="syz.7.1401" exe="/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7f4eef98ebe9 code=0x7ffc0000
[  165.356622][   T10] usb 1-1: language id specifier not provided by device, defaulting to English
[  165.360265][   T33] audit: type=1326 audit(1755868940.120:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9857 comm="syz.7.1401" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eef98ebe9 code=0x7ffc0000
[  165.381418][   T10] usb 1-1: New USB device found, idVendor=2013, idProduct=0251, bcdDevice=e8.6e
[  165.383456][   T33] audit: type=1326 audit(1755868940.120:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9857 comm="syz.7.1401" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eef98ebe9 code=0x7ffc0000
[  165.387718][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  165.416716][   T10] usb 1-1: Manufacturer: 
[  165.418737][   T10] usb 1-1: SerialNumber: syz
[  165.424269][ T9864] random: crng reseeded on system resumption
[  165.516913][   T10] usb 1-1: config 0 descriptor??
[  165.528216][   T10] em28xx 1-1:0.0: New device   @ 480 Mbps (2013:0251, interface 0, class 0)
[  165.531950][   T10] em28xx 1-1:0.0: Audio interface 0 found (Vendor Class)
[  165.944069][   T10] em28xx 1-1:0.0: unknown em28xx chip ID (0)
[  165.948075][   T10] em28xx 1-1:0.0: Config register raw data: 0xfffffffb
[  165.951228][   T10] em28xx 1-1:0.0: AC97 chip type couldn't be determined
[  165.954956][   T10] em28xx 1-1:0.0: No AC97 audio processor
[  165.959235][   T10] usb 1-1: USB disconnect, device number 13
[  165.961773][   T10] em28xx 1-1:0.0: Disconnecting em28xx
[  165.967722][   T10] em28xx 1-1:0.0: Freeing device
[  166.515882][ T9890] loop6: detected capacity change from 0 to 32768
[  166.525684][ T9890] ocfs2: Mounting device (7,6) on (node local, slot 0) with writeback data mode.
[  166.551745][ T8581] ocfs2: Unmounting device (7,6) on (node local)
[  166.855743][ T9900] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  166.978130][ T9916] loop7: detected capacity change from 0 to 16
[  166.981150][ T9916] erofs (device loop7): mounted with root inode @ nid 36.
[  166.988824][ T9916] erofs (device loop7): read error -22 @ 43 of nid 36
[  167.100634][ T9920] loop6: detected capacity change from 0 to 32768
[  167.104703][ T9920] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.1428 (9920)
[  167.224727][ T9924] loop7: detected capacity change from 0 to 40427
[  167.228740][ T9924] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12
[  167.231833][ T9924] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  167.236495][ T9924] F2FS-fs (loop7): invalid crc value
[  167.257206][ T9920] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  167.261578][ T9920] BTRFS info (device loop6): using crc32c (crc32c-lib) checksum algorithm
[  167.292078][ T9924] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  167.296703][ T9924] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  167.299086][ T9924] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  167.477797][ T9920] BTRFS info (device loop6): checking UUID tree
[  167.485524][ T9920] BTRFS info (device loop6): enabling ssd optimizations
[  167.488317][ T9920] BTRFS info (device loop6): turning on async discard
[  167.491179][ T9920] BTRFS info (device loop6): enabling free space tree
[  167.501999][ T9920] BTRFS info (device loop6): trying to use backup root at mount time
[  167.506421][ T9920] BTRFS info (device loop6): force zstd compression, level 3
[  167.531974][ T8581] BTRFS info (device loop6): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  167.692159][ T9957] loop6: detected capacity change from 0 to 32768
[  167.696026][ T9963] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  167.709144][ T9957] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.1433 (9957)
[  167.724969][ T9957] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  167.729090][ T9957] BTRFS info (device loop6): using crc32c (crc32c-lib) checksum algorithm
[  167.763635][ T9957] BTRFS info (device loop6): rebuilding free space tree
[  167.768159][ T9957] BTRFS info (device loop6): allowing degraded mounts
[  167.773641][ T9957] BTRFS info (device loop6): enabling ssd optimizations
[  167.776158][ T9957] BTRFS info (device loop6): enabling free space tree
[  167.778732][ T9957] BTRFS info (device loop6): force clearing of disk cache
[  167.781254][ T9957] BTRFS info (device loop6): use zstd compression, level 3
[  167.796466][ T9957] BTRFS info (device loop6): max_inline set to 0
[  167.808027][ T9985] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  167.821851][ T9985] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  167.827151][ T9985] bond0 (unregistering): Released all slaves
[  167.829401][ T8581] BTRFS info (device loop6): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  168.051893][T10000] 8021q: VLANs not supported on lo
[  168.105457][T10007] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1450'.
