last executing test programs:

5.151714205s ago: executing program 1 (id=493):
socket(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='sched_switch\x00', r0}, 0x10)
r1 = io_uring_setup(0x68af, &(0x7f0000000480)={0x0, 0x0, 0x1880, 0x1})
r2 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r2, &(0x7f0000000000)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x3f, 0x2, 0x10, {0x2, 0x4e22, @empty}}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000ac0)="ee", 0xfffffe5e}], 0x1, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000000040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b57000000860f5878c37ffe36e1165814d435be5b317c6c8189587d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988ab013f40afe403041323110f62055394412158e7a3adb148d641aa40d4ab077fe34232aa8b31851466d0998a61d7da0c86d70000001010"], 0x10b8}, 0x8000)
close_range(r1, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1208002, &(0x7f0000000840)={[{@max_batch_time}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x6}}, {@resuid}, {@debug}, {@minixdf}, {}, {@nomblk_io_submit}, {@noauto_da_alloc}], [{@seclabel}]}, 0x1, 0x5dd, &(0x7f0000000e00)="$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")
quotactl$Q_SETQUOTA(0xffffffff80000801, 0x0, 0x0, &(0x7f0000000300)={0x2, 0x0, 0xc9, 0x0, 0x2, 0x8, 0x2, 0x0, 0x9d})
chown(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)

4.718926865s ago: executing program 1 (id=495):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x8, 0x94, 0x7fff0000}]})
close_range(r0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x233, &(0x7f0000000080)={0x0, 0xe655, 0x10000, 0x2, 0x80000}, 0x0, 0x0)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x0, 0x0, @hyper}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x1f, &(0x7f0000000000)=[0xffffffffffffffff], 0x1)

4.679612831s ago: executing program 1 (id=496):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x512, &(0x7f0000000c40)="$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")
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x49)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f00000003c0)="8df5863a27", 0x8600}], 0x1, 0x7a00, 0x0, 0x3)

4.561697144s ago: executing program 1 (id=497):
r0 = getpid()
syz_mount_image$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x21000, 0x0, 0x0, 0x0, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000340)='./file0/../file0\x00', &(0x7f0000000280)='./file0/file0\x00', 0x0, 0xb101e, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x24020000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x2a05404, 0x0)
syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0)

4.389756294s ago: executing program 1 (id=498):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000fdc01a40f30c74933bbc0000000109021b0001000000000904000001a7a00f00090582020002"], 0x0)
syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0x0, 0x0)

4.152205357s ago: executing program 1 (id=501):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000002580)=ANY=[@ANYBLOB="801200001900010000000000000000001d0109006c1210"], 0x1280}, 0x1, 0x0, 0x0, 0x5}, 0x0)

4.049333457s ago: executing program 32 (id=501):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000002580)=ANY=[@ANYBLOB="801200001900010000000000000000001d0109006c1210"], 0x1280}, 0x1, 0x0, 0x0, 0x5}, 0x0)

2.552060092s ago: executing program 0 (id=524):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x40bc5311, &(0x7f0000000500)={0x80, 0x1})

2.469529677s ago: executing program 0 (id=525):
r0 = syz_clone(0x20300000, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000300)='task\x00')
fchdir(r1)
socket$kcm(0x29, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000001a40)=""/102392, 0x18ff8)
keyctl$instantiate(0xc, 0x0, 0x0, 0x2a, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$inet(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x4e23, @multicast1}, 0x10)
sendmmsg$inet(r3, &(0x7f0000000bc0)=[{{&(0x7f0000000180)={0x2, 0x4e23, @empty}, 0x10, 0x0}}], 0x1, 0x20004840)
sendto(r3, &(0x7f00000001c0)="e979", 0x2, 0x20004051, 0x0, 0x0)
pipe2(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
splice(r3, 0x0, r4, 0x0, 0x7ffff000, 0x0)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, &(0x7f0000000000)=0x408, 0x4)
syz_open_dev$dri(0x0, 0x0, 0x0)
keyctl$dh_compute(0x17, &(0x7f0000000200), 0x0, 0x0, &(0x7f00000003c0)={0x0})
syz_open_dev$audion(&(0x7f0000002180), 0x1, 0x4000)
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000002140)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
syz_open_procfs(r0, &(0x7f00000011c0)='smaps_rollup\x00')
syz_read_part_table(0x1054, &(0x7f0000000000)="$eJzsz8GpwkAABNBJ8slPWTlYgvZgDZ5iH1Yg2IVHm7ABwaOnlYirHUgO7x2GZYcd2LAU/Ry7S4aSqc+9+TZtkv+x67okw+e+L+Vaz4/TnNPqvVLKmNLWt+ftYZ0mf+OrvGWfurE5/ux3AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALBgzwAAAP//mPwRkw==")
read$FUSE(r1, &(0x7f0000000100)={0x2020}, 0x2020)

1.99756484s ago: executing program 2 (id=526):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)=@newqdisc={0x4c, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0x8}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x80000001, 0x4, 0x4, 0xe3, 0x8000, 0x6}}}}]}, 0x4c}}, 0x44080)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000002c0)=@newqdisc={0x2c, 0x24, 0xd0f, 0x70bd29, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffe0, 0xa}, {0x1, 0x10}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x55}, 0x4000)

529.541651ms ago: executing program 2 (id=527):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000180)={'veth0_virt_wifi\x00', &(0x7f0000000100)=@ethtool_cmd={0x9, 0xf, 0x39d, 0x3, 0x9f, 0x9, 0x80, 0x6, 0x3, 0x63, 0x9, 0x7, 0x1, 0x3, 0x7, 0x8001, [0xfffffffc, 0x7]}})

449.757887ms ago: executing program 0 (id=528):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000080)='./bus\x00', 0x2000010, &(0x7f00000013c0)=ANY=[], 0xf, 0x6b3, &(0x7f0000000840)="$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")
r0 = open(&(0x7f0000000300)='.\x00', 0x100000, 0x0)
flock(r0, 0x6)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000, 0x1)

441.219261ms ago: executing program 2 (id=529):
socket$nl_route(0x10, 0x3, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
r1 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@empty, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$key(0xf, 0x3, 0x2)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, 0x0, 0x0)
sendmsg$key(r2, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000540)={0x2, 0x6, 0x2, 0x0, 0x2, 0x0, 0x2}, 0x10}}, 0x0)

321.42994ms ago: executing program 2 (id=530):
r0 = socket$kcm(0x10, 0x3, 0x0)
recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000500)=""/109, 0x6d}, {&(0x7f00000027c0)=""/4047, 0xfcf}, {&(0x7f00000037c0)=""/4079, 0xfef}, {&(0x7f00000002c0)=""/244, 0xf4}, {&(0x7f0000000c80)=""/28, 0x1c}, {&(0x7f00000012c0)=""/148, 0x94}], 0x6}, 0x40000100)
sendmsg$inet(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000640)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046bf68187bae53dca2ba35bda6a876c1d0048007ea608649e7524765f0ef82e3c0000a705259a3651f60a84c9f4d4938037e70e4509c5bb00000000e513aeac9bf2bee150d5fe8600000000", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x20000000)

321.166835ms ago: executing program 0 (id=531):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="b70000000000000007000000000000009500000000000000a9171809f8dcf159569d5475991f7de1a0d0c119cfcf6b98741c23fb7f8d3002ec85db75af955427e91496087a51a0a78f269a9e216a0d0177c4fe3552396a180330807a5b6e8c79aa92038c78d1f16c1323f0e0c8d45c641a21757847cb22230e4321cc3581e40c62c4defee8cffe359cfeef7f58fffdb48647d28ae810f6d22d20271e9e88e94aa6982bf48356652b08e2fbd404e41e0058aae0478fbe542b648421d1b4486a542a7d478fbe6b5e000000293853f9c68e235184b7ad5b6c4fe70ec8320500db0db7fda3da6171a05509ffecef2cb9802d4f36c9a1ce46d3b355fec188ccfc2f0fc89e164561fb06ee9a0153981a47b5de9edd3536d5534f9a699f73b2c9341d2d05043748ce1f4577ed76cdf5b3c697089daa4abda69a8c0c992404610a6be9e103c972459065dec0488e85a6a0418fc87dd8019ef7bb4ef4fa6ee08d81797570578f2e8198e687012f25a69a90e7515e35f8abbddfa96c3f0485f01f0e9e144a2bd31c1b594c50de7c9efd826f1e19b7bd89ca4052b1985287bd13957a48467e0eeddf564d175bf4340885b63976df609806c3b2a3667539dfd66a7400000000003be6026e60205f761ce85cdf75cdb95ca5d32b5bf87eed4184d49f8f48181ef2419efe82ebb18ee55772d562b3b49551714e805a5211a3f4e8e703c03e23b2074bc573dbb66d59e269b722637c4a2efb5241cae2f14774609ad91d66724c438455dc4fcf0b4c8fc235f6c190b4c82bb2556d1fbcd4468369e98e900c743162ce2c7e60610acf0c8e4ba94a7e7127c7de0e6c35acecee1b8434fdca4579f9ebc6a515f7d910b466eb583fb0a7e65fbecb2b8ee0e9da33afb88aa5da8da3a5e0e58fcb48de6f165826b046a8951a47e040bd419d0efa0f54e8e3694085a7bde6f6494968d8200000000000"], &(0x7f0000003ff6)='syzkaller\x00', 0x1, 0xc3, &(0x7f00000002c0)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff37}, 0x48)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r1, 0x1, 0x1000000000000f, &(0x7f0000000080)=0x7fffffff, 0x4)
setsockopt$sock_attach_bpf(r1, 0x1, 0x34, &(0x7f0000000040)=r0, 0x4)

211.646814ms ago: executing program 0 (id=532):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$sock_int(r0, 0x1, 0x3, &(0x7f0000000000)=0xf66, 0x4)

62.12352ms ago: executing program 0 (id=533):
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000020000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
getpid()
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0xffffffff}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x80)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0xd, 0x3, 0x4, 0x9, 0x1, 0x1}, 0x50)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x80, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f0000000440)='./bus\x00')
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r3 = open(&(0x7f0000000580)='./file1\x00', 0x80242, 0x1df2a23c5997fa5f)
write$FUSE_CREATE_OPEN(r3, &(0x7f0000000180)={0xa0, 0xffffffffffffffda, 0x0, {{0x5, 0x1, 0x8000000004007, 0xac, 0x3, 0x4, {0x0, 0x180, 0x20fe, 0x5, 0x87, 0xd615, 0x9, 0x7fffffff, 0xfffffffe, 0xc000, 0x0, 0xee00, 0x0, 0x3ff, 0x401}}, {0x0, 0x11}}}, 0xa0)
sendfile(r3, r3, &(0x7f0000000080), 0x7f03)

61.790783ms ago: executing program 2 (id=534):
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
getsockopt$bt_hci(r0, 0x84, 0x81, 0x0, &(0x7f00000000c0))

0s ago: executing program 2 (id=535):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x300000a, 0x4031, 0xffffffffffffffff, 0x4000)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='contention_end\x00', r0}, 0x10)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17)
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0xfffffffffffffff9)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:61464' (ED25519) to the list of known hosts.
syzkaller login: [   50.086276][ T5799] cgroup: Unknown subsys name 'net'
[   50.249138][ T5799] cgroup: Unknown subsys name 'cpuset'
[   50.253285][ T5799] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   51.827416][ T5799] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   55.855659][ T5822] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   55.859137][ T5817] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   55.859410][ T5822] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   55.862562][ T5821] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   55.864922][ T5822] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   55.869561][ T5821] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   55.869824][ T5822] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   55.872602][ T5821] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   55.874848][ T5822] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   55.876965][ T5821] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   55.878740][ T5822] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   55.880880][ T5821] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   55.886123][ T5821] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   55.889798][ T5822] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   55.892184][ T5822] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   56.164784][ T5819] chnl_net:caif_netlink_parms(): no params data found
[   56.170788][ T5811] chnl_net:caif_netlink_parms(): no params data found
[   56.193779][ T5814] chnl_net:caif_netlink_parms(): no params data found
[   56.301951][ T5811] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.304840][ T5811] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.308121][ T5811] bridge_slave_0: entered allmulticast mode
[   56.311054][ T5811] bridge_slave_0: entered promiscuous mode
[   56.314962][ T5811] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.317776][ T5811] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.320687][ T5811] bridge_slave_1: entered allmulticast mode
[   56.323268][ T5811] bridge_slave_1: entered promiscuous mode
[   56.367190][ T5819] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.370578][ T5819] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.373160][ T5819] bridge_slave_0: entered allmulticast mode
[   56.375769][ T5819] bridge_slave_0: entered promiscuous mode
[   56.381904][ T5811] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.397861][ T5819] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.400713][ T5819] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.403590][ T5819] bridge_slave_1: entered allmulticast mode
[   56.408525][ T5819] bridge_slave_1: entered promiscuous mode
[   56.420988][ T5811] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.424317][ T5814] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.427094][ T5814] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.429560][ T5814] bridge_slave_0: entered allmulticast mode
[   56.432374][ T5814] bridge_slave_0: entered promiscuous mode
[   56.443478][ T5814] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.446341][ T5814] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.449272][ T5814] bridge_slave_1: entered allmulticast mode
[   56.452860][ T5814] bridge_slave_1: entered promiscuous mode
[   56.486161][ T5819] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.500656][ T5811] team0: Port device team_slave_0 added
[   56.504640][ T5814] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.510412][ T5819] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.514562][ T5811] team0: Port device team_slave_1 added
[   56.519484][ T5814] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.567695][ T5819] team0: Port device team_slave_0 added
[   56.593971][ T5819] team0: Port device team_slave_1 added
[   56.597736][ T5811] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.600386][ T5811] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   56.608645][ T5811] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.615413][ T5814] team0: Port device team_slave_0 added
[   56.620649][ T5814] team0: Port device team_slave_1 added
[   56.646988][ T5811] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.649745][ T5811] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   56.659200][ T5811] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.692099][ T5814] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.694149][ T5814] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   56.701824][ T5814] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.706701][ T5819] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.709439][ T5819] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   56.719285][ T5819] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.723594][ T5819] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.725736][ T5819] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   56.734719][ T5819] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.748700][ T5814] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.751337][ T5814] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   56.761585][ T5814] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.777879][ T5811] hsr_slave_0: entered promiscuous mode
[   56.780891][ T5811] hsr_slave_1: entered promiscuous mode
[   56.822202][ T5814] hsr_slave_0: entered promiscuous mode
[   56.825372][ T5814] hsr_slave_1: entered promiscuous mode
[   56.829105][ T5814] debugfs: 'hsr0' already exists in 'hsr'
[   56.831479][ T5814] Cannot create hsr debugfs directory
[   56.863582][ T5819] hsr_slave_0: entered promiscuous mode
[   56.866546][ T5819] hsr_slave_1: entered promiscuous mode
[   56.869139][ T5819] debugfs: 'hsr0' already exists in 'hsr'
[   56.871351][ T5819] Cannot create hsr debugfs directory
[   57.093673][ T5811] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   57.102843][ T5811] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   57.107951][ T5811] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   57.119770][ T5811] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   57.174657][ T5811] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.177664][ T5811] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.180925][ T5811] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.183746][ T5811] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.200323][ T5814] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   57.209059][  T988] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.211929][  T988] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.222632][ T5814] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   57.229178][ T5814] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   57.251390][ T5814] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   57.311079][ T5819] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   57.316525][ T5819] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   57.322287][ T5819] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   57.340319][ T5819] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   57.369947][ T5811] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.407245][ T5811] 8021q: adding VLAN 0 to HW filter on device team0
[   57.424172][  T988] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.427118][  T988] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.440653][   T26] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.443581][   T26] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.480688][ T5814] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.528232][ T5814] 8021q: adding VLAN 0 to HW filter on device team0
[   57.534952][ T5819] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.541866][   T32] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.544488][   T32] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.563319][  T988] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.566289][  T988] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.592295][ T5819] 8021q: adding VLAN 0 to HW filter on device team0
[   57.613279][  T988] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.616268][  T988] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.632715][  T988] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.635439][  T988] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.650752][ T5814] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   57.700456][ T5811] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.760664][ T5811] veth0_vlan: entered promiscuous mode
[   57.770682][ T5811] veth1_vlan: entered promiscuous mode
[   57.792977][ T5814] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.822473][ T5811] veth0_macvtap: entered promiscuous mode
[   57.840479][ T5811] veth1_macvtap: entered promiscuous mode
[   57.845554][ T5814] veth0_vlan: entered promiscuous mode
[   57.850455][ T5819] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.858518][ T5814] veth1_vlan: entered promiscuous mode
[   57.870423][ T5811] batman_adv: batadv0: Interface activated: batadv_slave_0
[   57.880122][ T5811] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.894773][ T5843] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.901619][ T5843] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.911211][ T5642] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.917390][ T5815] Bluetooth: hci1: command tx timeout
[   57.919494][ T5815] Bluetooth: hci2: command tx timeout
[   57.921470][ T5815] Bluetooth: hci0: command tx timeout
[   57.927871][ T5642] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.938108][ T5814] veth0_macvtap: entered promiscuous mode
[   57.952327][ T5814] veth1_macvtap: entered promiscuous mode
[   57.970521][ T5814] batman_adv: batadv0: Interface activated: batadv_slave_0
[   57.993762][ T5814] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.997592][ T5819] veth0_vlan: entered promiscuous mode
[   58.003947][ T3945] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.009041][ T3945] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.010646][ T5642] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.014889][ T5642] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.026932][ T5819] veth1_vlan: entered promiscuous mode
[   58.030720][ T5642] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.033405][ T5642] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.062950][ T3945] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.065406][ T3945] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.089885][ T5819] veth0_macvtap: entered promiscuous mode
[   58.102996][ T5819] veth1_macvtap: entered promiscuous mode
[   58.103345][  T988] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.111394][  T988] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.124372][ T5811] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   58.137570][ T5819] batman_adv: batadv0: Interface activated: batadv_slave_0
[   58.159861][ T5819] batman_adv: batadv0: Interface activated: batadv_slave_1
[   58.169195][   T41] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.172418][   T41] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.181323][ T5642] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.198123][ T5642] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.209177][ T5642] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.213590][ T5642] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.224072][ T5879] Zero length message leads to an empty skb
[   58.311301][   T26] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.314256][   T26] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.357474][   T27] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.366301][   T27] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.458061][ T5890] loop2: detected capacity change from 0 to 512
[   58.499596][ T5890] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.504311][ T5890] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.613137][ T5898] EXT4-fs (loop2): shut down requested (1)
[   58.689981][ T5819] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.694133][ T5887] loop0: detected capacity change from 0 to 32768
[   58.701765][ T5887] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.6 (5887)
[   58.734700][ T5887] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   58.753634][ T5887] BTRFS info (device loop0): using crc32c (crc32c-lib) checksum algorithm
[   58.857086][ T5887] BTRFS info (device loop0): setting nodatasum
[   58.859157][ T5887] BTRFS info (device loop0): disabling tree log
[   58.861061][ T5887] BTRFS info (device loop0): enabling free space tree
[   58.863455][ T5887] BTRFS info (device loop0): max_inline set to 0
[   58.896214][ T5922] syz.2.12 uses obsolete (PF_INET,SOCK_PACKET)