[  168.122967][ T5846] Bluetooth: hci1: command tx timeout
[  168.159825][T10008] netlink: 'syz.7.1451': attribute type 10 has an invalid length.
[  168.165564][T10008] team0: Failed to send port change of device team_slave_0 via netlink (err -105)
[  168.171685][T10008] team0: Failed to send options change via netlink (err -105)
[  168.176426][T10008] team0: Failed to send port change of device team_slave_0 via netlink (err -105)
[  168.180845][T10008] team0: Port device team_slave_0 removed
[  168.253706][T10015] bond0: Unable to set down delay as MII monitoring is disabled
[  168.270446][T10017] vxcan1: MTU too low for tipc bearer
[  168.272402][T10017] tipc: Enabling of bearer <eth:vxcan1> rejected, failed to enable media
[  168.510258][T10027] loop7: detected capacity change from 0 to 32768
[  168.515475][T10027] (syz.7.1460,10027,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  168.524886][T10027] (syz.7.1460,10027,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  168.530714][T10027] (syz.7.1460,10027,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xcde76f4d, computed 0xb6b5285. Applying ECC.
[  168.540436][T10027] (syz.7.1460,10027,1):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0xcde76f4d, computed 0x2b8ee4d5
[  168.545495][T10027] (syz.7.1460,10027,1):ocfs2_validate_inode_block:1455 ERROR: Checksum failed for dinode 21
[  168.548993][T10027] (syz.7.1460,10027,1):ocfs2_read_locked_inode:597 ERROR: status = -5
[  168.551955][T10027] (syz.7.1460,10027,1):_ocfs2_get_system_file_inode:144 ERROR: status = -5
[  168.554971][T10027] (syz.7.1460,10027,1):ocfs2_init_global_system_inodes:465 ERROR: status = -22
[  168.558269][T10027] (syz.7.1460,10027,1):ocfs2_init_global_system_inodes:467 ERROR: Unable to load system inode 2, possibly corrupt fs?
[  168.558284][T10027] (syz.7.1460,10027,1):ocfs2_init_global_system_inodes:476 ERROR: status = -22
[  168.566683][T10027] (syz.7.1460,10027,1):ocfs2_initialize_super:2198 ERROR: status = -22
[  168.569397][T10027] (syz.7.1460,10027,1):ocfs2_fill_super:1177 ERROR: status = -22
[  168.632355][  T791] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  168.787753][  T791] usb 7-1: Using ep0 maxpacket: 8
[  168.796072][  T791] usb 7-1: New USB device found, idVendor=04a5, idProduct=3003, bcdDevice=3a.b2
[  168.799940][  T791] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  168.807688][  T791] usb 7-1: Product: syz
[  168.810065][  T791] usb 7-1: Manufacturer: syz
[  168.811988][  T791] usb 7-1: SerialNumber: syz
[  168.816451][  T791] usb 7-1: config 0 descriptor??
[  169.022707][  T791] gspca_main: sunplus-2.14.0 probing 04a5:3003
[  169.773225][T10071] loop7: detected capacity change from 0 to 256
[  169.776218][T10071] exfat: Deprecated parameter 'namecase'
[  169.780189][T10071] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  169.921555][T10079] loop7: detected capacity change from 0 to 128
[  170.026458][  T791] gspca_sunplus: reg_w_riv err -71
[  170.028967][  T791] sunplus 7-1:0.0: probe with driver sunplus failed with error -71
[  170.035730][  T791] usb 7-1: USB disconnect, device number 5
[  170.442150][T10094] loop7: detected capacity change from 0 to 32768
[  170.522867][ T5236] Bluetooth: hci2: command 0x0406 tx timeout
[  170.903360][T10111] veth0_to_team: entered promiscuous mode
[  170.905939][T10111] veth0_to_team: entered allmulticast mode
[  171.009493][T10115] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1501'.
[  171.062533][  T791] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  171.196188][T10119] loop7: detected capacity change from 0 to 1024
[  171.201083][T10119] EXT4-fs: Ignoring removed nomblk_io_submit option
[  171.218014][  T791] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  171.228175][T10119] EXT4-fs: Mount option(s) incompatible with ext3
[  171.231198][  T791] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  171.236534][  T791] usb 7-1: New USB device found, idVendor=1e7d, idProduct=2d50, bcdDevice= 0.00
[  171.239974][  T791] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  171.256635][  T791] usb 7-1: config 0 descriptor??
[  171.795444][  T791] kovaplus 0003:1E7D:2D50.0006: unknown main item tag 0x0
[  171.798157][  T791] kovaplus 0003:1E7D:2D50.0006: unknown main item tag 0x0
[  171.800956][  T791] kovaplus 0003:1E7D:2D50.0006: unknown main item tag 0x0
[  171.803897][  T791] kovaplus 0003:1E7D:2D50.0006: unknown main item tag 0x0
[  171.806325][  T791] kovaplus 0003:1E7D:2D50.0006: unknown main item tag 0x0
[  171.809409][  T791] kovaplus 0003:1E7D:2D50.0006: hidraw0: USB HID v0.00 Device [HID 1e7d:2d50] on usb-dummy_hcd.6-1/input0
[  171.854653][T10136] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1510'.
[  172.132806][T10147] loop7: detected capacity change from 0 to 64
[  172.692354][   T10] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  172.704345][  T791] kovaplus 0003:1E7D:2D50.0006: couldn't init struct kovaplus_device
[  172.709596][  T791] kovaplus 0003:1E7D:2D50.0006: couldn't install mouse
[  172.713369][  T791] kovaplus 0003:1E7D:2D50.0006: probe with driver kovaplus failed with error -71
[  172.718561][  T791] usb 7-1: USB disconnect, device number 6
[  172.852461][   T10] usb 8-1: Using ep0 maxpacket: 16
[  172.856118][   T10] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  172.860662][   T10] usb 8-1: config 0 has no interfaces?
[  172.865064][   T10] usb 8-1: New USB device found, idVendor=06be, idProduct=a232, bcdDevice=33.f3
[  172.868097][   T10] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  172.870875][   T10] usb 8-1: Product: syz
[  172.872392][   T10] usb 8-1: Manufacturer: syz
[  172.873977][   T10] usb 8-1: SerialNumber: syz
[  172.876658][   T10] usb 8-1: config 0 descriptor??
[  173.089882][  T791] usb 8-1: USB disconnect, device number 4
[  173.242111][T10158] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1518'.
[  173.315368][T10164] veth1_macvtap: left promiscuous mode
[  173.317487][T10164] macsec0: entered promiscuous mode
[  173.319341][T10164] macsec0: entered allmulticast mode
[  173.324642][T10164] veth1_macvtap: entered promiscuous mode
[  173.326736][T10164] veth1_macvtap: entered allmulticast mode
[  173.328967][T10164] macsec0: left promiscuous mode
[  173.330840][T10164] macsec0: left allmulticast mode
[  173.333616][T10164] veth1_macvtap: left allmulticast mode
[  173.367984][T10167] netlink: 'syz.6.1522': attribute type 4 has an invalid length.