[   59.000921][ T5811] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   59.137252][ T5928] 8021q: adding VLAN 0 to HW filter on device bond0
[   59.139455][ T5928] bond0: (slave sit0): The slave device specified does not support setting the MAC address
[   59.142657][ T5928] bond0: (slave sit0): Error -95 calling set_mac_address
[   59.194695][ T5936] netlink: 'syz.1.17': attribute type 1 has an invalid length.
[   59.199461][ T5937] team0: Cannot enslave team device to itself
[   59.274299][ T5945] loop0: detected capacity change from 0 to 128
[   59.356503][    T9] usb 3-1: new full-speed USB device number 2 using dummy_hcd
[   59.814103][    T9] usb 3-1: config 0 has an invalid interface number: 7 but max is 0
[   59.821422][    T9] usb 3-1: config 0 has no interface number 0
[   59.823522][    T9] usb 3-1: config 0 interface 7 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   59.829623][    T9] usb 3-1: New USB device found, idVendor=5543, idProduct=0522, bcdDevice=22.00
[   59.832538][    T9] usb 3-1: New USB device strings: Mfr=17, Product=0, SerialNumber=0
[   59.835628][    T9] usb 3-1: Manufacturer: syz
[   59.840473][    T9] usb 3-1: config 0 descriptor??
[   59.996046][ T5822] Bluetooth: hci0: command tx timeout
[   59.998283][ T5822] Bluetooth: hci2: command tx timeout
[   59.998748][ T5815] Bluetooth: hci1: command tx timeout
[   60.263382][    T9] uclogic 0003:5543:0522.0001: unbalanced delimiter at end of report description
[   60.267346][    T9] uclogic 0003:5543:0522.0001: parse failed
[   60.269177][    T9] uclogic 0003:5543:0522.0001: probe with driver uclogic failed with error -22
[   60.462585][ T5877] usb 3-1: USB disconnect, device number 2
[   60.747764][ T5987] loop1: detected capacity change from 0 to 512
[   60.764168][ T5987] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.34: inode has both inline data and extents flags
[   60.769492][ T5987] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.34: couldn't read orphan inode 15 (err -117)
[   60.774345][ T5987] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   60.798610][ T5814] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.824126][    T9] usb 1-1: new low-speed USB device number 2 using dummy_hcd
[   60.844784][ T5991] loop1: detected capacity change from 0 to 256
[   60.996874][    T9] usb 1-1: config index 0 descriptor too short (expected 12580, got 36)
[   61.000961][    T9] usb 1-1: config 83 has too many interfaces: 42, using maximum allowed: 32
[   61.003962][    T9] usb 1-1: config 83 has 1 interface, different from the descriptor's value: 42
[   61.008028][    T9] usb 1-1: config 83 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   61.011494][    T9] usb 1-1: config 83 interface 0 has no altsetting 0
[   61.013771][    T9] usb 1-1: New USB device found, idVendor=16c0, idProduct=75e1, bcdDevice= 0.00
[   61.021345][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   61.060415][ T6004] netlink: 76 bytes leftover after parsing attributes in process `syz.2.41'.
[   61.154073][ T6012] loop2: detected capacity change from 0 to 256
[   61.164325][ T6012] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x5658fca8, utbl_chksum : 0xe619d30d)
[   61.233297][    T9] usb 1-1: string descriptor 0 read error: -71
[   61.252545][    T9] usbhid 1-1:83.0: can't add hid device: -71
[   61.255211][    T9] usbhid 1-1:83.0: probe with driver usbhid failed with error -71
[   61.270185][    T9] usb 1-1: USB disconnect, device number 2
[   61.279423][ T6017] process 'syz.2.46' launched '/dev/fd/4' with NULL argv: empty string added
[   61.704373][ T6023] loop2: detected capacity change from 0 to 128
[   61.774119][ T6027] ip6erspan0: entered promiscuous mode
[   61.936638][ T6029] loop2: detected capacity change from 0 to 32768
[   61.948753][ T6029] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   61.971421][ T6029] XFS (loop2): Ending clean mount
[   61.977069][ T6029] XFS (loop2): Quotacheck needed: Please wait.
[   61.995758][ T6029] XFS (loop2): Quotacheck: Done.
[   62.026468][ T5819] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   62.076204][ T5815] Bluetooth: hci1: command tx timeout
[   62.076368][ T5822] Bluetooth: hci2: command tx timeout
[   62.086029][ T5822] Bluetooth: hci0: command tx timeout
[   62.126146][ T5279] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   62.208465][ T6051] netlink: 'syz.2.55': attribute type 21 has an invalid length.
[   62.210860][ T6051] netlink: 132 bytes leftover after parsing attributes in process `syz.2.55'.
[   62.213594][ T6051] netlink: 20 bytes leftover after parsing attributes in process `syz.2.55'.
[   62.276233][ T5279] usb 1-1: Using ep0 maxpacket: 16
[   62.279404][ T5279] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 23, changing to 8
[   62.283004][ T5279] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[   62.287835][ T5279] usb 1-1: New USB device found, idVendor=0079, idProduct=1803, bcdDevice= 0.00
[   62.291115][ T5279] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   62.296526][ T5279] usb 1-1: config 0 descriptor??
[   62.326023][   T10] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   62.498218][   T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   62.501907][   T10] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   62.507182][   T10] usb 2-1: New USB device found, idVendor=1294, idProduct=1320, bcdDevice= 0.00
[   62.510338][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   62.517419][   T10] usb 2-1: config 0 descriptor??
[   62.720309][ T5279] hid_mf 0003:0079:1803.0002: unknown main item tag 0x0
[   62.722417][ T5279] hid_mf 0003:0079:1803.0002: unknown main item tag 0x0
[   62.727855][ T5279] hid_mf 0003:0079:1803.0002: unknown main item tag 0x0
[   62.730570][ T5279] hid_mf 0003:0079:1803.0002: unknown main item tag 0x0
[   62.733314][ T5279] hid_mf 0003:0079:1803.0002: unknown main item tag 0x0
[   62.740254][ T5279] hid_mf 0003:0079:1803.0002: hidraw0: USB HID v0.05 Device [HID 0079:1803] on usb-dummy_hcd.0-1/input0
[   62.744721][ T5279] hid_mf 0003:0079:1803.0002: Force feedback for HJZ Mayflash game controller adapters by Marcel Hasler <mahasler@gmail.com>
[   62.923467][ T5279] usb 1-1: USB disconnect, device number 3
[   62.940265][   T10] hid-led 0003:1294:1320.0003: hidraw0: USB HID vff.fe Device [HID 1294:1320] on usb-dummy_hcd.1-1/input0
[   62.951187][   T10] hid-led 0003:1294:1320.0003: Riso Kagaku Webmail Notifier initialized
[   63.110683][ T6058] netlink: 408 bytes leftover after parsing attributes in process `syz.2.59'.
[   63.140066][ T5279] usb 2-1: USB disconnect, device number 2
[   63.148581][ T5642] leds riso_kagaku0:blue: Setting an LED's brightness failed (-38)
[   63.152950][ T5642] leds riso_kagaku0:green: Setting an LED's brightness failed (-38)
[   63.157535][   T13] leds riso_kagaku0:red: Setting an LED's brightness failed (-38)
[   63.448237][  T793] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   63.607809][  T793] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   63.612358][  T793] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[   63.616152][  T793] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   63.619532][  T793] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   63.623503][  T793] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   63.626410][  T793] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   63.630700][  T793] usb 3-1: config 0 descriptor??
[   63.633344][ T6064] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   63.687427][ T6069] loop1: detected capacity change from 0 to 128
[   63.693392][ T6069] =======================================================
[   63.693392][ T6069] WARNING: The mand mount option has been deprecated and
[   63.693392][ T6069]          and is ignored by this kernel. Remove the mand
[   63.693392][ T6069]          option from the mount to silence this warning.
[   63.693392][ T6069] =======================================================
[   63.710150][ T6069] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   63.714764][ T6069] ext4 filesystem being mounted at /24/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.738103][ T5814] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   63.903873][ T6081] netlink: 'syz.1.69': attribute type 2 has an invalid length.
[   64.049067][  T793] plantronics 0003:047F:FFFF.0004: ignoring exceeding usage max
[   64.057500][  T793] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[   64.156277][ T5822] Bluetooth: hci0: command tx timeout
[   64.158381][ T5815] Bluetooth: hci2: command tx timeout
[   64.158642][ T5821] Bluetooth: hci1: command tx timeout
[   64.176043][    T9] usb 2-1: new full-speed USB device number 3 using dummy_hcd
[   64.327520][    T9] usb 2-1: config 0 has an invalid interface number: 177 but max is 0
[   64.330072][    T9] usb 2-1: config 0 has no interface number 0
[   64.334536][    T9] usb 2-1: New USB device found, idVendor=09fb, idProduct=ebbe, bcdDevice=39.5d
[   64.343700][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   64.346824][    T9] usb 2-1: Product: syz
[   64.348167][    T9] usb 2-1: Manufacturer: syz
[   64.349551][    T9] usb 2-1: SerialNumber: syz
[   64.360481][ T6087] loop2: detected capacity change from 0 to 16
[   64.366561][    T9] usb 2-1: config 0 descriptor??
[   64.584702][    T9] usb 2-1: USB disconnect, device number 3
[   64.666935][  T793] usb 1-1: new full-speed USB device number 4 using dummy_hcd
[   64.820188][  T793] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   64.823496][  T793] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   64.827341][  T793] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[   64.831346][  T793] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[   64.835336][  T793] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   64.841892][  T793] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40
[   64.844840][  T793] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[   64.847401][  T793] usb 1-1: SerialNumber: syz
[   64.855141][  T793] cdc_ether 1-1:1.0: probe with driver cdc_ether failed with error -22
[   64.858555][  T793] usb-storage 1-1:1.0: USB Mass Storage device detected
[   64.864728][  T793] usb-storage 1-1:1.0: Quirks match for vid 0525 pid a4a5: 10000
[   65.062532][    T9] usb 1-1: USB disconnect, device number 4
[   65.228530][ T6097] block nbd1: shutting down sockets
[   65.266631][ T6099] loop1: detected capacity change from 0 to 16
[   65.274629][ T6099] erofs (device loop1): mounted with root inode @ nid 36.
[   65.283549][   T34] audit: type=1800 audit(1764761178.116:2): pid=6099 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.75" name="file1" dev="loop1" ino=86 res=0 errno=0
[   66.441010][ T6139] loop1: detected capacity change from 0 to 512
[   66.447386][ T6139] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   66.451301][ T6139] EXT4-fs (loop1): couldn't mount as ext3 due to feature incompatibilities
[   66.546443][ T5279] usb 3-1: reset high-speed USB device number 3 using dummy_hcd
[   66.697669][ T5279] usb 3-1: device firmware changed
[   66.701736][    T9] usb 3-1: USB disconnect, device number 3
[   66.763890][ T6155] batman_adv: batadv0: Adding interface: vlan2
[   66.766630][ T6155] batman_adv: batadv0: The MTU of interface vlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   66.777817][ T6155] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   66.781888][ T6155] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.785515][ T6155] batman_adv: batadv0: Not using interface vlan2 (retrying later): interface not active
[   66.857820][    T9] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[   67.007695][    T9] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   67.025201][    T9] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   67.029344][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[   67.032346][    T9] usb 3-1: SerialNumber: syz
[   67.087046][ T6170] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   67.257044][    T9] usb 3-1: bad CDC descriptors
[   67.263442][    T9] usb 3-1: USB disconnect, device number 4
[   67.366084][ T5279] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[   67.376507][  T793] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[   67.527892][  T793] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30
[   67.531867][  T793] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[   67.536042][ T5279] usb 2-1: Using ep0 maxpacket: 8
[   67.536605][  T793] usb 1-1: New USB device found, idVendor=1532, idProduct=010d, bcdDevice= 0.00
[   67.539651][ T5279] usb 2-1: config 0 has an invalid interface number: 24 but max is 0
[   67.541297][  T793] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   67.546676][ T5279] usb 2-1: config 0 has no interface number 0
[   67.547146][  T793] usb 1-1: config 0 descriptor??
[   67.552700][ T5279] usb 2-1: New USB device found, idVendor=050d, idProduct=0122, bcdDevice=5b.65
[   67.555491][ T5279] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   67.558582][ T5279] usb 2-1: Product: syz
[   67.560401][ T5279] usb 2-1: Manufacturer: syz
[   67.561846][ T5279] usb 2-1: SerialNumber: syz
[   67.564550][ T5279] usb 2-1: config 0 descriptor??
[   67.780675][ T5279] pegasus 2-1:0.24: probe with driver pegasus failed with error -71
[   67.789427][ T5279] usb 2-1: USB disconnect, device number 4
[   67.892325][ T6181] netlink: 8 bytes leftover after parsing attributes in process `syz.2.111'.
[   67.962176][  T793] razer 0003:1532:010D.0005: item fetching failed at offset 5/7
[   67.964858][  T793] razer 0003:1532:010D.0005: probe with driver razer failed with error -22
[   68.106066][ T6195] netlink: 4 bytes leftover after parsing attributes in process `syz.2.118'.
[   68.109875][ T6195] netlink: 12 bytes leftover after parsing attributes in process `syz.2.118'.
[   68.168316][  T793] usb 1-1: USB disconnect, device number 5
[   68.214992][ T6199] netdevsim netdevsim2: Firmware load for '/../file0' refused, path contains '..' component
[   68.342096][ T6208] loop1: detected capacity change from 0 to 2048
[   68.366402][ T6208] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.463298][ T5814] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.566125][ T6213] loop2: detected capacity change from 0 to 32768
[   68.584409][ T6213] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   68.594577][ T6213] XFS (loop2): Ending clean mount
[   68.616129][ T5819] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   68.729645][ T6229] netlink: 24 bytes leftover after parsing attributes in process `syz.0.129'.
[   68.863801][ T6235] loop0: detected capacity change from 0 to 4096
[   68.869661][ T6235] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[   68.887168][ T6235] ntfs3(loop0): ino=19, mi_enum_attr
[   68.892290][ T6235] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[   69.020053][ T6241] loop0: detected capacity change from 0 to 64
[   69.039482][ T6241] BFS-fs: bfs_fill_super(): Superblock is corrupted on loop0
[   69.098787][ T6230] loop1: detected capacity change from 0 to 40427
[   69.122038][ T6230] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[   69.125096][ T6230] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[   69.137190][ T6230] F2FS-fs (loop1): invalid crc value
[   69.229999][ T6230] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   69.235813][ T6230] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[   69.238622][ T6230] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   69.318514][ T6251] loop0: detected capacity change from 0 to 4096
[   69.335245][ T6251] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[   69.340712][ T6251] ntfs3(loop0): Failed to load $Extend (-22).
[   69.344048][ T6251] ntfs3(loop0): Failed to initialize $Extend.
[   69.358564][ T6251] ntfs3(loop0): ino=5, "/" indx_read
[   69.361235][ T6251] ntfs3(loop0): ino=5, "/" ntfs_readdir
[   69.646033][    T9] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[   69.690250][ T6261] loop1: detected capacity change from 0 to 4096
[   69.721597][ T6261] ntfs3(loop1): Failed to initialize $Extend/$ObjId.
[   69.732078][ T6261] ntfs3(loop1): ino=1e, "file1" attr_set_size
[   69.737085][ T6260] ntfs3(loop1): ino=1e, "file1" attr_set_size
[   69.807880][    T9] usb 1-1: New USB device found, idVendor=0e41, idProduct=4156, bcdDevice=3b.70
[   69.810720][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   69.824610][    T9] usb 1-1: config 0 descriptor??
[   69.844317][ T6269] tracefs: Invalid uid '0x00000000ffffffff'
[   70.051852][  T976] usb 1-1: USB disconnect, device number 6
[   70.983824][ T6289] loop2: detected capacity change from 0 to 32768
[   71.000994][ T6289] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[   71.030610][ T6289] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[   71.045601][ T6289] OCFS2: ERROR (device loop2): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #32 has an invalid fs_generation of #1
[   71.053288][ T6289] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[   71.056599][ T6289] OCFS2: File system is now read-only.
[   71.058348][ T6289] (syz.2.153,6289,0):ocfs2_search_chain:1817 ERROR: status = -30
[   71.060935][ T6289] (syz.2.153,6289,0):ocfs2_search_chain:1940 ERROR: status = -30
[   71.064339][ T6289] (syz.2.153,6289,0):ocfs2_claim_suballoc_bits:2010 ERROR: status = -30
[   71.068775][ T6289] (syz.2.153,6289,0):ocfs2_claim_suballoc_bits:2063 ERROR: status = -30
[   71.072235][ T6289] (syz.2.153,6289,0):__ocfs2_claim_clusters:2438 ERROR: status = -30
[   71.076002][ T6289] (syz.2.153,6289,0):__ocfs2_claim_clusters:2446 ERROR: status = -30
[   71.079280][ T6289] (syz.2.153,6289,0):ocfs2_local_alloc_new_window:1199 ERROR: status = -30
[   71.082685][ T6289] (syz.2.153,6289,0):ocfs2_local_alloc_new_window:1224 ERROR: status = -30
[   71.085758][ T6289] (syz.2.153,6289,0):ocfs2_local_alloc_slide_window:1298 ERROR: status = -30
[   71.089566][ T6289] (syz.2.153,6289,0):ocfs2_local_alloc_slide_window:1317 ERROR: status = -30
[   71.094085][ T6289] (syz.2.153,6289,0):ocfs2_reserve_local_alloc_bits:672 ERROR: status = -30
[   71.097831][ T6289] (syz.2.153,6289,0):ocfs2_reserve_local_alloc_bits:710 ERROR: status = -30
[   71.102384][ T6289] (syz.2.153,6289,0):ocfs2_reserve_clusters_with_limit:1172 ERROR: status = -30
[   71.107204][ T6289] (syz.2.153,6289,0):ocfs2_reserve_clusters_with_limit:1221 ERROR: status = -30
[   71.111147][ T6289] (syz.2.153,6289,0):ocfs2_mknod:360 ERROR: status = -30
[   71.114804][ T6289] (syz.2.153,6289,0):ocfs2_mknod:505 ERROR: status = -30
[   71.121614][ T6289] (syz.2.153,6289,0):ocfs2_mkdir:661 ERROR: status = -30
[   71.137545][  T976] usb 1-1: new full-speed USB device number 7 using dummy_hcd
[   71.171299][ T5819] ocfs2: Unmounting device (7,2) on (node local)
[   71.380129][ T6293] loop1: detected capacity change from 0 to 32768
[   71.473349][  T976] usb 1-1: config 0 has an invalid interface number: 45 but max is 0
[   71.481937][  T976] usb 1-1: config 0 has no interface number 0
[   71.484532][  T976] usb 1-1: config 0 interface 45 altsetting 175 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   71.497362][  T976] usb 1-1: config 0 interface 45 altsetting 175 endpoint 0x81 has invalid wMaxPacketSize 0
[   71.503010][  T976] usb 1-1: config 0 interface 45 has no altsetting 0
[   71.507601][  T976] usb 1-1: New USB device found, idVendor=5543, idProduct=3031, bcdDevice= 0.00
[   71.511261][  T976] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   71.529820][  T976] usb 1-1: config 0 descriptor??
[   71.746923][    T9] usb 3-1: new full-speed USB device number 5 using dummy_hcd
[   71.759051][ T1361] ieee802154 phy0 wpan0: encryption failed: -22
[   71.761988][ T1361] ieee802154 phy1 wpan1: encryption failed: -22
[   71.899498][    T9] usb 3-1: config 9 has an invalid interface number: 81 but max is 0
[   71.902911][    T9] usb 3-1: config 9 has no interface number 0
[   71.905475][    T9] usb 3-1: config 9 interface 81 altsetting 7 endpoint 0x4 has invalid maxpacket 1024, setting to 64
[   71.909908][    T9] usb 3-1: config 9 interface 81 has no altsetting 0
[   71.929125][    T9] usb 3-1: New USB device found, idVendor=05f9, idProduct=ffff, bcdDevice=f0.f4
[   71.934425][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   71.940076][    T9] usb 3-1: Product: syz
[   71.942143][    T9] usb 3-1: Manufacturer: syz
[   71.944496][    T9] usb 3-1: SerialNumber: syz
[   71.956728][ T6298] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[   71.958279][  T976] uclogic 0003:5543:3031.0006: interface is invalid, ignoring
[   72.205956][    T9] usbserial_generic 3-1:9.81: The "generic" usb-serial driver is only for testing and one-off prototypes.
[   72.209606][    T9] usbserial_generic 3-1:9.81: Tell linux-usb@vger.kernel.org to add your device to a proper driver.
[   72.215018][    T9] usbserial_generic 3-1:9.81: generic converter detected
[   72.217086][  T976] usb 1-1: USB disconnect, device number 7
[   72.229819][    T9] usb 3-1: generic converter now attached to ttyUSB0
[   72.243086][    T9] usb 3-1: generic converter now attached to ttyUSB1
[   72.250403][    T9] usb 3-1: USB disconnect, device number 5
[   72.262156][    T9] generic ttyUSB0: generic converter now disconnected from ttyUSB0
[   72.271322][    T9] generic ttyUSB1: generic converter now disconnected from ttyUSB1
[   72.280909][    T9] usbserial_generic 3-1:9.81: device disconnected
[   73.437679][ T6331] netlink: 'syz.1.169': attribute type 39 has an invalid length.
[   73.458012][ T6331] hsr_slave_1 (unregistering): left promiscuous mode
[   74.045656][ T6357] netlink: 8 bytes leftover after parsing attributes in process `syz.2.181'.
[   74.182426][ T6367] loop2: detected capacity change from 0 to 1024
[   74.390082][ T6379] mkiss: ax0: crc mode is auto.
[   74.994535][ T6385] loop2: detected capacity change from 0 to 131072
[   75.008809][ T6391] loop0: detected capacity change from 0 to 2048
[   75.019315][ T6385] F2FS-fs (loop2): invalid crc value
[   75.030749][ T6391] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[   75.213521][ T6385] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   75.454148][ T6385] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[   75.506607][ T6385] F2FS-fs (loop2): Stopped filesystem due to reason: 0
[   75.906127][    T9] usb 2-1: new full-speed USB device number 5 using dummy_hcd
[   76.058341][ T6420] loop2: detected capacity change from 0 to 512
[   76.062577][ T6420] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   76.068076][ T6420] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   76.069186][    T9] usb 2-1: too many endpoints for config 0 interface 0 altsetting 254: 253, using maximum allowed: 30
[   76.088943][ T6420] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   76.094357][ T6420] EXT4-fs (loop2): 1 truncate cleaned up
[   76.095997][    T9] usb 2-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[   76.097750][ T6420] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.099677][    T9] usb 2-1: config 0 interface 0 altsetting 254 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[   76.099700][    T9] usb 2-1: config 0 interface 0 has no altsetting 0
[   76.099731][    T9] usb 2-1: New USB device found, idVendor=044e, idProduct=120c, bcdDevice= 0.00
[   76.119764][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   76.132102][    T9] usb 2-1: config 0 descriptor??
[   76.147634][ T5819] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.181771][ T6424] loop2: detected capacity change from 0 to 16
[   76.185124][ T6424] MTD: Attempt to mount non-MTD device "/dev/loop2"
[   76.374352][ T6433] loop2: detected capacity change from 0 to 2048
[   76.423861][ T6433]  loop2: p1 p3 < > p4 < p5 >
[   76.425735][ T6433] loop2: partition table partially beyond EOD, truncated
[   76.434146][ T6433] loop2: p3 start 4284289 is beyond EOD, truncated
[   76.600266][    T9] hid-alps 0003:044E:120C.0007: hidraw0: USB HID v0.04 Device [HID 044e:120c] on usb-dummy_hcd.1-1/input0
[   76.949705][   T10] usb 2-1: USB disconnect, device number 5
[   77.101029][ T6438] loop0: detected capacity change from 0 to 32768
[   77.113039][ T6438] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   77.143064][ T6438] XFS (loop0): Ending clean mount
[   77.148747][ T6438] XFS (loop0): Quotacheck needed: Please wait.
[   77.170228][ T6438] XFS (loop0): Quotacheck: Done.
[   77.209541][ T5811] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   77.640856][ T6460] loop1: detected capacity change from 0 to 32768
[   77.643631][ T6460] BTRFS error: invalid value 0 for thread_pool
[   77.765196][ T6456] loop2: detected capacity change from 0 to 32768
[   78.067165][ T6467] loop1: detected capacity change from 0 to 4096
[   78.071907][ T6467] ntfs3: Unknown parameter 'GPL'
[   78.107349][ T6456] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[   78.129000][ T6456] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[   78.203437][ T6456] (syz.2.218,6456,1):ocfs2_check_set_options:1244 ERROR: Invalid heartbeat mount options
[   78.243382][ T5819] ocfs2: Unmounting device (7,2) on (node local)
[   78.346554][ T6475] input: syz0 as /devices/virtual/input/input4
[   78.434456][ T6479] netlink: 4 bytes leftover after parsing attributes in process `syz.2.227'.
[   78.909996][ T6497] loop2: detected capacity change from 0 to 1024
[   78.927513][ T6497] EXT4-fs: Ignoring removed oldalloc option
[   78.948904][ T6497] EXT4-fs (loop2): corrupt root inode, run e2fsck
[   78.951436][ T6497] EXT4-fs (loop2): mount failed
[   78.986074][  T976] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[   79.126207][ T6506] tmpfs: User quota block hardlimit too large.
[   79.137791][  T976] usb 2-1: config 0 has an invalid interface number: 183 but max is 0
[   79.141243][  T976] usb 2-1: config 0 has no interface number 0
[   79.146313][  T976] usb 2-1: config 0 interface 183 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 1023
[   79.150456][  T976] usb 2-1: config 0 interface 183 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[   79.157247][  T976] usb 2-1: config 0 interface 183 altsetting 0 has an endpoint descriptor with address 0xC7, changing to 0x87
[   79.161349][  T976] usb 2-1: config 0 interface 183 altsetting 0 endpoint 0x87 has an invalid bInterval 250, changing to 11
[   79.165331][  T976] usb 2-1: config 0 interface 183 altsetting 0 endpoint 0x87 has invalid maxpacket 33871, setting to 1024