[  173.415675][T10171] netlink: 148 bytes leftover after parsing attributes in process `syz.6.1524'.
[  173.430685][T10171] netlink: 148 bytes leftover after parsing attributes in process `syz.6.1524'.
[  173.562901][    C1] ip6_tunnel: ip6gretap2 xmit: Local address not yet configured!
[  174.329590][T10186] loop6: detected capacity change from 0 to 22
[  174.333077][T10186] MTD: Attempt to mount non-MTD device "/dev/loop6"
[  174.336940][T10186] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  174.633266][T10200] loop6: detected capacity change from 0 to 4096
[  174.636798][T10200] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512).
[  174.652674][T10200] netlink: 56 bytes leftover after parsing attributes in process `syz.6.1536'.
[  174.711341][   T33] audit: type=1326 audit(1755868949.500:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10209 comm="syz.6.1540" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f663e18ebe9 code=0x0
[  174.962956][T10233] overlayfs: failed to create directory ./bus/work (errno: 17); mounting read-only
[  174.966084][T10233] overlayfs: fs on '.' does not support file handles, falling back to index=off,nfs_export=off.
[  175.006158][  T791] IPVS: starting estimator thread 0...
[  175.103070][T10238] IPVS: using max 68 ests per chain, 163200 per kthread
[  175.372465][  T791] usb 1-1: new low-speed USB device number 14 using dummy_hcd
[  175.592484][  T791] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[  175.596131][  T791] usb 1-1: config 179 has no interface number 0
[  175.598835][  T791] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 10
[  175.603066][  T791] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[  175.606633][  T791] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10
[  175.612538][  T791] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 58368, setting to 8
[  175.616570][  T791] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  175.621491][  T791] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  175.626303][  T791] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  175.634577][T10250] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  175.640324][  T791] xpad 1-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  175.647130][  T791] xpad 1-1:179.65: probe with driver xpad failed with error -90
[  175.786623][T10261] loop6: detected capacity change from 0 to 4096
[  175.922023][  T791] usb 1-1: USB disconnect, device number 14
[  176.618367][T10277] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1570'.
[  177.536771][T10287] loop7: detected capacity change from 0 to 256
[  177.540009][T10287] exfat: Deprecated parameter 'utf8'
[  177.562646][T10287] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xd9b3646f, utbl_chksum : 0xe619d30d)
[  179.003887][T10354] netlink: 79 bytes leftover after parsing attributes in process `syz.7.1601'.
[  179.066658][T10350] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(9)
[  179.069488][T10350] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  179.081165][T10357] loop7: detected capacity change from 0 to 2048
[  179.088292][T10350] vhci_hcd vhci_hcd.0: Device attached
[  179.098362][T10352] vhci_hcd: connection closed
[  179.099307][ T5856] vhci_hcd: stop threads
[  179.115187][ T5856] vhci_hcd: release socket
[  179.118810][T10357] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  179.124016][ T5856] vhci_hcd: disconnect device
[  179.909108][T10389] loop6: detected capacity change from 0 to 2048
[  179.930867][T10389] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  180.722295][ T5313] hid-generic 0005:15C2:3010.0007: item fetching failed at offset 0/1
[  180.728156][ T5313] hid-generic 0005:15C2:3010.0007: probe with driver hid-generic failed with error -22
[  180.769400][T10414] loop7: detected capacity change from 0 to 128
[  180.785243][T10417] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1625'.
[  180.832885][T10423] loop7: detected capacity change from 0 to 1764
[  180.954920][T10440] loop6: detected capacity change from 0 to 8
[  180.958215][T10440] unable to read inode lookup table
[  181.058302][T10431] loop7: detected capacity change from 0 to 32768
[  181.075429][T10431] XFS (loop7): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  181.089221][T10431] XFS (loop7): Ending clean mount
[  181.097224][T10431] XFS (loop7): User initiated shutdown received.