[   79.170161][  T976] usb 2-1: config 0 interface 183 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3
[   79.174243][  T976] usb 2-1: New USB device found, idVendor=1b80, idProduct=d700, bcdDevice=45.20
[   79.177370][  T976] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   79.182898][  T976] usb 2-1: config 0 descriptor??
[   79.186204][ T6489] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   79.189068][ T6489] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   79.333881][ T6514] loop2: detected capacity change from 0 to 2048
[   79.350790][ T6514] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[   79.365278][   T34] audit: type=1800 audit(1764761192.196:3): pid=6514 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.243" name="file1" dev="loop2" ino=1346 res=0 errno=0
[   79.406681][  T976] radio-si470x 2-1:0.183: si470x_get_report: usb_control_msg returned -71
[   79.414129][  T976] radio-si470x 2-1:0.183: probe with driver radio-si470x failed with error -5
[   79.432749][  T976] usb 2-1: USB disconnect, device number 6
[   79.516418][    C0] vcan0: j1939_tp_rxtimer: 0xffff88810a15a000: rx timeout, send abort
[   79.521750][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88810a15a000: 0x2f000: (3) A timeout occurred and this is the connection abort to close the session.
[   79.541333][ T6518] Bluetooth: MGMT ver 1.23
[   79.543909][ T6518] Bluetooth: hci0: invalid length 4, exp 2 for type 30
[   79.926028][  T976] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[   80.048036][ T6532] loop1: detected capacity change from 0 to 512
[   80.088077][  T976] usb 3-1: Using ep0 maxpacket: 32
[   80.088941][ T6532] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.252: couldn't read orphan inode 26 (err -116)
[   80.095186][ T6532] EXT4-fs (loop1): Remounting filesystem read-only
[   80.095691][  T976] usb 3-1: config 0 has an invalid interface number: 188 but max is 0
[   80.099935][ T6532] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.106348][  T976] usb 3-1: config 0 has no interface number 0
[   80.106554][ T6532] ext4 filesystem being mounted at /93/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   80.108655][  T976] usb 3-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[   80.130831][  T976] usb 3-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[   80.134240][  T976] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   80.137783][  T976] usb 3-1: Product: syz
[   80.140954][  T976] usb 3-1: Manufacturer: syz
[   80.142822][  T976] usb 3-1: SerialNumber: syz
[   80.149270][ T6532] EXT4-fs (loop1): shut down requested (2)
[   80.155559][  T976] usb 3-1: config 0 descriptor??
[   80.159939][ T6526] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   80.184846][ T5814] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.281017][ T6541] xt_hashlimit: size too large, truncated to 1048576
[   80.317944][ T6545] loop1: detected capacity change from 0 to 8
[   80.320584][ T6545] MTD: Attempt to mount non-MTD device "/dev/loop1"
[   80.335318][ T6545] cramfs: Error -3 while decompressing!
[   80.346175][ T6545] cramfs: ffffffff998d1f28(26)->ffff8881a738a000(4096)
[   80.348874][ T6545] cramfs: Error -3 while decompressing!
[   80.350856][ T6545] cramfs: ffffffff998d1f42(26)->ffff8881a7377000(4096)
[   80.352470][ T6547] loop0: detected capacity change from 0 to 256
[   80.353176][ T6545] cramfs: Error -3 while decompressing!
[   80.365544][ T6547] exFAT-fs (loop0): failed to load upcase table (idx : 0x00002e7f, chksum : 0x03279930, utbl_chksum : 0xe619d30d)
[   80.376312][ T6526] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   80.382054][ T6545] cramfs: ffffffff998d1f5c(16)->ffff8881a7167000(4096)
[   80.384460][ T6545] cramfs: Error -3 while decompressing!
[   80.386900][ T6545] cramfs: ffffffff998d1f28(26)->ffff8881a738a000(4096)
[   80.785556][  T976] asix 3-1:0.188 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[   80.793757][  T976] asix 3-1:0.188: probe with driver asix failed with error -71
[   80.798164][  T976] usb 3-1: USB disconnect, device number 6
[   80.934927][ T6579] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   80.986406][    T9] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[   81.007641][ T6580] trusted_key: encrypted_key: keyword 'upw' not recognized
[   81.136838][    T9] usb 1-1: Using ep0 maxpacket: 8
[   81.150193][    T9] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[   81.153354][    T9] usb 1-1: config 0 has no interface number 0
[   81.155746][    T9] usb 1-1: config 0 interface 1 has no altsetting 0
[   81.165501][    T9] usb 1-1: New USB device found, idVendor=10c4, idProduct=eac1, bcdDevice=70.2f
[   81.169780][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   81.173034][    T9] usb 1-1: Product: syz
[   81.174758][    T9] usb 1-1: Manufacturer: syz
[   81.179172][    T9] usb 1-1: SerialNumber: syz
[   81.191426][    T9] usb 1-1: config 0 descriptor??
[   81.413179][    T9] i2c-cp2615 1-1:0.1: probe with driver i2c-cp2615 failed with error -22
[   81.614112][   T33] usb 1-1: USB disconnect, device number 8
[   81.726395][  T976] usb 3-1: new full-speed USB device number 7 using dummy_hcd
[   81.891513][  T976] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   81.896325][  T976] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFC, changing to 0x8C
[   81.901002][  T976] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8C has invalid wMaxPacketSize 0
[   81.904916][  T976] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   81.917046][  T976] usb 3-1: New USB device found, idVendor=045e, idProduct=0284, bcdDevice=a4.8f
[   81.921234][  T976] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   81.924594][  T976] usb 3-1: Product: syz
[   81.926681][  T976] usb 3-1: Manufacturer: syz
[   81.928739][  T976] usb 3-1: SerialNumber: syz
[   81.939470][  T976] usb 3-1: config 0 descriptor??
[   81.956614][  T976] xbox_remote_probe: Unexpected endpoint_in
[   82.006071][   T24] cfg80211: failed to load regulatory.db
[   82.208919][   T24] usb 3-1: USB disconnect, device number 7
[   82.583253][ T6585] loop0: detected capacity change from 0 to 32768
[   82.591533][ T6585] (syz.0.273,6585,0):ocfs2_verify_volume:2322 ERROR: Superblock slots found greater than file system maximum: found 65535, max 255
[   82.609900][ T6585] (syz.0.273,6585,0):ocfs2_verify_volume:2331 ERROR: status = -22
[   82.613074][ T6585] (syz.0.273,6585,0):ocfs2_fill_super:989 ERROR: superblock probe failed!
[   82.623696][ T6585] (syz.0.273,6585,0):ocfs2_fill_super:1177 ERROR: status = -22
[   82.728991][ T6594] loop1: detected capacity change from 0 to 32768
[   82.757939][ T6594] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   82.798824][ T6594] XFS (loop1): Ending clean mount
[   82.802821][ T6594] XFS (loop1): Quotacheck needed: Please wait.
[   82.835381][ T6594] XFS (loop1): Quotacheck: Done.
[   82.874596][ T6610] netlink: 24 bytes leftover after parsing attributes in process `syz.2.282'.
[   82.961943][ T5814] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   83.218315][ T6621] loop2: detected capacity change from 0 to 4096
[   83.226707][ T6621] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512).
[   83.249868][ T6621] ntfs3(loop2): ino=1a, mi_enum_attr
[   83.252448][ T6621] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[   83.273197][ T6621] ntfs3(loop2): ino=1e, "file1" ntfs3_write_inode failed, -22.
[   83.582929][ T6645] netlink: 56 bytes leftover after parsing attributes in process `syz.1.298'.
[   83.622674][ T6633] loop2: detected capacity change from 0 to 32768
[   83.636502][ T6633] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.292 (6633)
[   83.647942][ T6633] BTRFS info (device loop2): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[   83.651309][ T6633] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[   83.668086][ T6647] loop1: detected capacity change from 0 to 128
[   83.695688][ T6633] BTRFS info (device loop2): enabling ssd optimizations
[   83.712882][ T6633] BTRFS info (device loop2): turning on async discard
[   83.714965][ T6633] BTRFS info (device loop2): enabling free space tree
[   83.757922][ T6664] syz.1.299: attempt to access beyond end of device
[   83.757922][ T6664] loop1: rw=2049, sector=153, nr_sectors = 8 limit=128
[   83.763176][ T6664] syz.1.299: attempt to access beyond end of device
[   83.763176][ T6664] loop1: rw=2049, sector=169, nr_sectors = 8 limit=128
[   83.804048][ T6664] syz.1.299: attempt to access beyond end of device
[   83.804048][ T6664] loop1: rw=2049, sector=185, nr_sectors = 8 limit=128
[   83.828245][ T6664] syz.1.299: attempt to access beyond end of device
[   83.828245][ T6664] loop1: rw=2049, sector=201, nr_sectors = 8 limit=128
[   83.841226][ T6664] syz.1.299: attempt to access beyond end of device
[   83.841226][ T6664] loop1: rw=2049, sector=217, nr_sectors = 8 limit=128
[   83.855134][ T6664] syz.1.299: attempt to access beyond end of device
[   83.855134][ T6664] loop1: rw=2049, sector=233, nr_sectors = 8 limit=128
[   83.856949][ T5819] BTRFS info (device loop2): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[   83.874144][ T6664] syz.1.299: attempt to access beyond end of device
[   83.874144][ T6664] loop1: rw=2049, sector=249, nr_sectors = 8 limit=128
[   83.896479][ T6664] syz.1.299: attempt to access beyond end of device
[   83.896479][ T6664] loop1: rw=2049, sector=265, nr_sectors = 8 limit=128
[   83.902187][ T6664] syz.1.299: attempt to access beyond end of device
[   83.902187][ T6664] loop1: rw=2049, sector=281, nr_sectors = 8 limit=128
[   83.909626][ T6664] syz.1.299: attempt to access beyond end of device
[   83.909626][ T6664] loop1: rw=2049, sector=297, nr_sectors = 8 limit=128
[   83.957489][ T6643] loop0: detected capacity change from 0 to 32768
[   83.977384][ T6643] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   84.003645][ T6643] XFS (loop0): Ending clean mount
[   84.013775][ T6643] XFS (loop0): Quotacheck needed: Please wait.
[   84.059613][ T6643] XFS (loop0): Quotacheck: Done.
[   84.088281][   T34] audit: type=1800 audit(1764761196.926:4): pid=6643 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.297" name="file1" dev="loop0" ino=9286 res=0 errno=0
[   84.402580][   T34] audit: type=1326 audit(1764761197.216:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6678 comm="syz.2.302" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17dcf8f7c9 code=0x7ffc0000
[   84.452975][   T34] audit: type=1326 audit(1764761197.216:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6678 comm="syz.2.302" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17dcf8f7c9 code=0x7ffc0000
[   84.523156][   T34] audit: type=1326 audit(1764761197.226:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6678 comm="syz.2.302" exe="/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f17dcf8f7c9 code=0x7ffc0000
[   84.603416][   T34] audit: type=1326 audit(1764761197.436:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6678 comm="syz.2.302" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17dcf8f7c9 code=0x7ffc0000
[   84.611729][   T34] audit: type=1326 audit(1764761197.436:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6678 comm="syz.2.302" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17dcf8f7c9 code=0x7ffc0000
[   84.634362][ T5811] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   85.010026][ T6700] loop1: detected capacity change from 0 to 32768
[   85.070247][ T6700] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   85.097244][ T6700] XFS (loop1): Ending clean mount
[   85.105353][ T6700] XFS (loop1): Quotacheck needed: Please wait.
[   85.155634][ T6700] XFS (loop1): Quotacheck: Done.
[   85.201623][ T5814] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   85.203631][ T6720] program syz.0.314 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   85.317291][ T6719] loop2: detected capacity change from 0 to 4096
[   85.352186][ T6719] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[   85.381808][ T6719] ntfs3(loop2): Failed to load $Extend (-22).
[   85.384173][ T6719] ntfs3(loop2): Failed to initialize $Extend.
[   85.398104][ T6724] netlink: 'syz.0.317': attribute type 1 has an invalid length.
[   85.405172][ T6724] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   85.569300][ T6738] 9pnet_fd: Insufficient options for proto=fd
[   85.588482][ T6738] random: crng reseeded on system resumption
[   85.645942][  T793] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[   85.796047][  T793] usb 2-1: Using ep0 maxpacket: 32
[   85.806873][  T793] usb 2-1: config 0 has an invalid interface number: 35 but max is 0
[   85.814876][  T793] usb 2-1: config 0 has no interface number 0
[   85.825481][  T793] usb 2-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f
[   85.833490][  T793] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   85.851470][  T793] usb 2-1: Product: syz
[   85.852915][  T793] usb 2-1: Manufacturer: syz
[   85.862995][  T793] usb 2-1: SerialNumber: syz
[   85.883370][  T793] usb 2-1: config 0 descriptor??
[   85.982561][ T6744] loop0: detected capacity change from 0 to 4096
[   86.037144][ T6744] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.072947][ T6744] EXT4-fs error (device loop0): ext4_get_first_dir_block:3549: inode #12: block 80: comm syz.0.325: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[   86.088118][ T6744] EXT4-fs error (device loop0): ext4_get_first_dir_block:3552: inode #12: comm syz.0.325: directory missing '..'
[   86.135137][ T5811] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.311112][  T793] radio-si470x 2-1:0.35: si470x_get_report: usb_control_msg returned -71
[   86.320251][  T793] radio-si470x 2-1:0.35: probe with driver radio-si470x failed with error -5
[   86.371154][  T793] radio-raremono 2-1:0.35: this is not Thanko's Raremono.
[   86.390614][  T793] usb 2-1: USB disconnect, device number 7
[   86.953466][ T6767] loop0: detected capacity change from 0 to 2048
[   86.961206][ T6767] udf: Unknown parameter 'adi|cb'
[   87.396000][   T24] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[   87.560847][   T24] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023
[   87.565508][   T24] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A
[   87.623822][   T24] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 121
[   87.660757][   T24] usb 1-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[   87.664011][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   87.672920][   T24] usb 1-1: Product: syz
[   87.679069][   T24] usb 1-1: Manufacturer: syz
[   87.685051][   T24] usb 1-1: SerialNumber: syz
[   87.843400][   T24] usb 1-1: config 0 descriptor??
[   87.852377][ T6777] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   87.855357][ T6777] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   87.860692][   T24] usb 1-1: ucan: probing device on interface #0
[   88.226058][  T793] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[   88.402038][  T793] usb 3-1: Using ep0 maxpacket: 16
[   88.409171][  T793] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   88.419413][  T793] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[   88.426191][  T793] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   88.430102][  T793] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   88.433195][  T793] usb 3-1: Product: syz
[   88.434886][  T793] usb 3-1: Manufacturer: syz
[   88.440343][  T793] usb 3-1: SerialNumber: syz
[   88.484893][   T24] ucan 1-1:0.0 can0: registered device
[   88.672741][   T24] ucan 1-1:0.0 can0: firmware string: unknown
[   88.680889][   T24] usb 1-1: USB disconnect, device number 9
[   88.872923][  T793] usb 3-1: 0:2 : does not exist
[   88.901039][ T6812] loop1: detected capacity change from 0 to 40427
[   88.912882][ T6812] F2FS-fs (loop1): Image doesn't support compression
[   88.915349][ T6812] F2FS-fs (loop1): LFS is not compatible with ATGC
[   88.953333][ T6814] loop1: detected capacity change from 0 to 256
[   88.958833][ T6814] exfat: Deprecated parameter 'utf8'
[   88.960857][ T6814] exfat: Deprecated parameter 'utf8'
[   88.972299][ T6814] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[   89.042557][ T6816] iommufd_mock iommufd_mock0: Adding to iommu group 0
[   89.147425][ T6820] loop1: detected capacity change from 0 to 1024
[   89.152170][ T6820] EXT4-fs: inline encryption not supported
[   89.154565][ T6820] EXT4-fs: Ignoring removed orlov option
[   89.160586][ T6820] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   89.169788][ T6820] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a840c019, mo2=0002]
[   89.173561][ T6820] System zones: 0-1, 3-12
[   89.179460][ T6820] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.229736][ T6820] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 65 with error 28
[   89.246686][ T6820] EXT4-fs (loop1): This should not happen!! Data will be lost
[   89.246686][ T6820] 
[   89.250773][ T6820] EXT4-fs (loop1): Total free blocks count 0
[   89.253312][ T6820] EXT4-fs (loop1): Free/Dirty block details
[   89.280876][ T6820] EXT4-fs (loop1): free_blocks=0
[   89.285532][ T6820] EXT4-fs (loop1): dirty_blocks=0
[   89.290373][  T793] usb 3-1: 5:0: failed to get current value for ch 0 (-22)
[   89.296788][ T6820] EXT4-fs (loop1): Block reservation details
[   89.305262][ T6820] EXT4-fs (loop1): i_reserved_data_blocks=0
[   89.333369][  T793] usb 3-1: USB disconnect, device number 8
[   89.422779][ T5814] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.438977][ T5824] udevd[5824]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   89.785975][   T24] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[   89.936473][   T24] usb 2-1: Using ep0 maxpacket: 32
[   89.940781][   T24] usb 2-1: config 0 has an invalid interface number: 244 but max is 0
[   89.944590][   T24] usb 2-1: config 0 has no interface number 0
[   89.949002][   T24] usb 2-1: config 0 interface 244 has no altsetting 0
[   89.954467][   T24] usb 2-1: New USB device found, idVendor=0e41, idProduct=4750, bcdDevice=26.9c
[   89.959512][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   89.962870][   T24] usb 2-1: Product: syz
[   89.964655][   T24] usb 2-1: Manufacturer: syz
[   89.967900][   T24] usb 2-1: SerialNumber: syz
[   89.972989][   T24] usb 2-1: config 0 descriptor??
[   89.980023][   T24] snd_usb_toneport 2-1:0.244: Line 6 GuitarPort found
[   90.095972][   T33] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[   90.182240][   T24] snd_usb_toneport 2-1:0.244: cannot get proper max packet size
[   90.186365][   T24] snd_usb_toneport 2-1:0.244: Line 6 GuitarPort now disconnected
[   90.191308][   T24] snd_usb_toneport 2-1:0.244: probe with driver snd_usb_toneport failed with error -22
[   90.246101][   T33] usb 3-1: Using ep0 maxpacket: 32
[   90.249531][   T33] usb 3-1: config 0 has an invalid interface number: 12 but max is 0
[   90.252224][   T33] usb 3-1: config 0 has no interface number 0
[   90.254954][   T33] usb 3-1: config 0 interface 12 has no altsetting 0
[   90.259592][   T33] usb 3-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[   90.262615][   T33] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   90.265148][   T33] usb 3-1: Product: syz
[   90.266973][   T33] usb 3-1: Manufacturer: syz
[   90.268754][   T33] usb 3-1: SerialNumber: syz
[   90.271719][   T33] usb 3-1: config 0 descriptor??
[   90.379257][ T6847] loop0: detected capacity change from 0 to 2048
[   90.389607][    T9] usb 2-1: USB disconnect, device number 8
[   90.420127][ T6847] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   90.424826][ T6847] ext4 filesystem being mounted at /104/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   90.536960][   T24] IPVS: starting estimator thread 0...
[   90.626277][ T6852] IPVS: using max 48 ests per chain, 115200 per kthread
[   90.995302][ T6854] loop1: detected capacity change from 0 to 128
[   91.859079][ T5811] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.051731][ T6868] could not allocate digest TFM handle cryptd(blake2b-160)
[   92.072972][ T6882] loop1: detected capacity change from 0 to 512
[   92.078376][ T6882] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[   92.108273][ T6882] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   92.124326][ T6882] loop1: detected capacity change from 0 to 512
[   92.142945][ T6882] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[   92.153064][ T6882] EXT4-fs (loop1): can't mount with data_err=abort, fs mounted w/o journal
[   92.229288][ T6887] : renamed from team_slave_1 (while UP)
[   92.258105][ T6886] loop0: detected capacity change from 0 to 4096
[   92.292764][ T6886] ntfs3(loop0): ino=b, mi_enum_attr
[   92.294697][ T6886] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[   92.298065][ T6886] ntfs3(loop0): Failed to load $Extend (-22).
[   92.300136][ T6886] ntfs3(loop0): Failed to initialize $Extend.
[   92.334338][   T33] f81534 3-1:0.12: f81534_set_register: reg: 1002 data: 0 failed: -71
[   92.335066][ T6886] ntfs3(loop0): ino=1e, "file1" attr_set_size
[   92.338850][   T33] f81534 3-1:0.12: f81534_find_config_idx: read failed: -71
[   92.350707][   T33] f81534 3-1:0.12: f81534_calc_num_ports: find idx failed: -71
[   92.361650][   T33] f81534 3-1:0.12: probe with driver f81534 failed with error -71
[   92.379594][   T33] usb 3-1: USB disconnect, device number 9
[   92.482327][ T6889] ieee802154 phy0 wpan0: encryption failed: -22
[   92.966361][ T6896] netlink: 8 bytes leftover after parsing attributes in process `syz.0.386'.
[   93.103378][ T6896] 8021q: adding VLAN 0 to HW filter on device bond1
[   93.903012][ T6907] loop2: detected capacity change from 0 to 131072
[   93.907309][ T6907] F2FS-fs (loop2): Wrong CP boundary, start(512) end(1536) blocks(0)
[   93.909754][ T6907] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[   93.913934][ T6907] F2FS-fs (loop2): invalid crc value
[   93.987455][ T6907] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   93.997567][ T6907] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[   93.999771][ T6907] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[   94.245237][ T6910] loop1: detected capacity change from 0 to 40427
[   94.260366][ T6910] F2FS-fs (loop1): invalid crc value
[   94.324316][ T6910] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   94.336482][ T6910] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[   94.437758][ T6923] capability: warning: `syz.0.395' uses deprecated v2 capabilities in a way that may be insecure
[   94.458001][ T5814] bio_check_eod: 18 callbacks suppressed
[   94.458011][ T5814] syz-executor: attempt to access beyond end of device
[   94.458011][ T5814] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   94.471747][ T5814] CPU: 1 UID: 0 PID: 5814 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[   94.471760][ T5814] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   94.471765][ T5814] Call Trace:
[   94.471770][ T5814]  <TASK>
[   94.471774][ T5814]  dump_stack_lvl+0x189/0x250
[   94.471790][ T5814]  ? __pfx_dump_stack_lvl+0x10/0x10
[   94.471800][ T5814]  ? __pfx_queue_work_on+0x10/0x10
[   94.471808][ T5814]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   94.471819][ T5814]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   94.471833][ T5814]  f2fs_handle_critical_error+0x37c/0x540
[   94.471848][ T5814]  f2fs_write_end_io+0x886/0xb60
[   94.471863][ T5814]  __submit_merged_bio+0x27a/0x6a0
[   94.471876][ T5814]  __submit_merged_write_cond+0x255/0x530
[   94.471889][ T5814]  f2fs_write_data_pages+0x261d/0x3000
[   94.471911][ T5814]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   94.471937][ T5814]  ? __page_cache_release+0x8a6/0xbb0
[   94.471950][ T5814]  ? folios_put_refs+0x584/0x670
[   94.471963][ T5814]  ? __lock_acquire+0xab9/0xd20
[   94.471973][ T5814]  ? do_raw_spin_lock+0x121/0x290
[   94.471987][ T5814]  ? do_raw_spin_unlock+0x4d/0x240
[   94.471995][ T5814]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   94.472005][ T5814]  do_writepages+0x32e/0x550
[   94.472025][ T5814]  ? do_raw_spin_unlock+0x4d/0x240
[   94.472040][ T5814]  filemap_fdatawrite+0x199/0x240
[   94.472053][ T5814]  ? __pfx_filemap_fdatawrite+0x10/0x10
[   94.472100][ T5814]  ? do_raw_spin_unlock+0x4d/0x240
[   94.472112][ T5814]  f2fs_sync_dirty_inodes+0x31f/0x830
[   94.472130][ T5814]  f2fs_write_checkpoint+0x93e/0x2440
[   94.472141][ T5814]  ? __lock_acquire+0xab9/0xd20
[   94.472172][ T5814]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[   94.472227][ T5814]  kill_f2fs_super+0x2cc/0x6d0
[   94.472244][ T5814]  ? __pfx_kill_f2fs_super+0x10/0x10
[   94.472269][ T5814]  ? shrinker_free+0x2ce/0x3e0
[   94.472283][ T5814]  deactivate_locked_super+0xbc/0x130
[   94.472299][ T5814]  cleanup_mnt+0x425/0x4c0
[   94.472313][ T5814]  ? lockdep_hardirqs_on+0x9c/0x150
[   94.472331][ T5814]  task_work_run+0x1d4/0x260
[   94.472348][ T5814]  ? __pfx_task_work_run+0x10/0x10
[   94.472361][ T5814]  ? __x64_sys_umount+0x122/0x160
[   94.472378][ T5814]  ? exit_to_user_mode_loop+0x40/0x130
[   94.472392][ T5814]  exit_to_user_mode_loop+0xe9/0x130
[   94.472403][ T5814]  do_syscall_64+0x2bd/0xfa0
[   94.472418][ T5814]  ? lockdep_hardirqs_on+0x9c/0x150
[   94.472432][ T5814]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.472441][ T5814]  ? exc_page_fault+0xab/0x100
[   94.472457][ T5814]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.472467][ T5814] RIP: 0033:0x7fdfdf990af7
[   94.472478][ T5814] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   94.472486][ T5814] RSP: 002b:00007ffd3ca165a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   94.472498][ T5814] RAX: 0000000000000000 RBX: 00007fdfdf9ee72f RCX: 00007fdfdf990af7
[   94.472506][ T5814] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd3ca16660
[   94.472511][ T5814] RBP: 00007ffd3ca16660 R08: 0000000000000000 R09: 0000000000000000
[   94.472518][ T5814] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd3ca176f0
[   94.472524][ T5814] R13: 00007fdfdf9ee72f R14: 0000000000017067 R15: 00007ffd3ca17730
[   94.472550][ T5814]  </TASK>
[   94.472555][ T5814] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[   94.743863][ T6940] loop0: detected capacity change from 0 to 512
[   94.774930][ T6940] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   94.783577][ T6940] ext4 filesystem being mounted at /117/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.799282][ T6940] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[   94.835361][ T5811] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.193454][ T6978] netlink: 16 bytes leftover after parsing attributes in process `syz.0.411'.