[  181.100089][T10431] XFS (loop7): Log I/O Error (0x6) detected at xfs_fs_goingdown+0x71/0x150 (fs/xfs/xfs_fsops.c:476).  Shutting down filesystem.
[  181.105580][T10431] XFS (loop7): Please unmount the filesystem and rectify the problem(s)
[  181.119324][ T8858] XFS (loop7): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  181.133371][   T24] usb 1-1: new full-speed USB device number 15 using dummy_hcd
[  181.290267][T10458] loop7: detected capacity change from 0 to 32768
[  181.293786][   T24] usb 1-1: config 0 has an invalid interface number: 31 but max is 0
[  181.296509][   T24] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  181.310516][   T24] usb 1-1: config 0 has no interface number 0
[  181.324838][   T24] usb 1-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[  181.327923][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  181.330614][   T24] usb 1-1: Product: syz
[  181.332152][   T24] usb 1-1: Manufacturer: syz
[  181.333896][T10458] XFS (loop7): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  181.335529][   T24] usb 1-1: SerialNumber: syz
[  181.339215][   T24] usb 1-1: config 0 descriptor??
[  181.341753][   T24] hub 1-1:0.31: bad descriptor, ignoring hub
[  181.345042][   T24] hub 1-1:0.31: probe with driver hub failed with error -5
[  181.348027][   T24] usb 1-1: Found UVC 0.04 device syz (046d:08c3)
[  181.350187][   T24] uvcvideo 1-1:0.31: Entity type for entity Output 6 was not initialized!
[  181.353323][   T24] usb 1-1: Failed to create links for entity 6
[  181.355592][   T24] usb 1-1: Failed to register entities (-22).
[  181.369738][T10458] XFS (loop7): Ending clean mount
[  181.376989][T10458] XFS (loop7): Quotacheck needed: Please wait.
[  181.395951][T10458] XFS (loop7): Quotacheck: Done.
[  181.397917][T10474] loop6: detected capacity change from 0 to 128
[  181.436242][ T8858] XFS (loop7): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  181.470107][T10476] netdevsim netdevsim6 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  181.477958][T10476] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  181.548832][T10476] netdevsim netdevsim6 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  181.561695][T10476] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  181.608184][T10476] netdevsim netdevsim6 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  181.620617][T10491] loop7: detected capacity change from 0 to 16
[  181.622689][T10476] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  181.628065][T10491] erofs (device loop7): rootino(nid 36) is not a directory(i_mode 16700)
[  181.653050][   T24] usb 1-1: USB disconnect, device number 15
[  181.671922][T10476] netdevsim netdevsim6 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  181.679987][T10476] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  181.727118][ T5856] netdevsim netdevsim6 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  181.730712][ T5856] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  181.739807][ T5856] netdevsim netdevsim6 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  181.743671][ T5856] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  181.751239][ T5856] netdevsim netdevsim6 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  181.751981][T10493] loop7: detected capacity change from 0 to 32768
[  181.756260][ T5856] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  181.757941][T10493] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.1654 (10493)
[  181.768209][T10493] BTRFS info (device loop7): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  181.772738][T10493] BTRFS info (device loop7): using crc32c (crc32c-lib) checksum algorithm
[  181.777043][T10493] BTRFS error (device loop7): nologreplay must be used with ro mount option
[  181.781925][T10493] BTRFS error (device loop7): cannot disable free-space-tree
[  181.781973][ T5856] netdevsim netdevsim6 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  181.789396][ T5856] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  181.790029][T10493] BTRFS warning (device loop7): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  181.812424][T10493] BTRFS error (device loop7): open_ctree failed: -22
[  182.052294][T10511] netlink: 'syz.6.1661': attribute type 3 has an invalid length.