[   95.732941][ T6986] loop2: detected capacity change from 0 to 1024
[   95.787105][ T6986] hfsplus: xattr searching failed
[   95.790784][   T34] audit: type=1800 audit(1764761208.626:10): pid=6986 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.413" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop2" ino=3 res=0 errno=0
[   95.834240][   T32] hfsplus: bad catalog file entry
[   95.837427][   T32] hfsplus: b-tree write err: -5, ino 3
[   95.940016][ T6998] loop2: detected capacity change from 0 to 736
[   96.059918][ T7002] binder: 7001:7002 ioctl c0306201 200000000040 returned -14
[   96.076442][   T24] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[   96.182514][ T7011] loop2: detected capacity change from 0 to 512
[   96.201151][ T7011] EXT4-fs (loop2): #blocks per group too big: 65535
[   96.252326][   T24] usb 2-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[   96.261725][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   96.264293][   T24] usb 2-1: Product: syz
[   96.265572][   T24] usb 2-1: Manufacturer: syz
[   96.276041][   T24] usb 2-1: SerialNumber: syz
[   96.279023][   T24] usb 2-1: config 0 descriptor??
[   96.350509][ T7020] netlink: ct family unspecified
[   96.352163][ T7020] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   96.486134][   T33] usb 1-1: new full-speed USB device number 10 using dummy_hcd
[   96.668704][   T33] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   96.672050][   T33] usb 1-1: config 0 has no interfaces?
[   96.674354][   T33] usb 1-1: New USB device found, idVendor=054c, idProduct=8df2, bcdDevice= 0.00
[   96.677616][   T33] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   96.682023][   T33] usb 1-1: config 0 descriptor??
[   96.696309][   T24] usb 2-1: Firmware version (0.0) predates our first public release.
[   96.698883][   T24] usb 2-1: Please update to version 0.2 or newer
[   96.701281][   T24] usb 2-1: Firmware: build 
[   96.736374][  T793] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[   96.886747][  T793] usb 3-1: Using ep0 maxpacket: 32
[   96.890837][ T7015] warning: `syz.0.428' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   96.895380][  T793] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7
[   96.900012][  T793] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[   96.901164][   T33] usb 1-1: USB disconnect, device number 10
[   96.911084][  T793] usb 3-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[   96.914205][  T793] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   96.918047][  T793] usb 3-1: Product: syz
[   96.919664][  T793] usb 3-1: Manufacturer: syz
[   96.923186][  T793] usb 3-1: SerialNumber: syz
[   96.926429][  T793] usb 3-1: config 0 descriptor??
[   96.934347][   T24] usb 2-1: USB disconnect, device number 9
[   96.949823][  T793] input: syz syz as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input5
[   96.983978][  T793] usbtouchscreen 3-1:0.0: usbtouch_probe - usb_submit_urb failed with result: -90
[   97.018503][  T793] usbtouchscreen 3-1:0.0: probe with driver usbtouchscreen failed with error -90
[   97.135191][  T793] usb 3-1: USB disconnect, device number 10
[   97.735103][ T7060] loop2: detected capacity change from 0 to 1024
[   97.752951][ T7060] EXT4-fs: Ignoring removed bh option
[   97.755185][ T7060] EXT4-fs: inline encryption not supported
[   97.759650][ T7060] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   97.771038][ T7060] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[   97.788505][ T7060] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 2: comm syz.2.448: lblock 2 mapped to illegal pblock 2 (length 1)
[   97.800035][ T7060] Quota error (device loop2): qtree_write_dquot: dquota write failed
[   97.802601][ T7060] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 48: comm syz.2.448: lblock 0 mapped to illegal pblock 48 (length 1)
[   97.830711][ T7060] Quota error (device loop2): v2_write_file_info: Can't write info structure
[   97.840238][ T7060] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.448: Failed to acquire dquot type 0
[   97.848490][ T7060] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   97.854067][ T7060] EXT4-fs error (device loop2): ext4_evict_inode:254: inode #11: comm syz.2.448: mark_inode_dirty error
[   97.860358][ T7060] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   97.864875][ T7060] EXT4-fs (loop2): 1 orphan inode deleted
[   97.869534][   T32] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u9:1: lblock 1 mapped to illegal pblock 1 (length 1)
[   97.870092][ T7060] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.878536][   T32] Quota error (device loop2): remove_tree: Can't read quota data block 1
[   97.881388][  T793] usb 1-1: new full-speed USB device number 11 using dummy_hcd
[   97.885451][   T32] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u9:1: Failed to release dquot type 0
[   97.910472][ T7060] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm syz.2.448: lblock 1 mapped to illegal pblock 1 (length 1)
[   97.918497][ T7060] Quota error (device loop2): find_next_id: Can't read quota tree block 1
[   97.945220][ T5819] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.953855][ T5819] EXT4-fs error (device loop2): __ext4_get_inode_loc:4832: comm syz-executor: Invalid inode table block 1 in block_group 0
[   97.969115][ T5819] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   97.972794][ T5819] EXT4-fs error (device loop2): ext4_quota_off:7229: inode #3: comm syz-executor: mark_inode_dirty error
[   98.039980][  T793] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   98.048584][  T793] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   98.056842][  T793] usb 1-1: New USB device found, idVendor=0079, idProduct=0006, bcdDevice= 0.00
[   98.061190][  T793] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   98.067170][  T793] usb 1-1: config 0 descriptor??
[   98.210291][ T7081] loop2: detected capacity change from 0 to 4096
[   98.213422][ T7081] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[   98.482547][  T793] dragonrise 0003:0079:0006.0008: global environment stack underflow
[   98.485560][  T793] dragonrise 0003:0079:0006.0008: item 0 4 1 11 parsing failed
[   98.488363][  T793] dragonrise 0003:0079:0006.0008: parse failed
[   98.490361][  T793] dragonrise 0003:0079:0006.0008: probe with driver dragonrise failed with error -22
[   98.556085][   T24] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[   98.688345][  T793] usb 1-1: USB disconnect, device number 11
[   98.709338][   T24] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[   98.712407][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   98.715076][   T24] usb 3-1: Product: syz
[   98.716773][   T24] usb 3-1: Manufacturer: syz
[   98.718378][   T24] usb 3-1: SerialNumber: syz
[   98.724239][   T24] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[   98.749757][ T6299] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[   98.998956][ T7086] loop1: detected capacity change from 0 to 32768
[   99.007512][ T7086] xfs: Deprecated parameter 'noikeep'
[   99.009290][ T7086] XFS: noikeep mount option is deprecated.
[   99.011134][ T7086] xfs: Deprecated parameter 'ikeep'
[   99.012829][ T7086] XFS: ikeep mount option is deprecated.
[   99.031510][ T7086] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[   99.036814][ T7086] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   99.064057][ T7086] XFS (loop1): Ending clean mount
[   99.069720][ T7086] XFS (loop1): Quotacheck needed: Please wait.
[   99.089453][ T7086] XFS (loop1): Quotacheck: Done.
[   99.187167][   T24] usb 3-1: USB disconnect, device number 11
[   99.209049][ T5814] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   99.754641][ T7120] bridge_slave_0: default FDB implementation only supports local addresses
[   99.836155][ T6299] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive
[   99.837033][ T7118] loop2: detected capacity change from 0 to 4096
[   99.846883][ T7118] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[   99.847583][ T6299] ath9k_htc: Failed to initialize the device
[   99.866064][   T24] usb 3-1: ath9k_htc: USB layer deinitialized
[   99.872011][ T7126] loop1: detected capacity change from 0 to 16
[   99.882292][ T7126] erofs (device loop1): mounted with root inode @ nid 36.
[   99.900974][ T7118] ntfs3(loop2): ino=19, mi_enum_attr
[   99.905193][ T7126] erofs (device loop1): readahead error at folio 7 @ nid 36
[   99.912925][ T7126] erofs (device loop1): readahead error at folio 6 @ nid 36
[   99.922797][ T7126] erofs (device loop1): readahead error at folio 5 @ nid 36
[   99.926583][ T7126] erofs (device loop1): readahead error at folio 4 @ nid 36
[   99.929785][ T7126] erofs (device loop1): readahead error at folio 3 @ nid 36
[   99.932855][ T7126] erofs (device loop1): readahead error at folio 2 @ nid 36
[   99.935748][ T7126] erofs (device loop1): readahead error at folio 1 @ nid 36
[   99.939783][ T7126] erofs (device loop1): readahead error at folio 0 @ nid 36
[   99.942788][ T7126] erofs (device loop1): read error -117 @ 0 of nid 36
[   99.947263][ T7126] erofs (device loop1): failed to readdir of logical block 0 of nid 36
[   99.951291][ T7126] erofs (device loop1): read error -117 @ 0 of nid 36
[   99.954820][ T7126] erofs (device loop1): failed to readdir of logical block 0 of nid 36
[  100.070419][ T7129] netlink: 'syz.1.473': attribute type 2 has an invalid length.
[  100.181724][ T7139] loop1: detected capacity change from 0 to 256
[  100.184460][ T7139] exfat: Deprecated parameter 'namecase'
[  100.189067][ T7139] exfat: Deprecated parameter 'namecase'
[  100.198233][ T7139] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xbc8dc3cd, utbl_chksum : 0xe619d30d)
[  100.396671][ T6299] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  100.449841][ T7157] vxcan3: entered promiscuous mode
[  100.451913][ T7157] vxcan3: entered allmulticast mode
[  100.453654][ T7159] loop2: detected capacity change from 0 to 256
[  100.464685][ T7159] exfat: Deprecated parameter 'namecase'
[  100.469390][ T7159] exfat: Deprecated parameter 'utf8'
[  100.479487][ T7159] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  100.570891][ T6299] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  100.575435][ T6299] usb 1-1: New USB device found, idVendor=0810, idProduct=0001, bcdDevice= 0.00
[  100.590388][ T6299] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  100.605959][ T6299] usb 1-1: config 0 descriptor??
[  100.740651][ T7173] loop1: detected capacity change from 0 to 1024
[  100.755367][ T7173] EXT4-fs: Ignoring removed nomblk_io_submit option
[  100.758404][ T7173] ext4: Unknown parameter 'seclabel'
[  101.123905][ T6299] pantherlord 0003:0810:0001.0009: hidraw0: USB HID v0.00 Device [HID 0810:0001] on usb-dummy_hcd.0-1/input0
[  101.129188][ T6299] pantherlord 0003:0810:0001.0009: Force feedback for PantherLord/GreenAsia devices by Anssi Hannula <anssi.hannula@gmail.com>
[  101.161989][ T7180] loop1: detected capacity change from 0 to 512
[  101.199768][ T7180] EXT4-fs (loop1): 1 orphan inode deleted
[  101.203207][ T7180] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.212867][ T7180] ext4 filesystem being mounted at /191/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.217820][   T41] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  101.220875][   T41] EXT4-fs error (device loop1): ext4_release_dquot:6981: comm kworker/u10:2: Failed to release dquot type 1
[  101.224963][   T34] audit: type=1800 audit(1764761214.056:11): pid=7180 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.496" name="bus" dev="loop1" ino=16 res=0 errno=0
[  101.253756][ T5814] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.326346][ T6299] usb 1-1: USB disconnect, device number 12
[  101.579203][ T7188] loop2: detected capacity change from 0 to 128
[  101.583119][ T7188] FAT-fs (loop2): bogus number of reserved sectors
[  101.585219][ T7188] FAT-fs (loop2): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  101.588480][ T7188] FAT-fs (loop2): Can't find a valid FAT filesystem
[  101.592887][ T7188] sch_tbf: peakrate 64 is lower than or equals to rate 17038211371681383082 !
[  101.661356][   T13] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  101.718684][   T13] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  101.805555][   T13] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  101.835518][ T5822] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  101.854005][ T5822] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  101.868548][ T5822] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  101.872722][ T5822] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  101.877564][ T5822] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  101.898521][   T13] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  101.942564][ T7206] netlink: 32 bytes leftover after parsing attributes in process `syz.2.507'.
[  101.945642][ T7206] tipc: Invalid UDP bearer configuration
[  101.945673][ T7206] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  101.987608][ T7208] loop2: detected capacity change from 0 to 1764