[  182.091730][T10504] loop7: detected capacity change from 0 to 32768
[  182.115035][   T33] audit: type=1800 audit(1755868956.910:86): pid=10504 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1659" name="file1" dev="loop7" ino=4 res=0 errno=0
[  182.153475][  T114] ------------[ cut here ]------------
[  182.155920][  T114] WARNING: CPU: 1 PID: 114 at fs/jfs/jfs_dmap.c:2875 dbAdjTree+0x454/0x4e0
[  182.159511][  T114] Modules linked in:
[  182.161672][  T114] CPU: 1 UID: 0 PID: 114 Comm: jfsCommit Not tainted syzkaller #0 PREEMPT(full) 
[  182.166995][  T114] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  182.171064][  T114] RIP: 0010:dbAdjTree+0x454/0x4e0
[  182.173580][  T114] Code: 5a ff ff ff e8 bd 30 81 fe eb 05 e8 b6 30 81 fe 48 83 c4 28 5b 41 5c 41 5d 41 5e 41 5f 5d e9 93 e0 3d 08 cc e8 9d 30 81 fe 90 <0f> 0b 90 eb e1 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c e1 fb ff ff
[  182.181759][  T114] RSP: 0018:ffffc900023df988 EFLAGS: 00010293
[  182.184805][  T114] RAX: ffffffff833e7a93 RBX: ffff88810b53b010 RCX: ffff88801ede9cc0
[  182.188055][  T114] RDX: 0000000000000000 RSI: 0000000000000155 RDI: 0000000000020056
[  182.191415][  T114] RBP: 0000000000020056 R08: ffffea00042d4ec7 R09: 1ffffd400085a9d8
[  182.195750][  T114] R10: dffffc0000000000 R11: fffff9400085a9d9 R12: ffff88810b53b018
[  182.199224][  T114] R13: dffffc0000000000 R14: 0000000000000004 R15: 0000000000000155
[  182.202912][  T114] FS:  0000000000000000(0000) GS:ffff8881a3c1b000(0000) knlGS:0000000000000000
[  182.206626][  T114] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  182.209487][  T114] CR2: 00007fc0877b7dac CR3: 000000003f664000 CR4: 00000000000006f0
[  182.213232][  T114] Call Trace:
[  182.214729][  T114]  <TASK>
[  182.216017][  T114]  ? __pfx_lock_metapage+0x10/0x10
[  182.218253][  T114]  dbJoin+0x238/0x300
[  182.219942][  T114]  ? do_read_cache_folio+0x4c6/0x590
[  182.222133][  T114]  dbFreeBits+0x4e1/0xdb0
[  182.224461][  T114]  dbFree+0x336/0x650
[  182.226906][  T114]  txFreeMap+0x7ff/0xde0
[  182.228694][  T114]  txUpdateMap+0x308/0x9c0
[  182.230523][  T114]  jfs_lazycommit+0x43f/0xa90
[  182.232786][  T114]  ? __pfx_jfs_lazycommit+0x10/0x10
[  182.235065][  T114]  ? __pfx_default_wake_function+0x10/0x10
[  182.237608][  T114]  ? __kthread_parkme+0x7b/0x200
[  182.239801][  T114]  ? __kthread_parkme+0x1a1/0x200
[  182.242032][  T114]  kthread+0x711/0x8a0
[  182.244279][  T114]  ? __pfx_jfs_lazycommit+0x10/0x10
[  182.246514][  T114]  ? __pfx_kthread+0x10/0x10
[  182.248467][  T114]  ? _raw_spin_unlock_irq+0x23/0x50
[  182.250755][  T114]  ? lockdep_hardirqs_on+0x9c/0x150
[  182.253385][  T114]  ? __pfx_kthread+0x10/0x10
[  182.255529][  T114]  ret_from_fork+0x3fc/0x770
[  182.257630][  T114]  ? __pfx_ret_from_fork+0x10/0x10
[  182.259868][  T114]  ? __switch_to_asm+0x39/0x70