[  102.082012][ T7212] loop0: detected capacity change from 0 to 4096
[  102.156461][ T7212] ntfs3(loop0): ino=21, "bus" direct i/o + compressed not supported
[  102.190795][   T13] bridge_slave_1: left allmulticast mode
[  102.193207][   T13] bridge_slave_1: left promiscuous mode
[  102.198302][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.209292][   T13] bridge_slave_0: left allmulticast mode
[  102.212065][   T13] bridge_slave_0: left promiscuous mode
[  102.214005][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.309733][   T34] audit: type=1326 audit(1764761215.146:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7222 comm="syz.0.515" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7c298f7c9 code=0x7ffc0000
[  102.320492][   T34] audit: type=1326 audit(1764761215.146:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7222 comm="syz.0.515" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7c298f7c9 code=0x7ffc0000
[  102.332957][   T34] audit: type=1326 audit(1764761215.146:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7222 comm="syz.0.515" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa7c29916e7 code=0x7ffc0000
[  102.344210][   T34] audit: type=1326 audit(1764761215.146:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7222 comm="syz.0.515" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7c298f7c9 code=0x7ffc0000
[  102.351417][   T34] audit: type=1326 audit(1764761215.146:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7222 comm="syz.0.515" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7c298f7c9 code=0x7ffc0000
[  102.360127][   T34] audit: type=1326 audit(1764761215.146:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7222 comm="syz.0.515" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa7c298f7c9 code=0x7ffc0000
[  102.367610][   T34] audit: type=1326 audit(1764761215.146:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7222 comm="syz.0.515" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7c298f7c9 code=0x7ffc0000
[  102.374007][   T34] audit: type=1326 audit(1764761215.146:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7222 comm="syz.0.515" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7c298f7c9 code=0x7ffc0000
[  102.529839][ T7228] loop0: detected capacity change from 0 to 32768
[  102.545278][ T7228] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  102.590403][ T5811] ocfs2: Unmounting device (7,0) on (node local)
[  102.631261][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  102.637827][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  102.641362][   T13] bond0 (unregistering): Released all slaves
[  102.695084][ T7197] chnl_net:caif_netlink_parms(): no params data found
[  102.719836][ T7237] netlink: 8 bytes leftover after parsing attributes in process `syz.2.519'.
[  102.879050][ T7197] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.881857][ T7197] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.908816][ T7197] bridge_slave_0: entered allmulticast mode
[  102.919596][ T7197] bridge_slave_0: entered promiscuous mode
[  102.951461][ T7197] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.954809][ T7197] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.968799][ T7197] bridge_slave_1: entered allmulticast mode
[  102.973714][ T7197] bridge_slave_1: entered promiscuous mode
[  103.029360][ T7197] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  103.034822][ T7197] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  103.109048][ T7197] team0: Port device team_slave_0 added
[  103.139146][ T7197] team0: Port device team_slave_1 added
[  103.183423][ T7251] loop2: detected capacity change from 0 to 32768
[  103.187482][ T7251] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.522 (7251)
[  103.198876][ T7251] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  103.204429][ T7251] BTRFS info (device loop2): using crc32c (crc32c-lib) checksum algorithm
[  103.324212][ T7197] batman_adv: batadv0: Adding interface: batadv_slave_0
[  103.328229][ T7197] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  103.338417][ T7197] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  103.362735][ T7197] batman_adv: batadv0: Adding interface: batadv_slave_1
[  103.366788][ T7197] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  103.378837][ T7197] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  103.390732][ T7251] BTRFS info (device loop2): rebuilding free space tree
[  103.422393][   T13] hsr_slave_0: left promiscuous mode
[  103.426689][ T7251] BTRFS info (device loop2): disabling free space tree
[  103.428903][ T7251] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  103.431920][ T7251] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  103.448932][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  103.451298][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  103.455239][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  103.457778][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  103.462920][   T13] batman_adv: batadv0: Removing interface: vlan2
[  103.475061][ T7251] BTRFS info (device loop2): enabling ssd optimizations
[  103.486199][ T7251] BTRFS info (device loop2): turning on sync discard
[  103.491473][ T7251] BTRFS info (device loop2): force clearing of disk cache
[  103.494189][ T7251] BTRFS info (device loop2): enabling auto defrag
[  103.526611][   T13] veth1_macvtap: left promiscuous mode
[  103.534587][   T13] veth0_macvtap: left promiscuous mode
[  103.543015][   T13] veth1_vlan: left promiscuous mode
[  103.545260][   T13] veth0_vlan: left promiscuous mode
[  103.726280][ T7282] loop0: detected capacity change from 0 to 8192
[  103.886784][ T5819] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  103.924084][ T5821] Bluetooth: hci1: command tx timeout
[  104.605233][   T13] team0 (unregistering): Port device 52 removed
[  104.653575][   T13] team0 (unregistering): Port device team_slave_0 removed
[  105.319752][ T7197] hsr_slave_0: entered promiscuous mode
[  105.323211][ T7197] hsr_slave_1: entered promiscuous mode
[  105.326215][ T7197] debugfs: 'hsr0' already exists in 'hsr'
[  105.328025][ T7197] Cannot create hsr debugfs directory
[  105.446314][ T7294] loop0: detected capacity change from 0 to 1024
[  105.546672][ T7299] netlink: 28 bytes leftover after parsing attributes in process `syz.2.530'.
[  105.583125][ T7297] netlink: 28 bytes leftover after parsing attributes in process `syz.2.530'.
[  105.718705][ T7197] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  105.810945][ T7197] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  106.016137][ T5821] Bluetooth: hci1: command tx timeout
[  106.213385][ T7197] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  106.219779][ T7197] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  106.234712][   T13] ------------[ cut here ]------------
[  106.236957][   T13] WARNING: CPU: 0 PID: 13 at net/xfrm/xfrm_state.c:3306 xfrm_state_fini+0x26d/0x2f0
[  106.240839][   T13] Modules linked in:
[  106.243185][   T13] CPU: 0 UID: 0 PID: 13 Comm: kworker/u8:1 Not tainted syzkaller #0 PREEMPT(full) 
[  106.246818][   T13] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  106.250710][   T13] Workqueue: netns cleanup_net
[  106.252641][   T13] RIP: 0010:xfrm_state_fini+0x26d/0x2f0
[  106.254880][   T13] Code: c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 2b dc 39 f8 48 8b 3b 5b 41 5c 41 5d 41 5e 41 5f 5d e9 49 87 19 f8 e8 54 db d3 f7 90 <0f> 0b 90 e9 fd fd ff ff e8 46 db d3 f7 90 0f 0b 90 e9 60 fe ff ff
[  106.263118][   T13] RSP: 0018:ffffc90000127878 EFLAGS: 00010293
[  106.265505][   T13] RAX: ffffffff89ec3c4c RBX: ffff8881b8eda480 RCX: ffff888102a80000
[  106.268700][   T13] RDX: 0000000000000000 RSI: ffffffff8d8f5516 RDI: ffff888102a80000
[  106.271819][   T13] RBP: ffffc90000127990 R08: ffffffff8f7cf677 R09: 1ffffffff1ef9ece
[  106.274921][   T13] R10: dffffc0000000000 R11: fffffbfff1ef9ecf R12: ffffffff8f3c7880
[  106.278289][   T13] R13: 1ffff92000024f3c R14: ffff8881b8edb940 R15: dffffc0000000000
[  106.281900][   T13] FS:  0000000000000000(0000) GS:ffff88818eb36000(0000) knlGS:0000000000000000
[  106.286346][   T13] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  106.289032][   T13] CR2: 0000561c62be6178 CR3: 0000000172e4c000 CR4: 00000000000006f0
[  106.292233][   T13] Call Trace:
[  106.293518][   T13]  <TASK>
[  106.294663][   T13]  xfrm_net_exit+0x2d/0x70
[  106.296561][   T13]  ops_undo_list+0x49a/0x990
[  106.298424][   T13]  ? __pfx_ops_undo_list+0x10/0x10
[  106.300506][   T13]  ? do_raw_spin_unlock+0x4d/0x240
[  106.302631][   T13]  cleanup_net+0x4d8/0x820
[  106.304457][   T13]  ? __pfx_cleanup_net+0x10/0x10
[  106.306652][   T13]  ? _raw_spin_unlock_irq+0x23/0x50
[  106.308929][   T13]  ? process_scheduled_works+0x9ef/0x17b0
[  106.311577][   T13]  ? process_scheduled_works+0x9ef/0x17b0
[  106.314081][   T13]  process_scheduled_works+0xae1/0x17b0
[  106.316694][   T13]  ? __pfx_process_scheduled_works+0x10/0x10
[  106.318949][   T13]  worker_thread+0x8a0/0xda0
[  106.320761][   T13]  kthread+0x711/0x8a0
[  106.322395][   T13]  ? __pfx_worker_thread+0x10/0x10
[  106.324405][   T13]  ? __pfx_kthread+0x10/0x10
[  106.326364][   T13]  ? _raw_spin_unlock_irq+0x23/0x50
[  106.328717][   T13]  ? lockdep_hardirqs_on+0x9c/0x150
[  106.331234][   T13]  ? __pfx_kthread+0x10/0x10
[  106.333016][   T13]  ret_from_fork+0x4bc/0x870
[  106.334529][   T13]  ? __pfx_ret_from_fork+0x10/0x10
[  106.336563][   T13]  ? __switch_to_asm+0x39/0x70
[  106.338413][   T13]  ? __switch_to_asm+0x33/0x70
[  106.340323][   T13]  ? __pfx_kthread+0x10/0x10
[  106.342178][   T13]  ret_from_fork_asm+0x1a/0x30
[  106.344125][   T13]  </TASK>
[  106.345225][   T13] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  106.347920][   T13] CPU: 0 UID: 0 PID: 13 Comm: kworker/u8:1 Not tainted syzkaller #0 PREEMPT(full) 
[  106.351189][   T13] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  106.354918][   T13] Workqueue: netns cleanup_net
[  106.356468][   T13] Call Trace:
[  106.357667][   T13]  <TASK>
[  106.358933][   T13]  dump_stack_lvl+0x99/0x250
[  106.360572][   T13]  ? __asan_memcpy+0x40/0x70
[  106.362050][   T13]  ? __pfx_dump_stack_lvl+0x10/0x10
[  106.363708][   T13]  ? __pfx__printk+0x10/0x10
[  106.365185][   T13]  vpanic+0x237/0x6d0
[  106.366562][   T13]  ? __pfx_vpanic+0x10/0x10
[  106.368338][   T13]  panic+0xb9/0xc0
[  106.369869][   T13]  ? __pfx_panic+0x10/0x10
[  106.371451][   T13]  __warn+0x31b/0x4b0
[  106.372738][   T13]  ? xfrm_state_fini+0x26d/0x2f0
[  106.374467][   T13]  ? xfrm_state_fini+0x26d/0x2f0
[  106.376166][   T13]  report_bug+0x2be/0x4f0
[  106.377929][   T13]  ? xfrm_state_fini+0x26d/0x2f0
[  106.380173][   T13]  ? xfrm_state_fini+0x26d/0x2f0
[  106.382431][   T13]  ? xfrm_state_fini+0x26f/0x2f0
[  106.384153][   T13]  handle_bug+0x84/0x160
[  106.385589][   T13]  exc_invalid_op+0x1a/0x50
[  106.387080][   T13]  asm_exc_invalid_op+0x1a/0x20
[  106.388623][   T13] RIP: 0010:xfrm_state_fini+0x26d/0x2f0
[  106.390356][   T13] Code: c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 2b dc 39 f8 48 8b 3b 5b 41 5c 41 5d 41 5e 41 5f 5d e9 49 87 19 f8 e8 54 db d3 f7 90 <0f> 0b 90 e9 fd fd ff ff e8 46 db d3 f7 90 0f 0b 90 e9 60 fe ff ff
[  106.398086][   T13] RSP: 0018:ffffc90000127878 EFLAGS: 00010293
[  106.401023][   T13] RAX: ffffffff89ec3c4c RBX: ffff8881b8eda480 RCX: ffff888102a80000
[  106.403734][   T13] RDX: 0000000000000000 RSI: ffffffff8d8f5516 RDI: ffff888102a80000
[  106.406225][   T13] RBP: ffffc90000127990 R08: ffffffff8f7cf677 R09: 1ffffffff1ef9ece
[  106.408696][   T13] R10: dffffc0000000000 R11: fffffbfff1ef9ecf R12: ffffffff8f3c7880
[  106.411135][   T13] R13: 1ffff92000024f3c R14: ffff8881b8edb940 R15: dffffc0000000000
[  106.413617][   T13]  ? xfrm_state_fini+0x26c/0x2f0
[  106.415327][   T13]  ? xfrm_state_fini+0x26c/0x2f0
[  106.417017][   T13]  xfrm_net_exit+0x2d/0x70
[  106.418746][   T13]  ops_undo_list+0x49a/0x990
[  106.420525][   T13]  ? __pfx_ops_undo_list+0x10/0x10
[  106.422507][   T13]  ? do_raw_spin_unlock+0x4d/0x240
[  106.424572][   T13]  cleanup_net+0x4d8/0x820
[  106.426415][   T13]  ? __pfx_cleanup_net+0x10/0x10
[  106.428518][   T13]  ? _raw_spin_unlock_irq+0x23/0x50
[  106.430618][   T13]  ? process_scheduled_works+0x9ef/0x17b0
[  106.432384][   T13]  ? process_scheduled_works+0x9ef/0x17b0
[  106.434329][   T13]  process_scheduled_works+0xae1/0x17b0
[  106.436442][   T13]  ? __pfx_process_scheduled_works+0x10/0x10
[  106.438714][   T13]  worker_thread+0x8a0/0xda0
[  106.440512][   T13]  kthread+0x711/0x8a0
[  106.442172][   T13]  ? __pfx_worker_thread+0x10/0x10
[  106.444230][   T13]  ? __pfx_kthread+0x10/0x10
[  106.445988][   T13]  ? _raw_spin_unlock_irq+0x23/0x50
[  106.447981][   T13]  ? lockdep_hardirqs_on+0x9c/0x150
[  106.449971][   T13]  ? __pfx_kthread+0x10/0x10
[  106.451424][   T13]  ret_from_fork+0x4bc/0x870
[  106.453174][   T13]  ? __pfx_ret_from_fork+0x10/0x10
[  106.455100][   T13]  ? __switch_to_asm+0x39/0x70
[  106.456740][   T13]  ? __switch_to_asm+0x33/0x70
[  106.458218][   T13]  ? __pfx_kthread+0x10/0x10
[  106.459734][   T13]  ret_from_fork_asm+0x1a/0x30
[  106.461638][   T13]  </TASK>
[  106.463734][   T13] Kernel Offset: disabled
[  106.465262][   T13] Rebooting in 86400 seconds..