[  182.261930][  T114]  ? __switch_to_asm+0x33/0x70
[  182.264286][  T114]  ? __pfx_kthread+0x10/0x10
[  182.266214][  T114]  ret_from_fork_asm+0x1a/0x30
[  182.268184][  T114]  </TASK>
[  182.269450][  T114] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  182.272566][  T114] CPU: 1 UID: 0 PID: 114 Comm: jfsCommit Not tainted syzkaller #0 PREEMPT(full) 
[  182.276470][  T114] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  182.280720][  T114] Call Trace:
[  182.282143][  T114]  <TASK>
[  182.283397][  T114]  dump_stack_lvl+0x99/0x250
[  182.285444][  T114]  ? __asan_memcpy+0x40/0x70
[  182.287437][  T114]  ? __pfx_dump_stack_lvl+0x10/0x10
[  182.289564][  T114]  ? __pfx__printk+0x10/0x10
[  182.291505][  T114]  vpanic+0x281/0x750
[  182.293265][  T114]  ? __pfx__printk+0x10/0x10
[  182.295307][  T114]  ? __pfx_vpanic+0x10/0x10
[  182.297245][  T114]  ? is_bpf_text_address+0x26/0x2b0
[  182.299426][  T114]  panic+0xb9/0xc0
[  182.301065][  T114]  ? __pfx_panic+0x10/0x10
[  182.302981][  T114]  __warn+0x31b/0x4b0
[  182.304666][  T114]  ? dbAdjTree+0x454/0x4e0
[  182.306529][  T114]  ? dbAdjTree+0x454/0x4e0
[  182.308496][  T114]  report_bug+0x2be/0x4f0
[  182.310297][  T114]  ? dbAdjTree+0x454/0x4e0
[  182.312170][  T114]  ? dbAdjTree+0x454/0x4e0
[  182.314053][  T114]  ? dbAdjTree+0x456/0x4e0
[  182.315887][  T114]  handle_bug+0x84/0x160
[  182.317696][  T114]  exc_invalid_op+0x1a/0x50
[  182.319607][  T114]  asm_exc_invalid_op+0x1a/0x20
[  182.321603][  T114] RIP: 0010:dbAdjTree+0x454/0x4e0
[  182.323833][  T114] Code: 5a ff ff ff e8 bd 30 81 fe eb 05 e8 b6 30 81 fe 48 83 c4 28 5b 41 5c 41 5d 41 5e 41 5f 5d e9 93 e0 3d 08 cc e8 9d 30 81 fe 90 <0f> 0b 90 eb e1 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c e1 fb ff ff
[  182.332002][  T114] RSP: 0018:ffffc900023df988 EFLAGS: 00010293
[  182.334603][  T114] RAX: ffffffff833e7a93 RBX: ffff88810b53b010 RCX: ffff88801ede9cc0
[  182.337524][  T114] RDX: 0000000000000000 RSI: 0000000000000155 RDI: 0000000000020056
[  182.340447][  T114] RBP: 0000000000020056 R08: ffffea00042d4ec7 R09: 1ffffd400085a9d8
[  182.343467][  T114] R10: dffffc0000000000 R11: fffff9400085a9d9 R12: ffff88810b53b018
[  182.346667][  T114] R13: dffffc0000000000 R14: 0000000000000004 R15: 0000000000000155
[  182.349857][  T114]  ? dbAdjTree+0x453/0x4e0
[  182.351697][  T114]  ? dbAdjTree+0x453/0x4e0
[  182.353503][  T114]  ? __pfx_lock_metapage+0x10/0x10
[  182.355317][  T114]  dbJoin+0x238/0x300
[  182.356703][  T114]  ? do_read_cache_folio+0x4c6/0x590
[  182.358746][  T114]  dbFreeBits+0x4e1/0xdb0
[  182.360530][  T114]  dbFree+0x336/0x650
[  182.362115][  T114]  txFreeMap+0x7ff/0xde0
[  182.363829][  T114]  txUpdateMap+0x308/0x9c0
[  182.365438][  T114]  jfs_lazycommit+0x43f/0xa90
[  182.367279][  T114]  ? __pfx_jfs_lazycommit+0x10/0x10
[  182.369346][  T114]  ? __pfx_default_wake_function+0x10/0x10
[  182.371591][  T114]  ? __kthread_parkme+0x7b/0x200
[  182.373361][  T114]  ? __kthread_parkme+0x1a1/0x200
[  182.375278][  T114]  kthread+0x711/0x8a0
[  182.376912][  T114]  ? __pfx_jfs_lazycommit+0x10/0x10
[  182.379136][  T114]  ? __pfx_kthread+0x10/0x10
[  182.381101][  T114]  ? _raw_spin_unlock_irq+0x23/0x50
[  182.383308][  T114]  ? lockdep_hardirqs_on+0x9c/0x150
[  182.385450][  T114]  ? __pfx_kthread+0x10/0x10
[  182.387164][  T114]  ret_from_fork+0x3fc/0x770
[  182.388874][  T114]  ? __pfx_ret_from_fork+0x10/0x10
[  182.390863][  T114]  ? __switch_to_asm+0x39/0x70
[  182.392664][  T114]  ? __switch_to_asm+0x33/0x70
[  182.394605][  T114]  ? __pfx_kthread+0x10/0x10
[  182.396473][  T114]  ret_from_fork_asm+0x1a/0x30
[  182.398310][  T114]  </TASK>
[  182.400169][  T114] Kernel Offset: disabled
[  182.401914][  T114] Rebooting in 86400 seconds..

VM DIAGNOSIS:
13:22:37  Registers:
info registers vcpu 0

CPU#0
RAX=ffffffff820c7d1b RBX=dffffc0000000000 RCX=ffff88804160b980 RDX=0000000000000000
RSI=0000000000000000 RDI=0000000000000000 RBP=0000000000000200 RSP=ffffc900064cfba8
R8 =ffff88802b9c3e77 R9 =1ffff110057387ce R10=dffffc0000000000 R11=ffffed10057387cf
R12=ffffffff8b9e52c8 R13=ffffc900064cfd08 R14=ffffea0000dd7388 R15=ffffea0000dd7340
RIP=ffffffff81bfb047 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055557ebc8500 ffffffff 00c00000
GS =0000 ffff8880b861b000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b3220aff8 CR3=0000000041820000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ffffffff8133c57e ffffffff8133c57e XMM01=ffffffff8133c57e ffffffff8133c57e
XMM02=0300060008008000 ffffffff8133c57e XMM03=acffff0000000000 0000000000000400
XMM04=ffffffff823c7b14 ffffffff823c79ad XMM05=ffffffff823c704c ffffffff823c6fcb
XMM06=ffffffff823c6d09 ffffffff823c6cae XMM07=ffffffff82391585 ffffffff82391538
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007fc087612fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000020 RBX=0000000000000020 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc900023df130
R8 =ffff8881066e0237 R9 =1ffff11020cdc046 R10=dffffc0000000000 R11=ffffffff854f1c80
R12=dffffc0000000000 R13=ffffffff99afa8ee R14=ffffffff99def3e0 R15=0000000000000000
RIP=ffffffff854f1cfc RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8881a3c1b000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fc0877b7dac CR3=000000003f664000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007fc087787498 00007fc087787470 XMM03=00007fc0877874a8 00007fc0877874a0
XMM04=00007fc0882ed100 00007fc087787460 XMM05=00007fc087787478 00007fc0877874c0
XMM06=00007fc0877874b8 00007fc0877874b0 XMM07=00007fc0877874a8 00007fc0877874a0
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007fc087612fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
